Dark Reading Daily -- June 24, 2022

Follow Dark Reading:

June 24, 2022

LATEST SECURITY NEWS & COMMENTARY

Chinese APT Group Likely Using Ransomware Attacks as Cover for IP Theft

Bronze Starlight’s use of multiple ransomware families and its victim-targeting suggest there’s more to the group’s activities than just financial gain, security vendor says.

Cyberattackers Abuse QuickBooks Cloud Service in 'Double-Spear' Campaign

Malicious invoices coming from the accounting software's legitimate domain are used to harvest phone numbers and carry out fraudulent credit-card transactions.

How APTs Are Achieving Persistence Through IoT, OT, and Network Devices

To prevent these attacks, businesses must have complete visibility into, and access and management over, disparate devices.

The Rise, Fall, and Rebirth of the Presumption of Compromise

The concept might make us sharp and realistic, but it's not enough on its own.

Pair of Brand-New Cybersecurity Bills Become Law

Bipartisan legislation allows cybersecurity experts to work across multiple agencies and provides federal support for local governments.

MORE NEWS / MORE COMMENTARY


HOT TOPICS
Capital One Attacker Exploited Misconfigured AWS Databases After bragging in underground forums, the woman who stole 100 million credit applications from Capital One has been found guilty. MetaMask Crypto-Wallet Theft Skates Past Microsoft 365 Security The credential-phishing attack leverages social engineering and brand impersonation techniques to lead users to a spoofed MetaMask verification page. GitHub's MFA Plans Should Spur Rest of Industry to Raise the Bar We as industry leaders should be building on what individual platforms like GitHub are doing in two critical ways: demanding third parties improve security and creating more interoperable architectures. MORE

EDITORS' CHOICE

Microsoft 365 Users in US Face Raging Spate of Attacks

A voicemail-themed phishing campaign is hitting specific industry verticals across the country, bent on scavenging credentials that can be used for a range of nefarious purposes.

LATEST FROM THE EDGE

The Cybersecurity Talent Shortage Is a Myth

We have a tech innovation problem, not a staff retention (or recruitment) problem.

LATEST FROM DR TECHNOLOGY

Reinventing How Farming Equipment Is Remotely Controlled and Tracked

Farmers are incorporating high-tech solutions like IoT and drones to address new challenges facing agriculture.

WEBINARS

Building and Maintaining an Effective Remote Access Strategy
The COVID-19 pandemic transformed enterprises into remote workplaces overnight, forcing IT organizations to revamp their computing and networking strategies on the fly. Some of the changes were intended to be temporary, and some rules were adopted without thinking through all ...
How Ransomware Works - And What You Can Do to Stop It
From Darkside, to Lockbit, to Conti, ransomware gangs pulled off many headline-making attacks in the last year and they have evolved their techniques to become more stealthy and sophisticated when targeting organizations. In this webinar, experts walk you through the ...

View More Dark Reading Webinars >>

WHITE PAPERS

View More White Papers >>

FEATURED REPORTS

Practical Network Security Approaches for a Multicloud, Hybrid IT World
The report covers areas enterprises should focus on for their multicloud/hybrid cloud security strategy: -increase visibility over the environment -learning cloud-specific skills -relying on established security frameworks -re-architecting the network
Understanding DNS Threats and How to Use DNS to Expand Your Cybersecurity Arsenal
With attacks and breaches on the rise, enterprise security teams need full visibility over what they have in their network. DNS is a key tool for visibility and asset discovery. Proactive DNS-layer security - such as using DNS data to ...
How Enterprises Are Securing the Application Environment
Download this report from Dark Reading to learn more about the measures enterprises have adopted to ensure the security of their internally developed applications and third-party packaged applications.

View More Dark Reading Reports >>

PRODUCTS & RELEASES

Zscaler and AWS Expand Relationship

Neustar Security Services Launches Public UltraDNS Health Check Site

Aqua Security Collaborates With Center for Internet Security to Create Guide for Software Supply Chain Security

MORE PRODUCTS & RELEASES

CURRENT ISSUE

The State of Malware Threats
DOWNLOAD THIS ISSUE
VIEW BACK ISSUES

Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA

To opt-out of any future Dark Reading Daily Newsletter emails, please respond here.

Thoughts about this newsletter? Give us feedback.

Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:

If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.

We take your privacy very seriously. Please review our Privacy Statement.

The State of Malware Threats