Dark Reading

Microsoft Secures Azure Enclaves With Hardware Guards

10/14/2022
Microsoft highlighted emerging confidential computing offerings for Azure during its Ignite conference.

Concerns Over Fortinet Flaw Mount; PoC Released, Exploit Activity Grows

10/14/2022
The authentication bypass flaw in FortiOS, FortiProxy and FortiSwitchManager is easy to find and exploit, security experts say.

Apple's Constant Battles Against Zero-Day Exploits

10/14/2022
Such exploits sell for up to $10 million, making them the single most valuable commodity in the cybercrime underworld.

Fast Fashion Retailer Data Breach Draws $1.9M Fine

10/14/2022
New York AG fines Shein and Romwe parent company for failure to protect customer data and downplaying the 2018 compromise of 46 million shopper records.

Microsoft 365 Message Encryption Can Leak Sensitive Info

10/14/2022
The default email encryption used in Microsoft Office's cloud version is leaky, which the company acknowledged but said it wouldn't fix.

Acuity Reports Increase in Cyber Liability Insurance Claims as Cybercrime Skyrockets

10/14/2022
Acuity Insurance reports ongoing increased insurance risk for individuals and businesses.

Care and Feeding of the SOC's Most Powerful Tool: Your Brain

10/14/2022
Once overloaded, our brains can't process information effectively, performance decreases, and even the simplest of tasks seem foreign.

Juice Technology Receives ISO Certification for Charging Station Cyber Security

10/13/2022
Electric Vehicle Charging Station Leader Certified in Accordance with ISO/SAE 21434 "Road Vehicles – Cybersecurity Engineering".

Quarter of Healthcare Ransomware Victims Forced to Halt Operations

10/13/2022
Trend Micro research reveals supply chains are key source of risk.

Armis Now Available on Google Cloud Marketplace

10/13/2022
Enterprises seeking asset visibility and security enabled to simplify the procurement process of Armis.

Google Cloud Advances Partnerships with 20-Plus Software Companies Focused on Digital Sovereignty and Cybersecurity

10/13/2022
At Next '22, Google Cloud announces updates to its trusted cloud ecosystem with new Sovereign Solutions initiative and partnerships spanning critical areas of cybersecurity.

HSBC and Silent Eight Expand Machine Learning Partnership

10/13/2022
Silent Eight announced an extension to its existing partnership with HSBC to tackle financial crime.

Nexusguard Research Shows Total Number of DDoS Attacks Increased during First Half of 2022 While Maximum Attack Size Dec

10/13/2022
Nexusguard DDoS Statistical Report reveals key attack observations and analysis from the first half of 2022.

Resistant AI and ComplyAdvantage Launch AI Transaction Monitoring Solution To Combat Fraud and Money Laundering

10/13/2022
Resistant AI and ComplyAdvantage launch AI transaction monitoring solution to combat fraud and money laundering.

Newly Introduced HackerOne Assets Goes Beyond Attack Surface Management To Close Security Gaps

10/13/2022
HackerOne Assets combines ASM with insights from security experts to protect known and unknown digital assets.

Comprehensive Network Visibility Is Imperative for Zero-Trust Maturity

10/13/2022
Distrust and verify, because you can't protect what you can't see.

Novel npm Timing Attack Allows Corporate Targeting

10/13/2022
A timing attack helps cyberattackers lob malicious code-bombs at corporate targets by cloning private package names.

Feature-Rich 'Alchimist' Cyberattack Framework Targets Windows, Mac, Linux Environments

10/13/2022
The comprehensive, multiplatform framework comes loaded with weapons, and it is likely another effort by a China-based threat group to develop an alternative to Cobalt Strike and Sliver.

Tanium Benchmark Sets New Standard for Tracking and Improving Security and Operational Metrics

10/13/2022
Company enables organizations to mark endpoint performance and take immediate action to mitigate risk.