Dark Reading

Shades of Shamoon: New Disk-Wiping Malware Targets Middle East Orgs

12/04/2019
'ZeroCleare' shares some of the same features as its more notorious predecessor, IBM Security says.

(Literally) Put a Ring on It: Protecting Biometric Fingerprints

12/04/2019
Kaspersky creates a prototype ring you can wear on your finger for authentication.

The Edge Cartoon Contest: You Better Watch Out ...

12/04/2019
Feeling creative this holiday season? Submit your caption in the comments, and our panel of experts will reward the winner with a $25 Amazon gift card.

Navigating Security in the Cloud

12/04/2019
Underestimating the security changes that need to accompany a shift to the cloud could be fatal to a business. Here's why.

Microsoft Issues Advisory for Windows Hello for Business

12/04/2019
An issue exists in Windows Hello for Business when public keys persist after a device is removed from Active Directory, if the AD exists, Microsoft reports.

Attackers Continue to Exploit Outlook Home Page Flaw

12/04/2019
FireEye issues guidance on locking down Outlook, claiming that security researchers, at least, are able to work around the patch issued by Microsoft.

Application & Infrastructure Risk Management: You've Been Doing It Backward

12/04/2019
Before getting more scanning tools, think about what's needed to defend your organization's environment and devise a plan to ensure all needed tools can work together productively.

TrickBot Expands in Japan Ahead of the Holidays

12/03/2019
Data indicates TrickBot operators are modifying its modules and launching widespread campaigns around the world.

When Rogue Insiders Go to the Dark Web

12/03/2019
Employees gone bad sell stolen company information, sometimes openly touting their companies, researchers say.

What Security Leaders Can Learn from Marketing

12/03/2019
Employees can no longer be pawns who must be protected all the time. They must become partners in the battle against threats.

Smith & Wesson Is Magecart's Latest Target

12/03/2019
Researchers estimate the gun manufacturer's website was compromised sometime before Black Friday.

Siemens Offers Workarounds for Newly Found PLC Vulnerability

12/03/2019
An undocumented hardware-based special access feature recently found by researchers in Siemens' S7-1200 can be used by attackers to gain control of the industrial devices.

Leveraging the Cloud for Cyber Intelligence

12/03/2019
How fusing output datasets and sharing information can create a real-time understanding of suspicious activity across your enterprise.

Cybersecurity Team Holiday Guide: 2019 Gag Gift Edition

12/02/2019
Make your favorite security experts laugh with these affordable holiday gifts.

Sharing Is Caring

12/02/2019
Do you do any cybersecurity-related volunteer work?

Data from 21M Mixcloud Users Compromised in Breach

12/02/2019
The music streaming service received reports indicating attackers gained unauthorized access to its systems.

New: State of the Internet: Web Attacks and Gaming Abuse

12/02/2019
Attackers see credential abuse as a low-risk venture with potential for a high payout, at least for now.

SQL Injection Errors No Longer the Top Software Security Issue

11/27/2019
In newly updated Common Weakness Enumeration (CWE), SQL injection now ranks sixth.

Analysis of Jira Bug Stresses Impact of SSRF in Public Cloud

11/27/2019
More than 3,100 Jira instances are still vulnerable to a server-side request forgery vulnerability patched in August.

Google Details Its Responses to Cyber Attacks, Disinformation

11/27/2019
Government groups continue to attack user credentials and distribute disinformation according to a new blog post from Google's Threat Analysis Group.