Dark Reading

Details Emerge on How Gaming Giant EA Was Hacked

06/11/2021
Hacking group stole source code to FIFA 21 and the company's Frostbite engine.

Many Mobile Apps Intentionally Using Insecure Connections for Sending Data

06/11/2021
A new analysis of iOS and Android apps released to Apple's and Google's app stores over the past five years found many to be deliberately breaking HTTPS protections.

Secure Access Trade-offs for DevSecOps Teams

06/11/2021
Thanks to recent advancements in access technologies, everyone can apply identity-based authentication and authorization and zero-trust principles for their computing resources.

New Ransomware Group Claiming Connection to REvil Gang Surfaces

06/10/2021
'Prometheus' is the latest example of how the ransomware-as-a-service model is letting new gangs scale up operations quickly.

'Fancy Lazarus' Criminal Group Launches DDoS Extortion Campaign

06/10/2021
The group has re-emerged after a brief hiatus with a new email campaign threatening a DDoS attack against businesses that don't pay ransom.

Healthcare Device Security Firm COO Charged with Hacking Medical Center

06/10/2021
Vikas Singla, chief operating officer of security firm that provides products and services to the healthcare industry, faces charges surrounding a cyberattack he allegedly conducted against Duluth, Ga.-based Gwinnett Medial Center.

JBS CEO Says Company Paid $11M in Ransom

06/10/2021
The decision to pay attackers was a difficult one, CEO Andre Nogueira said in a statement.

'Beware the Lady Named Katie'

06/10/2021
A semester-long course boiled down to two minutes and 45 seconds.

The Workforce Shortage in Cybersecurity Is a Myth

06/10/2021
What we really have is an automation-in-the-wrong-place problem.

Intl. Law Enforcement Operation Disrupts Slilpp Marketplace

06/10/2021
A seizure warrant affidavit unsealed today states Slilpp had sold allegedly stolen login credentials since 2012.

Deepfakes Are on the Rise, but Don't Panic Just Yet

06/10/2021
Deepfakes will likely give way to deep suspicion, as users try to sort legitimate media from malicious.

11 Cybersecurity Vendors to Watch in 2021

06/10/2021
The cybersecurity landscape continues to spawn new companies and attract new investments. Here is just a sampling of what the industry has to offer.

Cyber Is the New Cold War & AI Is the Arms Race

06/10/2021
Continual cyberattacks have pushed us into a new kind of Cold War, with artificial intelligence the basis of this new arms race.

Required MFA Is Not Sufficient for Strong Security: Report

06/09/2021
Attackers and red teams find multiple ways to bypass poorly deployed MFA in enterprise environments, underscoring how redundancy and good design are still required.

What to Know About Updates to the PCI Secure Software Standard

06/09/2021
New requirements add 50 controls covering five control objectives. Here's a high-level look at each objective.

RSA Spins Off Fraud & Risk Intelligence Unit

06/09/2021
The new company, called Outseer, will continue to focus on payment authentication and fraud detection and analysis.

CISA Addresses Rise in Ransomware Threatening OT Assets

06/09/2021
The agency has released guidance in response to a rise of ransomware attacks affecting OT assets and control systems.

New Security Event @Hack to Take Place in Saudi Arabia

06/09/2021
The Saudi Federation of Cybersecurity, Programming, and Drones (SAFCSP) and Informa Tech will launch a multi-day event in Riyadh this November.

With Cloud, CDO and CISO Concerns Are Equally Important

06/09/2021
Navigated properly, a melding of these complementary perspectives can help keep an organization more secure.

Hardening the Physical Security Supply Chain to Mitigate the Cyber-Risk

06/09/2021
Nick Smith, Regional Manager at Genetec, details how physical security professionals can improve their resilience to cyberattacks by reviewing the cybersecurity policies of those they work with in the supply chain. This includes everyone from component vendors to installers and engineers.