Dark Reading

Delivering Santa from Third-Party Risk

12/24/2020
2020 has made even St. Nick susceptible to the risks associated with the coronavirus pandemic. Fortunately, cybersecurity experts are ready to help the merry old elf with advice on reducing risks to his global operations.

Latest Version of TrickBot Employs Clever New Obfuscation Trick

11/24/2020
The malware takes advantage of how the Windows command line interpreter works to try and slip past anti-detection tools, Huntress Labs says.

Baidu Apps Leaked Location Data, Machine Learning Reveals

11/24/2020
Several apps available on the Google Play Store, including two made by Chinese Internet giant Baidu, leaked information about the phone's hardware and location without the user's knowledge, research finds.

How Ransomware Defense is Evolving With Ransomware Attacks

11/24/2020
As data exfiltration threats and bigger ransom requests become the norm, security professionals are advancing from the basic "keep good backups" advice.

CISA Warns of Holiday Online Shopping Scams

11/24/2020
The agency urges shoppers to be cautious of fraudulent websites, unsolicited emails, and unencrypted financial transactions.

Alexa, Disarm the Victim's Home Security System

11/24/2020
Researchers who last year hacked popular voice assistants with laser pointers take their work to the next level.

Cloud Security Startup Lightspin Emerges From Stealth

11/24/2020
The startup, founded by former white-hat hackers, has secured a $4 million seed round to close security gaps in cloud environments.

US Treasury's OFAC Ransomware Advisory: Navigating the Gray Areas

11/24/2020
Leveraging the right response strategy, following the regulations, and understanding the ransom entity are the fundamentals in any ransomware outbreak.

What's in Store for Privacy in 2021

11/24/2020
Changes are coming to the privacy landscape, including more regulations and technologies.

Printers' Cybersecurity Threats Too Often Ignored

11/24/2020
Remote workforce heightens the need to protect printing systems against intrusion and compromise.

Could Return of Ghost Squad Hackers Signal Rise in COVID-19-Related Hactivism?

04/16/2020
New research suggests GSH is active in Southeast Asia following a couple of quiet years.

Patch-a-Palooza: More Than 560 Flaws Fixed in a Single Day

04/14/2020
Software vendors keep pushing patches to the same Tuesday once a month, or once a quarter, and the result can be overwhelming. Six enterprise software makers issued patches for 567 issues in April.

Network Data Shows Spikes, Vulnerability of Work-at-Home Shift

04/13/2020
Traffic on the public Internet has grown by half this year, and videoconferencing bandwidth has grown by a factor of five, all driven by remote-work edicts.

Dell Releases Security Tool to Defend PCs from BIOS Attacks

04/13/2020
The SafeBIOS Events & Indicators of Attack tool gives admins visibility into BIOS configuration changes and alerts them to potential threats.

Zscaler to Buy Cloudneeti

04/09/2020
The security service provider adds cloud security "posture" management with the deal.

Keeping Vigilant for BEC Amid COVID-19 Chaos

04/08/2020
FBI and security experts warn that attackers are particularly targeting cloud-based email systems at the moment.

After Adopting COVID-19 Lures, Sophisticated Groups Target Remote Workers

04/08/2020
While coronavirus-themed emails and files have been used as a lure for weeks, attackers now are searching for ways to actively target VPNs and remote workers to take advantage of weaker security.

Researchers Fool Biometric Scanners with 3D-Printed Fingerprints

04/08/2020
Tests on the fingerprint scanners of Apple, Microsoft, and Samsung devices reveal it's possible to bypass authentication with a cheap 3D printer.

Privacy & Digital-Rights Experts Worry Contact-Tracing Apps Lack Limits

04/07/2020
Mobile-phone-based tracking of people can help fight pandemics, but privacy and security researchers stress that it needs to be done right.

Chinese APT Groups Targeted Enterprise Linux Systems in Decade-Long Data Theft Campaign

04/07/2020
Organizations across multiple industries compromised in a systematic effort to steal IP and other sensitive business data, BlackBerry says.