Dark Reading Daily -- November 01, 2024

The 2024 ISC2 Cybersecurity Workforce Study found that amid a tightening job market and dynamic cyber-threat environment, ongoing staffing and skills shortages are putting organizations at serious risk. Can AI move the needle in defenders' favor?

LATEST SECURITY NEWS & COMMENTARY

Cybersecurity Job Market Stagnates, Dissatisfaction Abounds

China Says Seabed Sentinels Are Spying, After Trump Taps

On the heels of a Chinese APT eavesdropping on phone calls made by Trump and Harris campaign staffers, Beijing says foreign nations have mounted an extensive seafaring espionage effort.

North Korea's Andariel Pivots to 'Play' Ransomware Games

The prominent state-sponsored advanced persistent threat (APT), aka Jumpy Pisces, appears to be moving away from its primary cyber-espionage motives and toward wreaking widespread disruption and damage.

Facebook Businesses Targeted in Infostealer Phishing Campaign

The threat actors deceive their victims by impersonating the legal teams of companies, well-known Web stores, and manufacturers.

Canada Grapples With 'Second-to-None' PRC-Backed Threat Actors

Chinese APTs lurked in Canadian government networks for five years — and that's just one among a whole host of threats from Chinese bad actors.

The Case Against Abandoning CrowdStrike Post-Outage

Knee-jerk reactions to major vendor outages could do more harm than good.

MORE NEWS / MORE COMMENTARY


HOT TOPICS
Ex-Disney Employee Charged With Hacking Menu Database In a vengeful move against the happiest place on Earth, the former employee allegedly used his old credentials to make potentially deadly changes. When Cybersecurity Tools Backfire Outages are inevitable. Our focus should be on minimizing their scope, addressing underlying causes, and understanding that protecting systems is about keeping bad actors out while maintaining stability and reliability. How to Find the Right CISO Great CISOs are in short supply, so choose wisely. Here are five ways to make sure you've made the right pick. Vishing, Mishing Go Next-Level With FakeCall Android Malware A new variant of the sophisticated attacker tool gives cybercriminals even more control over victim devices to conduct various malicious activities, including fraud and cyber espionage. MORE

PRODUCTS & RELEASES

15 Leading Technology and Service Providers Achieve SASE Certification

Zenity Raises $38M Series B Funding Round to Secure Agentic AI

Norton Report Reveals Nearly Half of US Consumers Were Targeted by a Scam While Online Shopping

MORE PRODUCTS & RELEASES

EDITORS' CHOICE

'Midnight Blizzard' Targets Networks With Signed RDP Files

The Russian-backed group is using a novel access vector to harvest victim data and compromise devices in a large-scale intelligence-gathering operation.

LATEST FROM THE EDGE

The Overlooked Importance of Identifying Riskiest Users

"See one, teach one, do one" takes a page out of the healthcare playbook to reduce human vulnerabilities where they matter most in cybersecurity.

LATEST FROM DR TECHNOLOGY

Sophos-SecureWorks Deal Focuses on Building Advanced MDR, XDR Platform

Sophos CEO Joe Levy says the $859 million deal to acquire SecureWorks from majority owner Dell Technologies will put the Taegis platform — with network detection and response, vulnerability detection and response, and identity threat detection and response capabilities — at the core.

LATEST FROM DR GLOBAL

China's Elite Cyber Corps Hone Skills on Virtual Battlefields

The nation leads in the number of capture-the-flag tournaments sponsored by government and industry — a strategy from which Western nations could learn.

WEBINARS

View More Dark Reading Webinars >>

WHITE PAPERS

View More White Papers >>

FEATURED REPORTS

View More Dark Reading Reports >>