Dark Reading

What a Federal Data Privacy Law Would Mean for Consumers

03/24/2021
With an array of serious proposals from both sides of the political divide, it looks as though the US may finally have a national privacy law.

How to Protect Our Critical Infrastructure From Attack

03/24/2021
Just how worried should we be about a cyber or physical attack on national infrastructure? Chris Price reports on how the pandemic, the growth of remote working, and IoT are putting assets at risk.

Prioritizing Application & API Security After the COVID Cloud Rush

03/24/2021
As companies hit the gas to accommodate the rapid shift to work-from-home, security fell behind. Now, it's time to close those gaps.

Anti-Spoofing for Email Gains Adoption, but Enforcement Lags

03/23/2021
More organizations adopt sender authentication, but strict quarantining or rejection of unauthenticated messages remains uncommon.

Inside the Web Shell Used in the Microsoft Exchange Server Attacks

03/23/2021
The history and details of China Chopper - a Web shell commonly seen in the widespread Microsoft Exchange Server attacks.

Disgruntled IT Contractor Sentenced in Retaliatory Office 365 Attack

03/23/2021
Former contractor deleted 1,200 user accounts in revenge.

Organizations Making Little Headway in Addressing Human Risk

03/23/2021
Most enterprise security awareness efforts remain half-hearted, a new SANS survey shows.

Do Cybercriminals Fear Arrest?

03/23/2021
Researchers explore how cybercriminals weigh the possibility of arrest and whether it deters criminal activity.

Disrupting the Cybercriminal Supply Chain

03/23/2021
It is time to turn the tables on cybercriminals and use their own tactics against them.

Cartoon Caption Winner: In Hot Water

03/23/2021
And the winner of The Edge's March cartoon caption contest is ...

Data Protection Is a Group Effort

03/23/2021
When every employee is well-versed in customer data privacy principles, the DPO knows the enterprise's sensitive data is in good hands.

Researchers Discover Two Dozen Malicious Chrome Extensions

03/22/2021
Extensions are being used to serve up unwanted adds, steal data, and divert users to malicious sites, Cato Networks says.

Acer Reportedly Hit With $50M Ransomware Attack

03/22/2021
Reports say a ransomware gang has given Acer until March 28 to pay, or it will double the ransom amount.

CSA & ISACA Team Up on Cloud Auditing Certificate

03/22/2021
The Certificate of Cloud Auditing Knowledge aims to fill a gap in the market for cloud IT auditing as more organizations work in cloud environments.

Qualys CEO Courtot Departs for Health Reasons

03/22/2021
The well-known security industry entrepreneur initially took a leave of absence in February.

Top 3 Cybersecurity Lessons Learned From the Pandemic

03/22/2021
Defending an enterprise of fully remote employees and their devices at this scale and speed had never been done before. Now, we do it every day.

3 Classes of Account Fraud That Can Cost Your Company Big Time

03/22/2021
Understanding each one can go a long way toward demystifying the topic as a whole - and combatting the threat.

The Edge Pro Tip: The Feds Are Your Friends

03/22/2021
Here's what to expect when you report an insider incident to the FBI.

On the Road to Good Cloud Security: Are We There Yet?

03/22/2021
Misconfigured infrastructure is IT pros' top cloud security concern, but they're conflicted on how to address it in practice.

New Malware Hidden in Apple IDE Targets macOS Developers

03/19/2021
XcodeSpy is latest example of growing attacks on software supply chain.