Dark Reading Daily -- August 29, 2024

CISA warned about the RCE zero-day vulnerability in AVTECH IP cameras in early August, and now vulnerable systems are being used to spread malware.

LATEST SECURITY NEWS & COMMENTARY

CCTV Zero-Day Exposes Critical Infrastructure to Mirai Botnet

CISA warned about the RCE zero-day vulnerability in AVTECH IP cameras in early August, and now vulnerable systems are being used to spread malware.

BlackByte Targets ESXi Bug With Ransomware to Access Virtual Assets

The pivot is one of several changes the groups using the malware have used in recent attacks.

Attackers Exploit Critical Atlassian Confluence Flaw for Cryptojacking

Novel attack vectors leverage the CVE-2023-22527 RCE flaw discovered in January, which is still under active attack, to turn targeted cloud environments into cryptomining networks.

Manufacturing Sector Under Fire From Microsoft Credential Thieves

The emails impersonate well-known companies in the industry, fooling the victim into thinking they are communicating with a legitimate entity.

Hitachi Energy Vulnerabilities Plague SCADA Power Systems

The company has assessed four of the five disclosed vulnerabilities as being of high to critical severity.

Why LLMs Are Just the Tip of the AI Security Iceberg

With the right processes and tools, organizations can implement advanced AI security frameworks that make hidden risks visible, enabling security teams to track and address them before impact.

MORE NEWS / MORE COMMENTARY


HOT TOPICS
Hackers Use Rare Stealth Techniques to Down Asian Military, Gov't Orgs A threat actor resembling APT41 performed "AppDomainManager Injection," which is like DLL sideloading, but arguably easier and stealthier. Aggressively Monitoring for Changes Is a Key Aspect of Cybersecurity Employees and management must fully support change detection and file integrity monitoring, allowing a proactive approach with definitive security controls to be implemented against threat actors. Microsoft to Host Windows Security Summit in CrowdStrike Outage Aftermath The tech giant seeks to work with endpoint security partners, including CrowdStrike, on how to prevent an outage event of such gravity from happening again. Why Every Business Should Prioritize Confidential Computing Confidential computing safeguards data in use, making it a crucial component of cloud security. MORE

PRODUCTS & RELEASES

77% of Educational Institutions Spotted a Cyberattack Within the Last 12 Months

Pluralsight Releases Courses to Help Cyber Pros Defend Against Volt Typhoon Hacker Group

Malicious Links, AI-Enabled Tools, and Attacks on SMBs Among Top Cybersecurity Threats in H1 Mimecast Global Threat Intelligence Report

MORE PRODUCTS & RELEASES

EDITORS' CHOICE

China's Volt Typhoon Exploits Zero-Day in Versa's SD-WAN Director Servers

So far, the threat actor has compromised at least five organizations using CVE-2024-39717; CISA has added bug to its Known Exploited Vulnerability database.

LATEST FROM THE EDGE

News Desk 2024: Hacking Microsoft Copilot Is Scary Easy

As enterprises in the world embrace Microsoft's AI assistant, researcher Michael Bargury warns its security is lacking. Check out his News Desk interview during Black Hat USA.

LATEST FROM DR TECHNOLOGY

Dragos Expands Asset Visibility in Latest Platform Update

The latest release of the Dragos Platform provide industrial and critical infrastructure organizations with complete and enriched view of their OT environment.

LATEST FROM DR GLOBAL

South Korean APT Exploits 1-Click WPS Office Bug, Nabs Chinese Intel

The most popular office software suite in China actually has two critical vulnerabilities, which allowed hackers the opportunity for remote code execution. Time to patch.

WEBINARS

View More Dark Reading Webinars >>

WHITE PAPERS

View More White Papers >>

FEATURED REPORTS

View More Dark Reading Reports >>