Dark Reading Daily -- August 12, 2021

Follow Dark Reading:

August 12, 2021

LATEST SECURITY NEWS & COMMENTARY

Attacks Leveraging Open Redirects on Google Meet, DoubleClick Surge

Phishing operators took advantage of the issue to redirect victims to malicious websites.

Cybersecurity Executive Order: Securing the Software Supply Chain

The new executive order will help foster a more collaborative and unified approach to cybersecurity, an approach that highlights the importance of securing software by design.

Zero Trust Is a Great Start; Zero Knowledge Can Be Even Better

For those of us in the decentralized space, the current zero-trust model doesn’t go far enough.

Action Bias: The Danger of Thinking Too Quickly

Security pros are advised to act quickly in crises, but hastily made decisions may do more harm than good.

Researchers Discover Major Vulnerability in DNS-as-a-Service Provider Platforms

An attacker could obtain sensitive internal network information from thousands of organizations by registering as their DNS service provider's nameserver. The Dark Reading News Desk interviews researchers who discovered the flaw.

Where Are You Weakest? New Research Reveals Your Most Vulnerable Areas

Orange Cyberdefense research shows where you are most at risk and how to address these vital security issues.

New Framework Aims to Detect & Address Synthetic Media Social Engineering

Cybercriminals have adopted synthetic media to launch increasingly complex and realistic social engineering attacks in recent years, and FBI officials warn the threat is poised to grow.

Apple Settles Copyright Lawsuit With Virtual iOS Software Company

Case against startup Corellium was scheduled for court later this month.

Accenture Says It 'Detected Irregular Activity,' Restored Systems from Backup

Security services firm responds to reports of a ransomware and extortion attack.

(Sponsored Video) Why Inventory is Important to Security Pros

Sumedh Thakar of Qualys talks about his first six months as CEO and president of the company, and outlines the elements of his leadership vision that will foster greater innovation internally and better protection for customers.

(Sponsored Video) Dark Reading News Desk Talks to Intel 471

How smarter use of threat intel can keep organizations and users safe from attacks that are sponsored by nation-states.

MORE NEWS & COMMENTARY


HOT TOPICS
Presenting the 2021 PWNIE Award Winners The list of 2021 PWNIE Award winners includes security researchers behind some of the biggest vulnerabilities discoveries over the past year. Mind Over Matter: Revamping Security Awareness With Psychology Despite the prevalence of employee-centric attacks, most organizations spend less than 5% of their security budgets on people. Misconfigured Salesforce Communities Place Orgs at Risk of Data Theft, Adversary Recon Organizations often inadvertently let unauthenticated guests have access to a lot more data within these communities than they should, security vendor says. MORE

EDITORS' CHOICE

Microsoft Patch Tuesday Puts Spotlight on Windows Print Spooler

Three of the 44 vulnerabilities patched today exist in Windows Print Spooler, a primary focus of security fixes over the past few months.

Why It's Time for Cybersecurity to Go Mainstream

Improving cybersecurity must be a collective effort. Here are three achievable steps the government, private sector, and broader public can take to make a difference now.

LATEST FROM THE EDGE

How Effective UX Can Beat Security Bypass Culture

Provide a subpar user experience and you can be sure employees will find a way to work around it. That, of course, can easily undermine a business' security and potentially threaten its longevity.

Tech Resources

ACCESS TECH LIBRARY NOW

Making Security Orchestration Automation and Response (SOAR) Work in Your Enterprise
Over the past few years, many enterprises have been improving cybersecurity by implementing the Security Orchestration, Automation, and Response (SOAR) framework, which provides a path to collect threat data from multiple sources and respond to some security events automatically. How ...
Two Sides of the PAM Coin - August 11 - Register Now
There are two sides of the PAM (Privileged Access Management) Coin. Password vaulting is one. Privilege Elevation is the other. A vault is a great first step in protecting your company from identity-related data breaches, but don't stop there! We ...

FEATURED REPORTS

CURRENT ISSUE

The State of Cybersecurity Incident Response
DOWNLOAD THIS ISSUE	SUBSCRIBE NOW
BACK ISSUES \| MUST READS \| TECH DIGEST

PRODUCTS & RELEASES

Arctic Wolf Appoints President and Chief Revenue Officer Nick Schneider as Chief Executive Officer

Next Generation of Telos’ Cyber Risk Management Platform Streamlines Security Data Sharing for Faster Compliance Reporting and Approval

Businesses Lose up to $250M Every Year to Unwanted Bot Attacks

MORE PRODUCTS & RELEASES

Dark Reading Daily
-- Published By Dark Reading
Informa Tech
303 Second St., Suite 900 South Tower, San Francisco, CA 94107

To update your profile, change your e-mail address, or unsubscribe, click here.

To opt-out of any future Dark Reading Daily Newsletter emails, please respond here.

Thoughts about this newsletter? Give us feedback.

Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:

If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.

We take your privacy very seriously. Please review our Privacy Statement.