A survey shows three-quarters of CISOs are drowning in threat detections put out by a sprawling stack of tools, yet still lack the basic visibility necessary to identify breaches.
Follow Dark Reading:
 October 24, 2024
LATEST SECURITY NEWS & COMMENTARY
CISOs: Throwing Cash at Tools Isn't Helping Detect Breaches
A survey shows three-quarters of CISOs are drowning in threat detections put out by a sprawling stack of tools, yet still lack the basic visibility necessary to identify breaches.
DPRK Uses Microsoft Zero-Day in No-Click Toast Attacks
The "Code-on-Toast" supply chain cyberattacks by APT37 delivered data-stealing malware to users in South Korea who had enabled Toast pop-up ads.
Tricky CAPTCHA Caught Dropping Lumma Stealer Malware
The persistent infostealer's latest campaign inserts fake CAPTCHA pages into legitimate applications, fooling users into executing the malicious payload, researchers find.
Cisco Disables DevHub Access After Security Breach
The networking company confirms that cyberattackers illegally accessed data belonging to some of its customers.
Anonymous Sudan Unmasked as Leader Faces Life in Prison
US officials disrupted the group's DDoS operation and arrested two individuals behind it, who turned out to be far less intimidating than they were made out to be in the media.
Lazarus Group Exploits Chrome Zero-Day in Latest Campaign
The North Korean actor is going after cryptocurrency investors worldwide leveraging a genuine-looking game site and AI-generated content and images.
Samsung Zero-Day Vuln Under Active Exploit, Google Warns
If it's exploited, bad actors can execute arbitrary code while evading detection thanks to a renamed process.
Why I'm Excited About the Future of Application Security
The future of application security is no longer about reacting to the inevitable — it's about anticipating and preventing attacks before they can cause damage.
Name That Toon: The Big Jump
Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.
The US Needs a Better Energy Grid to Win the AI Arms Race
The longer we avoid reform, the further behind we'll fall in AI innovation — and the more vulnerable we'll be.
Why Cybersecurity Acumen Matters in the C-Suite
Until CEOs and boards prioritize learning more about mitigating threats, organizations are leaving themselves and their businesses open to the potential for disaster.
MORE NEWS / MORE COMMENTARY
HOT TOPICS
Is a CPO Still a CPO? The Evolving Role of Privacy Leadership
Has the role of chief privacy officer become something more than it was? And is it still a role that just one person can handle?

4 Ways to Address Zero-Days in AI/ML Security
As the unique challenges of AI zero-days emerge, the approach to managing the accompanying risks needs to follow traditional security best practices but be adapted for AI.

Supply Chain Cybersecurity Beyond Traditional Vendor Risk Management
Traditional practices are no longer sufficient in today's threat landscape. It's time for cybersecurity professionals to rethink their approach.

What Today's SOC Teams Can Learn From Baseball
There are more similarities between developing a professional athlete and developing a cybersecurity pro than you might expect.

MORE
PRODUCTS & RELEASES
Honeywell and Google Cloud to Accelerate Auto Operations With AI Agents for the Industrial Sector
SoftwareOne Launches Cloud Competency Centre in Malaysia
Retail & Hospitality ISAC Launches Program Aimed at Securing Supply Chains
Ex-Oracle, Google Engineers Raise $7m From Accel for Public Launch of Simplismart to Empower AI Adoption
Illinois Joins CoSN's Trusted Learning Environment (TLE) State Partnership Program for Student Data Privacy
Swift to Launch AI-Powered Fraud Defence to Enhance Cross-Border Payments
MORE PRODUCTS & RELEASES
EDITORS' CHOICE
Microsoft SharePoint Vuln Is Under Active Exploit
The risk of exploitation is heightened, thanks to a proof-of-concept that's been made publicly available.
LATEST FROM THE EDGE

Breaking Barriers: Making Cybersecurity Accessible for Neurodiverse Professionals
Cybersecurity is not "one size fits all." Employers, recruiters, and managers need to embrace neurodiversity through inclusive hiring practices, tailored training programs, and adaptive management styles.
LATEST FROM DR TECHNOLOGY

Codasip Donates Tools to Develop Memory-Safe Chips
The software development kit will simplify building and testing of CHERI-enabled RISC-V applications.
LATEST FROM DR GLOBAL

'Prometei' Botnet Spreads Its Cryptojacker Worldwide
The Russian-language malware primarily enlists computers to mine Monero, but theoretically it can do worse.
WEBINARS
View More Dark Reading Webinars >>
WHITE PAPERS
View More White Papers >>
FEATURED REPORTS
View More Dark Reading Reports >>
Dark Reading Weekly
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
To opt-out of any future Dark Reading Weekly Newsletter emails, please respond here.
Thoughts about this newsletter? Give us feedback.
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:
If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.
We take your privacy very seriously. Please review our Privacy Statement.
© 2024  |  Informa Tech  |  Privacy Statement  |  Terms & Conditions  |  Contact Us