Dark Reading

Cyber Conflict Overshadowed a Major Government Ransomware Alert

04/26/2022
The FBI warns that ransomware targets are no longer predictably the biggest, richest organizations, and that attackers have leveled up to victimize organizations of all sizes.

What the ECDSA Flaw in Java Means for Enterprises

04/25/2022
This Tech Tip reminds developers and security teams to check what version of Java they are running. Whether they are vulnerable to the ECDSA flaw boils down to the version number.

Iranian Hacking Group Among Those Exploiting Recently Disclosed VMware RCE Flaw

04/25/2022
Threat actor is using the flaw to deliver Core Impact backdoor on vulnerable systems, security vendor says.

North Korean State Actors Deploying Novel Malware to Spy on Journalists

04/25/2022
Spear-phishing campaign loaded with new "Goldbackdoor" malware targeted journalists with NK News, analysts found.

When Security Meets Development: The DevSecOps Conundrum

04/25/2022
The DevSecOps journey is well worth undertaking because it can improve communication, speed up development, and ensure quality products.

Mastercard Launches Next-Generation Identity Technology with Microsoft

04/25/2022
New 'trust' tool improves online experience and helps tackle digital fraud.

Ukraine Invasion Driving DDoS Attacks to All-Time Highs

04/25/2022
Unprecedented numbers of DDoS attacks since February are the result of hacktivists' cyberwar against Russian state interests, researchers say.

Trend Micro Launches New Security Platform

04/25/2022
An ecosystem of native and third-party integrations provides visibility and control across the entire attack surface.

Overlapping ICS/OT Mandates Distract From Threat Detection and Response

04/25/2022
It's time for regulators of critical infrastructure — including industrial control systems and operational technology — to focus more on operational resiliency.

Many Medical Device Makers Skimp on Security Practices

04/22/2022
Barely over a quarter of medical device companies surveyed maintain a software bill-of-materials, and less than half set security requirements at the design stage.

Sophos Buys Alert-Monitoring Automation Vendor

04/22/2022
Acquisition of cloud-based alert security company will help Sophos automate tasks bogging down security teams, the company says.

Neustar Security Services’ UltraDNS Integrates Terraform for Streamlined, Automated DNS Management

04/22/2022
UltraDNS Terraform Provider enhances productivity, change management.

FBI Warns Ransomware Attacks on Agriculture Co-ops Could Upend Food Supply Chain

04/22/2022
Ransomware groups are looking to strike large agriculture cooperatives during strategic seasons, when they are most vulnerable, according to law enforcement.

Early Discovery of Pipedream Malware a Success Story for Industrial Security

04/22/2022
Cybersecurity professionals discovered, analyzed, and created defenses against the ICS malware framework before it was deployed, but expect the stakes to keep rising.

Bitdefender Enhances Premium VPN Service With New Privacy Protection Technologies

04/22/2022
New ad blocker and anti-tracker modules as well as whitelist capabilities provide consumers with secure and private Web browsing.

Contrast Security Introduces Cloud-Native Automation

04/22/2022
New integrations enable Contrast capabilities to be delivered to Red Hat OpenShift users.

Forescout Enhances Continuum Platform With New OT Capabilities

04/22/2022
New capabilities enable improved OT and IoT asset visibility along with data-powered threat detection and cost-effective deployments at scale.

PerimeterX Code Defender Extends Capability To Stop Supply Chain Attacks

04/22/2022
Client-side web app security solution introduces features that give real-time visibility and control of the website attack surface, enabling businesses to stop PII theft and comply with data privacy regulations.

CyberUSA, and Superus Careers Launch Cyber Career Exchange Platform

04/22/2022
Collaboration aimed at connecting talent and employers.