Dark Reading

Easing the Cyber-Skills Crisis With Staff Augmentation

08/18/2022
Filling cybersecurity roles can be costly, slow, and chancy. More firms are working with third-party service providers to quickly procure needed expertise.

China's APT41 Embraces Baffling Approach for Dropping Cobalt Strike Payload

08/18/2022
The state-sponsored threat actor has switched up its tactics, also adding an automated SQL-injection tool to its bag of tricks for initial access.

Mac Attack: North Korea's Lazarus APT Targets Apple's M1 Chip

08/18/2022
Lazarus continues to expand an aggressive, ongoing spy campaign, using fake Coinbase job openings to lure in victims.

Which Security Bugs Will Be Exploited? Researchers Create an ML Model to Find Out

08/18/2022
How critical is that vulnerability? University researchers are improving predictions of which software flaws will end up with an exploit, a boon for prioritizing patches and estimating risk.

Summertime Blues: TA558 Ramps Up Attacks on Hospitality, Travel Sectors

08/18/2022
The cybercriminal crew has used 15 malware families to target travel and hospitality companies globally, constantly changing tactics over the course of its four-year history.

How to Upskill Tech Staff to Meet Cybersecurity Needs

08/18/2022
Cybersecurity is the largest current tech skills gap; closing it requires a concerted effort to upskill existing staff.

Google Cloud Adds Curated Detection to Chronicle

08/17/2022
The curated detection feature for Chronicle SecOps Suite provides security teams with actionable insights on cloud threats and Windows-based attacks from Google Cloud Threat Intelligence Team.

Google Chrome Zero-Day Found Exploited in the Wild

08/17/2022
The high-severity security vulnerability (CVE-2022-2856) is due to improper user-input validation.

'DarkTortilla' Malware Wraps in Sophistication for High-Volume RAT Infections

08/17/2022
The stealthy crypter, active since 2015, has been used to deliver a wide range of information stealers and RATs at a rapid, widespread clip.

When Countries Are Attacked: Making the Case for More Private-Public Cooperation

08/17/2022
The increased sophistication of cyberattacks makes them more widely damaging and difficult to prevent.

'Operation Sugarush' Mounts Concerning Spy Effort on Shipping, Healthcare Industries

08/17/2022
A suspected Iranian threat actor known as UNC3890 is gathering intel that could be used for kinetic strikes against global shipping targets.

China-Backed RedAlpha APT Builds Sprawling Cyber-Espionage Infrastructure

08/17/2022
The state-sponsored group particularly targets organizations working on behalf of the Uyghurs, Tibet, and Taiwan, looking to gather intel that could lead to human-rights abuses, researchers say.

Thoma Bravo Closes $6.9B Acquisition of Identity-Security Vendor SailPoint

08/17/2022
All-cash transaction deal that was first announced in April means SailPoint is no longer a publicly traded company.

ThreatX Raises $30 Million in Series B Funding to Accelerate Growth in Global API Protection Market

08/17/2022
Funds will support product development and market expansion for ThreatX, which delivers real-time protection for APIs and Web apps against complex botnets, DDoS, and multimode attacks.

AuditBoard Launches Third-Party Risk Management Solution, Empowering Enterprises to Tackle IT Vendor Risk at Scale

08/17/2022
Solution streamlines the assessment, monitoring, and remediation of third-party risk for information security, compliance, and risk teams.

7 Smart Ways to Secure Your E-Commerce Site

08/17/2022
Especially if your e-commerce and CMS platforms are integrated, you risk multiple potential sources of intrusion, and the integration points themselves may be vulnerable to attack.

Microsoft Rolls Out Tamper Protection for Macs

08/16/2022
The new feature detects attempts to modify files and processes for Microsoft Defender for Endpoints on macOS.

Microsoft Disrupts Russian Group's Multiyear Cyber-Espionage Campaign

08/16/2022
"Seaborgium" is a highly persistent threat actor that has been targeting organizations and individuals of likely interest to the Russian government since at least 2017, company says.

DEF CON: A Woman's First Experience

08/16/2022
Omdia Senior Analyst Hollie Hennessy goes over her first experience of DEF CON as a woman in cybersecurity.