Dark Reading

Purchasing Managed Security Services: Strategies for Client References

09/15/2021
There's a scarcity of customers using managed security services who are willing to talk to others about their experiences. Here's how to work with your vendor(s) to leverage their customers' experiences and hard-won wisdom.

Don't Try to Outsmart Cybercriminals. Outnumber Them!

09/15/2021
Why hasn't a problem that's lasted for more than 40 years been solved after hundreds of billions of dollars have been spent? Let's take a new approach.

Microsoft Patches MSHTML Vuln Among 66 CVEs

09/14/2021
This month's Patch Tuesday release addresses a remote code execution bug under active attack and a publicly known flaw in Windows DNS.

API Security Startup Neosec Launches With $20.7M Series A

09/14/2021
Neosec, founded by the security experts behind LightCyber, aims to bring principles from extended detection and response to API security.

Ransomware Operators Ramp Up Pressure on Victims via Multiple Extortion Attacks

09/14/2021
Though overall ransomware attack volumes dipped in the first half of this year, the number of campaigns involving three and four extortion methods increased.

Name That Toon: Congrats! It's a ...

09/14/2021
Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

Reported Rates of Major Security Incidents by Market

09/14/2021
In the "Proven Success Factors for Endpoint Security" report, Cisco Security shares a global perspective on reported cyber events in the past two years.

Google Patches Chrome Bugs Exploited in the Wild

09/14/2021
CISA advises organizations to patch quickly to protect against zero-day exploits.

Outlining Risks to the World's Vital Cyber-Physical Systems

09/14/2021
The key to protecting these systems is not only to ensure the control environment is secure and protected but also to deploy emerging technologies such as confidential computing.

Nearly 50% of On-Premises Databases Have Vulnerabilities

09/14/2021
A network compromise shouldn't mean "game over" for corporate data, but survey data shows many companies fail to protect their crown jewels.

DHS Secretary Mayorkas Headlines Billington Cybersecurity Summit

09/14/2021
DHS Secretary Mayorkas joins 130+ cyber experts at Billington Cybersecurity Summit that explores ransomware, 5G, zero trust, and more.

Magecart: How Its Attack Techniques Evolved

09/14/2021
Shape-shifting Magecart has shown itself to be highly adaptable in its ability to compromise third-party websites, especially during the pandemic.

Security Fears & Remote Work Drive Continued 2FA Adoption

09/14/2021
Seventy-nine percent of people used two-factor authentication at least once in 2021, with 72% regularly using the technology, as remote work, social media, and online retail spur demand.

Brute-Force Attacks, Vulnerability Exploits Top Initial Attack Vectors

09/13/2021
A new analysis emphasizes how most security incidents can be avoided with strong patch management and password management policies.

More Than 10,000 Cybersecurity Professionals Have Earned the (ISC)2 CCSP Cloud Security Certification

09/13/2021
CCSP certification validates comprehensive vendor-neutral cloud security expertise, as demand for proven talent for protecting data and cloud infrastructure intensifies.

Executives' Ransomware Concerns Are High, but Few Are Prepared for Such Attacks

09/13/2021
The vast majority (86.7%) of C-suite and other executives say they expect the number of cyberattacks targeting their organizations to increase over the next 12 months, according to a recent Deloitte poll.

Apple Patches Zero-Days in iOS 14.8 Update

09/13/2021
An important security update addresses vulnerabilities in CoreGraphics and WebKit that may have been actively exploited.

Constructive Complaints: 5 Ways to Transform Problems Into Plans

09/13/2021
Working in infosec has its challenges, and it's easy enough to complain about them. But that won't solve anything.

Booz Allen Hamilton Acquires Digital Forensics Firm Tracepoint

09/13/2021
The company's technology will integrate with Booz Allen's commercial cyber business.

Kiersten Todt Named Chief of Staff for CISA

09/13/2021
Over the past four years, Todt has led CRI from conception to one of the leading global cybersecurity resources available to small and medium-sized enterprises (SMEs).