Dark Reading Daily -- February 05, 2025

Ransomware actors are offering individuals millions to turn on their employers and divulge private company information, in a brand-new cybercrime tactic.

LATEST SECURITY NEWS & COMMENTARY

Cybercriminals Court Traitorous Insiders via Ransom Notes

Ransomware actors are offering individuals millions to turn on their employers and divulge private company information, in a brand-new cybercrime tactic.

Chinese 'Infrastructure Laundering' Abuses AWS, Microsoft Cloud

Funnull CDN rents IPs from legitimate cloud service providers and uses them to host criminal websites, continuously cycling cloud resources in and out of use and acquiring new ones to stay ahead of cyber-defender detection.

Ferret Malware Added to 'Contagious Interview' Campaign

Targets are lured into a fake interview process that convinces them to download malware needed for a virtual interview.

Credential Theft Becomes Cybercriminals' Favorite Target

Researchers measured a threefold increase in credential stealing between 2023 and 2024, with more than 11.3 million such thefts last year.

Managing Software Risk in a World of Exploding Vulnerabilities

Organizations and development teams need to evolve from "being prepared" to "managing the risk" of security breaches.

(Sponsored Article) Email Security Demands an AI-Based Defense Strategy

AI-driven strategies are crucial for modern email security, unifying tools and automating responses to combat sophisticated threats effectively.

MORE NEWS / MORE COMMENTARY


HOT TOPICS
'Constitutional Classifiers' Technique Mitigates GenAI Jailbreaks Anthropic says its Constitutional Classifiers approach offers a practical way to make it harder for bad actors to try and coerce an AI model off its guardrails. Microsoft Sets End Date for Defender VPN Though Windows, iOS, and macOS users won't need to make any changes, Android users are advised to remove their Defender VPN profiles. Proactive Vulnerability Management for Engineering Success By integrating security into CI/CD, applying automated policies, and supporting developers with the right processes and tools, infosec teams can increase efficiency and build secure software. Community Health Center Data Breach Affects 1M Patients The CHC remains operational, but a host of personal data is now in the hands of a "skilled cybercriminal," it said. MORE

PRODUCTS & RELEASES

DNSFilter's Annual Security Report Reveals Worrisome Spike in Malicious DNS Requests

EMEA CISOs Plan 2025 Cloud Security Investment

Interactive Online Training for Cybersecurity Professionals; Earn CPE Credits

MORE PRODUCTS & RELEASES

EDITORS' CHOICE

DeepSeek Jailbreak Reveals Its Entire System Prompt

Now we know exactly how DeepSeek was designed to work, and we may even have a clue toward its highly publicized scandal with OpenAI.

LATEST FROM THE EDGE

How Are Modern Fraud Groups Using GenAI and Deepfakes?

Fraud groups are using AI and deepfake technology to scale up their operations to create fake identities and execute fraud campaigns.

LATEST FROM DR TECHNOLOGY

Backline Tackles Enterprise Security Backlogs With AI

The security startup's autonomous security remediation platform uses off-the-shelf large language models (LLMs) to analyze security alerts and apply the fixes.

LATEST FROM DR GLOBAL

Nigeria Touts Cyber Success, Even as Cybercrime Rises in Africa

Organizations continue to be at high risk from cybercrime in Africa, despite law enforcement takedowns of cybercriminal syndicates in Nigeria and other African nations.

WEBINARS

View More Dark Reading Webinars >>

WHITE PAPERS

View More White Papers >>

FEATURED REPORTS

View More Dark Reading Reports >>