Dark Reading Daily -- December 17, 2024

Follow Dark Reading:

December 17, 2024

LATEST SECURITY NEWS & COMMENTARY

Does Desktop AI Come With a Side of Risk?

Artificial intelligence capabilities are coming to a desktop near you — with Microsoft 365 Copilot, Google Gemini with Project Jarvis, and Apple Intelligence all arriving (or having arrived). But what are the risks?

Microsoft Teams Vishing Spreads DarkGate RAT

A thwarted attack demonstrates that threat actors using yet another delivery method for the malware, which already has been spread using phishing emails, malvertising, hijacking of instant messages, and SEO poisoning.

The Education Industry: Why Its Data Must Be Protected

The sector must prioritize comprehensive data protection strategies to safeguard PII in an aggressive threat environment.

(Sponsored Article) Intentional Risk Management in Cybersecurity

Shift to exposure management for strategic cybersecurity and better protection.

MORE NEWS / MORE COMMENTARY


HOT TOPICS
Cleo MFT Zero-Day Exploits Are About to Escalate, Analysts Warn Defenders running the Cleo managed file transfer are urged to be on the lookout for the Cleopatra backdoor and other indicators of an ongoing ransomware campaign, as patching details remain foggy, and no CVE has been issued. Researchers Crack Microsoft Azure MFA in an Hour A critical flaw in the company's rate limit for failed sign-in attempts allowed unauthorized access to a user account, including Outlook emails, OneDrive files, Teams chats, Azure Cloud, and more. OData Injection Risk in Low-Code/No-Code Environments As the adoption of LCNC grows, so will the complexity of the threats organizations face. 336K Prometheus Instances Exposed to DoS, 'Repojacking' Open source Prometheus servers and exporters are leaking plaintext passwords and tokens, along with API addresses of internal locations. Cultivating a Hacker Mindset in Cybersecurity Defense Security isn't just about tools — it's about understanding how the enemy thinks and why they make certain choices. MORE

PRODUCTS & RELEASES

Zerto Introduces Cloud Vault Solution for Enhanced Cyber Resilience Through MSPs

Versa Introduces Integrated Endpoint Data Loss Prevention in SASE Solution

MORE PRODUCTS & RELEASES

EDITORS' CHOICE

With 'TPUXtract,' Attackers Can Steal Orgs' AI Models

A new side-channel attack method is a computationally practical way to infer the structure of a convolutional neural network — meaning that cyberattackers or rival companies can plagiarize AI models and take their data for themselves.

LATEST FROM THE EDGE

Citizen Development Moves Too Fast for Its Own Good

While low-code/no-code tools can speed up application development, sometimes it's worth taking a slower approach for a safer product.

LATEST FROM DR TECHNOLOGY

BlackBerry to Sell Cylance to Arctic Wolf

Arctic Wolf plans to integrate Cylance's EDR technology into its XDR platform.

LATEST FROM DR GLOBAL

'Dubai Police' Lures Anchor Wave of UAE Mobile Attacks

A sophisticated social engineering cybercrime campaign bent on financial gain was observed being run from Tencent servers in Singapore.

WEBINARS

View More Dark Reading Webinars >>

WHITE PAPERS

View More White Papers >>

FEATURED REPORTS

View More Dark Reading Reports >>

Dark Reading Daily
-- Published By Dark Reading
Operated by TechTarget, Inc. and its subsidiaries,
275 Grove Street, Newton, Massachusetts, 02466 US

To opt-out of any future Dark Reading Daily Newsletter emails, please respond here.

Thoughts about this newsletter? Give us feedback.

Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:

If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.

We take your privacy very seriously. Please review our Privacy Statement.