Dark Reading

SAIC Launches Rugged Apps to Provide Secure Commercial Apps to Government Users

12/20/2021
Rugged Apps ensures mobile apps are NIAP-compliant.

BlackBerry Launches New Managed Extended Detection and Response (XDR) Service

12/20/2021
Company partners with Exabeam to launch update to its BlackBerry Guard managed detection and response (MDR) service.

SecurityScorecard Research Reveals Cyber Vulnerabilities Pose a Threat to U.S. Maritime Security

12/20/2021
While the shipping industry's cyber posture was better than companies in the Forbes Global 2000, the industry performed lower in key risk group factors.

Trend Micro Crowns Champions of 2021 Capture the Flag Competition

12/20/2021
Challenges were designed to address critical areas of cybersecurity, including reversing, cloud, IoT, open source intelligence, forensics, and machine learning.

Reblaze Appoints New CEO

12/20/2021
Ziv Oren previously held the position of chief operations officer at the company.

Four Out of Five Organizations Are Increasing Cybersecurity Budgets for 2022

12/20/2021
Half of security decision makers also say the cyber skills gap will significantly impact their 2022 strategy, according to new research from Neustar.

Zero Trust Shouldn’t Mean Zero Trust in Employees

12/20/2021
Some think zero trust means you cannot or should not trust employees, an approach that misses the mark and sets up everyone for failure.

Lights Out: Cyberattacks Shut Down Building Automation Systems

12/20/2021
Security experts in Germany discover similar attacks that lock building engineering management firms out of the BASes they built and manage — by turning a security feature against them.

How Risky Is the Log4J Vulnerability?

12/17/2021
Security teams around the world are on high alert dealing with the Log4j vulnerability, but how risky is it, really?

Meta Acts Against 7 Entities Found Spying on 50,000 Users

12/17/2021
The parent company of Facebook and Instagram has warned some 50,000 account holders they are targets of surveillance.

Executive Partnerships Are Critical for Cybersecurity Success

12/17/2021
One leader alone can't protect an organization from cyber threats, C-suite leaders agree.

Timely Questions for Log4j Response Now — And for the Future

12/17/2021
EXPERT INSIGHT: How to assess your exposure to the vulnerability with a combination of asset inventory, testing, solid information sources, and software bills of materials (SBOMs).

PseudoManuscrypt Malware Targeted Government & ICS Systems in 2021

12/17/2021
The "PseudoManuscrypt" operation infected some 35,000 computers with cyber-espionage malware and targeted computers in both government and private industry.

Time to Reset the Idea of Zero Trust

12/17/2021
CISOs are increasingly drawn to the zero trust security model, but implementing a frictionless experience is still a challenge.

CISA Issues Emergency Directive on Log4j

12/17/2021
The Cybersecurity Infrastructure and Security Agency orders federal agencies to take actions to mitigate vulnerabilities to the Apache Log4j flaw and attacks exploiting it.

Is Data Security Worthless if the Data Life Cycle Lacks Clarity?

12/17/2021
If you cannot track, access, or audit data at every stage of the process, then you can't claim your data is secure.

Mobile App Developers Keep Fraudulent Traffic at Bay with Anti-Fraud API

12/16/2021
The new API and SDK from Pixalate helps mobile developers avoid getting their apps delisted from app stores by detecting and blocking fraudulent traffic.

Why Log4j Mitigation Is Fraught With Challenges

12/16/2021
The Log4j flaw exists in a component that is not always easy to detect and is widely used beyond an organization's own networks and systems.

Phorpiex Botnet Variant Spread Across 96 Countries

12/16/2021
A new variant dubbed "Twizt" has hijacked 969 transactions and stolen the equivalent of nearly $500,000 USD.

Log4Shell: The Big Picture

12/16/2021
A look at why this is such a tricky vulnerability and why the industry response has been good, but not great.