Dark Reading

Google's GUAC Aims to Democratize Software Supply Chain Security Metadata

10/21/2022
Software makers and customers will be able to query graph database for information about the security and provenance of components in applications and codebases.

Exploit Attempts Underway for Apache Commons Text4Shell Vulnerability

10/21/2022
The good news: The Apache Commons Text library bug is far less likely to lead to exploitation than last year's Log4j library flaw.

Passkey Demos Hint at What's Ahead for Passwordless Authentication

10/21/2022
At the Authenticate Conference, Google and Microsoft demonstrated their passkey prototypes. Apple, meanwhile, already launched its version in iOS 16.

Iron Man Started His Journey From Scratch & Your Security Awareness Program Can Too

10/21/2022
Build your company's security awareness program a suit of high-tech cybersecurity armor along with a collaborative atmosphere.

List of Common Passwords Accounts for Nearly All Cyberattacks

10/21/2022
Half of a million passwords from the RockYou2021 list account for 99.997% of all credential attacks against a variety of honeypots, suggesting attackers are just taking the easy road.

Hardware Makers Standardize Server Chip Security With Caliptra

10/20/2022
The new open source specification from Open Compute Project is backed by Google, Nvidia, Microsoft, and AMD.

Brazilian Police Nab Suspected Member of Lapsus$ Group

10/20/2022
Lapsus$ Group became a top target after it breached the Brazilian Ministry of Health, among other targets.

Microsoft Data-Exposure Incident Highlights Risk of Cloud Storage Misconfiguration

10/20/2022
Many enterprises continue to leave cloud storage buckets exposed despite widely available documentation on how to properly secure them.

4 Ways To Achieve Comprehensive Security

10/20/2022
Zero trust protects identities, endpoints, applications, networks, infrastructure, and data, and can be implemented in different ways.

'FurBall' Spyware Being Used Against Iranian Citizens

10/20/2022
New Android malware variant is part of long-running Domestic Kitten campaign being conducted by APT C-50 Group, analysts report.

Name That Toon: Witching Hour

10/20/2022
Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

Anonos Secures $50 Million in IP-Backed Financing to Deliver Data Privacy Technology with 100% Accuracy and Utility to D

10/20/2022
Global data privacy software innovator will use growth funding, led by GT Investment Partners and facilitated by Aon, to fuel customer success and expand global partnerships, sales, marketing, and industry education.

Datadog Launches Cloud Security Management to Provide Cloud Native Application Protection

10/20/2022
Product brings together workload and infrastructure security into a single platform to provide a unified approach to protecting cloud environments.

Corsa Security Drives Forward with Additional $10 Million Funding

10/20/2022
Latest investment to broaden integrations with top firewall vendors.

Only 4% of Security and IT Leaders Believe All of Their Cloud Data is Sufficiently Secured

10/20/2022
New cloud data survey from the Cloud Security Alliance and BigID sheds light on the state of cloud data security in 2022.

CyCognito Launches Next Generation of Exploit Intelligence Threat Remediation Platform

10/20/2022
External attack surface management leader unveils evolution of risk intelligence solution, including a virtual sandbox environment to safely validate steps to remediation.

SynSaber Adds New Dynamic Pipeline to OT Cybersecurity Platform

10/20/2022
ICS/OT cybersecurity and asset monitoring vendor improves scalability and flexibility with new update.

New Torii Report Finds 60% of IT Leaders Don’t Know What Apps They Have

10/20/2022
Surprisingly poor cross-team collaboration leads to mismanaged SaaS, wasted money and time.