Dark Reading Daily -- April 07, 2023

Follow Dark Reading:

April 07, 2023

LATEST SECURITY NEWS & COMMENTARY

'BEC 3.0' Is Here With Tax-Season QuickBooks Cyberattacks

In next-gen, credential-harvesting attacks, phishing emails use cloud services and are free from the typical bad grammar or typos they've traditionally used (and which users have learned to spot).

The Pope's Security Gets a Boost With Vatican's MDM Move

Faced with enterprise challenges, the Holy See looks to ensure it avoids a "holey" mobile device management solution.

Twitter 'Shadow Ban' Bug Gets Official CVE

A flaw in Twitter code allows bot abuse to trick the algorithm into suppressing certain accounts.

Styx Marketplace Provides Hub for Financial Cybercrime

An emerging, illicit marketplace proves that financial cybercrime is still on the rise, with a need for countries to collectively put safeguards in place.

What to Discuss at RSA Conference — and It's Not ChatGPT

In-person conversations are a productive way to understand the state of the industry and learn new techniques. Take advantage of peers' experience, compare notes, and boost your skill set.

Australia Is Scouring the Earth for Cybercriminals — the US Should Too

It's time to get ahead of attacks before they even happen.

MORE NEWS / MORE COMMENTARY


HOT TOPICS
FBI Seizes Genesis Cybercriminal Marketplace in 'Operation Cookie Monster' The homepage of a widely used Dark Web forum for stolen cookies and other compromised data has been replaced by a seizure notice by the US federal law enforcement agency. QNAP Zero-Days Leave 80K Devices Vulnerable to Cyberattack Multiple QNAP operating systems are affected, including QTS, QuTS hero, QuTScloud, and QVP Pro appliances, and some don't yet have patches available. 3 Fronts in the Battle for Digital Identity As both digital protection strategies and digital attacks become more sophisticated, organizations that know the terrain have a better chance of navigating it. MORE

EDITORS' CHOICE

Researcher Tricks ChatGPT Into Building Undetectable Steganography Malware

Using only ChatGPT prompts, a Forcepoint researcher convinced the AI to create malware for finding and exfiltrating specific documents, despite its directive to refuse malicious requests.

LATEST FROM THE EDGE

10 Vulnerability Types to Focus On This Year

A new Tech Insight report examines how the enterprise attack surface is expanding and how organizations must deal with vulnerabilities in emerging technologies.

LATEST FROM DR TECHNOLOGY

Fight AI With AI

By developing new tools to defend against adversarial AI, companies can help ensure that artificial intelligence is developed and used in a responsible and safe manner.

WEBINARS

How to Accelerate XDR Outcomes: Bridging the Gap Between Network and Endpoint
Adversaries are moving faster than ever, with modern attacks coming from all fronts across network, endpoint, and other domains. In 2022, the average breakout time declined from 98 minutes to 84 minutes, highlighting the imperative for IT and security teams to act quickly ...
How Supply Chain Attacks Work -- And What You Can Do to Stop Them
Supply chain attacks made headlines in 2022, sending shockwaves through the industry as security and business leaders scrambled to reexamine the security of their own supply chains. In this webinar, experts talk through the stages of a supply chain attack and ...

View More Dark Reading Webinars >>

WHITE PAPERS

View More White Papers >>

FEATURED REPORTS

The 10 Most Impactful Types of Vulnerabilities for Enterprises Today
The enterprise attack surface is constantly expanding. Enterprises have to think beyond zero day vulnerabilities. It's imperative security teams start looking at vulnerabilities in 5G, firmware, edge, and ICS/OT, among others. Managing system vulnerabilities is one of the old ...
Shoring Up the Software Supply Chain Across Enterprise Applications
Supply chain security attacks are growing at an alarming pace, and things are going to keep getting worse until DevSecOps teams get on the same page. A little help from the feds could also be welcome Modern-day software development depends ...
How Machine Learning, AI & Deep Learning Improve Cybersecurity

View More Dark Reading Reports >>

PRODUCTS & RELEASES

Noname Security Announces Hardened API Security Platform

BlackBerry Introduces Integrated Solution to Assure Secure Bi-Directional Response Communications During Cyber Incidents

Cybereason Secures $100M in Funding Led by SoftBank Corp.

MORE PRODUCTS & RELEASES

CURRENT ISSUE

Shoring Up the Software Supply Chain Across Enterprise Applications
DOWNLOAD THIS ISSUE
VIEW BACK ISSUES

Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA

To opt-out of any future Dark Reading Daily Newsletter emails, please respond here.

Thoughts about this newsletter? Give us feedback.

Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:

If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.

We take your privacy very seriously. Please review our Privacy Statement.

Shoring Up the Software Supply Chain Across Enterprise Applications