Dark Reading Daily -- July 31, 2023

Follow Dark Reading:

July 31, 2023

LATEST SECURITY NEWS & COMMENTARY

Another AI Pitfall: Digital Mirroring Opens New Cyberattack Vector

The more artificial intelligence builds out our digital personas, the easier it will become for bad actors to target us with more convincing attacks.

CherryBlos Malware Uses OCR to Pluck Android Users' Cryptocurrency

The malware, along with a sister strain dubbed "FakeTrade," was found lurking in Google Play.

Stark#Mule Malware Campaign Targets Koreans, Uses US Army Documents

Techniques are similar to those in previous North Korean attacks and could be linked to well-known cyber-espionage organizations.

Hack Crew Responsible for Stolen Data, NATO Investigates Claims

NATO asserts that their cyber experts continue to look into the claims and that its classified networks remain secure.

Senator Blasts Microsoft for Negligence in 365 Email Breach

In a letter to the DoJ, FTC, and CISA, Oregon's Wyden also called for Microsoft to be held accountable in the sprawling SolarWinds breach.

IT Ops and Security Teams Need Automation, Not Couples Therapy

When their roles intersect, IT ops and security teams often find themselves at odds. Here are some ways to foster collaboration.

MORE NEWS / MORE COMMENTARY


HOT TOPICS
10 Free Purple Team Security Tools to Check Out Check out this curated list of cool tools and platforms for both offensive security experts and defenders, all of which will be released or demoed at Black Hat USA 2023. Millions of People Affected in MOVEit Attack on US Gov't Vendor Living up to its name, Maximus sees a whale of a breach that affects millions of people's sensitive government records, including health data. Why Today's CISOs Must Embrace Change With change happening faster than ever before, tools can help bridge capability gaps, along with accelerated workforce training. What Will CISA's Secure Software Development Attestation Form Mean? The proposed attestation form is meant to help secure the software chain and formalizes the role of the SBOM as the first line of defense. MORE

EDITORS' CHOICE

Ubuntu Linux Cloud Workloads Face Rampant Root Take Takeovers

Some 40% of Ubuntu Linux cloud workloads subject to GameOverlay security bugs in the OverlayFS module.

LATEST FROM DR TECHNOLOGY

Choose the Best Biometrics Authentication for Your Use Case

Voice, face, and vein recognition each have its pros and cons. Here's what CISOs need to know.

LATEST FROM THE EDGE

How Hackers Can Hijack a Satellite

We rely on them for communications, military activity, and everyday tasks. How long before attackers really start to look up at the stars?

LATEST FROM DR GLOBAL

Zero-Day Vulnerabilities Discovered in Global Emergency Services Communications Protocol

Weak encryption algorithms leave radio communications open to attack and abuse.

WEBINARS

The Dark Side of AI: Unmasking its Threats and Navigating the Shadows of Cybersecurity in the Digital Age
Artificial Intelligence has come roaring to the forefront of today's technology landscape. It has revolutionized industries and will modernize careers, bringing numerous benefits and advancements to our daily lives. However, it is crucial to recognize that AI also introduces unseen ...
Implementing Zero-Trust With A Remote Workforce
The shift to remote work and a distributed workforce model highlighted the importance of the zero-trust model for organizations. Corporate endpoint devices are no longer protected behind the enterprise perimeter, connect to routers with unknown levels of security, and share ...

View More Dark Reading Webinars >>

WHITE PAPERS

View More White Papers >>

FEATURED REPORTS

Concerns Mount Over Ransomware, Zero-Day Bugs, and AI-Enabled Malware
Everything You Need to Know About DNS Attacks
Successfully Managing Identity in Modern Cloud and Hybrid Environments
Cloud promised to simplify the security and management of enterprise systems. In many ways it has, but when it comes to identity management it's as complicated as ever. This report details how to get identity programs on track -- and ...

View More Dark Reading Reports >>

PRODUCTS & RELEASES

7 in 10 MSPs Name Data Security and Network Security As Their Top IT Priorities for 2023

CompTIA ChannelCon Technology Vendor Fair Highlights Tech Solutions

Coro Acquires Network Security Startup Privatise

Rezilion Uncovers High-Risk Vulnerabilities Missing From CISA KEV Catalog

SE Labs Unveils Latest Comparative Analysis of Endpoint Detection and Response Products

MORE PRODUCTS & RELEASES

CURRENT ISSUE

How to Use Threat Intelligence to Mitigate Third-Party Risk
DOWNLOAD THIS ISSUE
VIEW BACK ISSUES

Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA

To opt-out of any future Dark Reading Daily Newsletter emails, please respond here.

Thoughts about this newsletter? Give us feedback.

Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:

If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.

We take your privacy very seriously. Please review our Privacy Statement.

How to Use Threat Intelligence to Mitigate Third-Party Risk