Dark Reading

A New Approach to Securing Authentication Systems' Core Secrets

08/05/2021
Researchers at Black Hat USA explain issues around defending "Golden Secrets" and present an approach to solving the problem.

Organizations Still Struggle to Hire & Retain Infosec Employees: Report

08/05/2021
Security leaders are challenged to fill application security and cloud computing jobs in particular, survey data shows.

Why Supply Chain Attacks Are Destined to Escalate

08/05/2021
In his keynote address at Black Hat USA on Wednesday, Matt Tait, chief operating officer at Corellium, called for software platform vendors and security researchers to do their part to thwart the fallout of software supply chain compromises.

New Normal Demands New Security Leadership Structure

08/02/2021
At the inaugural Omdia Analyst Summit, experts discuss where the past year has created gaps in traditional security strategy and how organizations can fill them.

Multiple Zero-Day Flaws Discovered in Popular Hospital Pneumatic Tube System

08/02/2021
"PwnedPiper" flaws could allow attackers to disrupt delivery of lab samples or steal hospital employee credentials, new research shows.

8 Security Tools to be Unveiled at Black Hat USA

07/28/2021
Security researchers and practitioners share a host of new cyber tools for penetration testing, reverse engineering, malware defense, and more.

Biden Administration Responds to Geopolitical Cyber Threats

07/23/2021
In response to growing concerns regarding the recent uptick in large-scale, nation-state-backed ransomware attacks on critical infrastructure, the Biden administration is taking new action to tackle the evolving challenges posed by ransomware attacks.

Law Firm for Ford, Pfizer, Exxon Discloses Ransomware Attack

07/19/2021
Campbell Conroy & O'Neil reports the attack affected personal data including Social Security numbers, passport numbers, and payment card data for some individuals.

US Accuses China of Using Criminal Hackers in Cyber Espionage Operations

07/19/2021
DOJ indicts four Chinese individuals for alleged role in attacks targeting intellectual property, trade secrets belonging to defense contractors, maritime companies, aircraft service firms, and others.

How Gaming Attack Data Aids Defenders Across Industries

07/19/2021
Web application attacks against the video game industry quadrupled in 2020 compared to the previous year, but companies outside entertainment can learn from the data.

NSO Group Spyware Used On Journalists & Activists Worldwide

07/19/2021
An investigation finds Pegasus spyware, intended for use on criminals and terrorists, has been used in targeted campaigns against others around the world.

When Ransomware Comes to (Your) Town

07/19/2021
While steps for defending against a ransomware attack vary based on the size of the government entity and the resources available to each one, rooting out ransomware ultimately will come down to two things: system architecture and partnerships.

7 Ways AI and ML Are Helping and Hurting Cybersecurity

07/19/2021
In the right hands, artificial intelligence and machine learning can enrich our cyber defenses. In the wrong hands, they can create significant harm.

Breaking Down the Threat of Going All-In With Microsoft Security

07/19/2021
Limit risk by dividing responsibility for infrastructure, tools, and security.

Researchers Create New Approach to Detect Brand Impersonation

07/16/2021
A team of Microsoft researchers developed and trained a Siamese Neural Network to detect brand impersonation attacks.

Recent Attacks Lead to Renewed Calls for Banning Ransom Payments

07/16/2021
While attackers in protected jurisdictions continue to get massive sums for continuing to breach organizations, the ransomware threat will only continue to grow.

4 Future Integrated Circuit Threats to Watch

07/16/2021
Threats to the supply chains for ICs and other computer components are poised to wreak even more havoc on organizations.

How to Attract More Computer Science Grads to the Cybersecurity Field

07/16/2021
With 465,000 cybersecurity job openings in the United States, why is recruiting so difficult? A recent college graduate offers his take.

Attackers Exploited 4 Zero-Day Flaws in Chrome, Safari & IE

07/15/2021
At least two government-backed actors -- including one Russian group -- used the now-patched flaws in separate campaigns, Google says.

State Dept. to Pay Up to $10M for Information on Foreign Cyberattacks

07/15/2021
The Rewards for Justice program, a counterterrorism tool, is now aimed at collecting information on nation-states that use hackers to disrupt critical infrastructure.