A threat you've never heard of is using double extortion attacks on mom-and-pop shops around the globe.
Follow Dark Reading:
 June 22, 2023
LATEST SECURITY NEWS & COMMENTARY
Emerging Ransomware Group 8Base Doxxes SMBs Globally
A threat you've never heard of is using double extortion attacks on mom-and-pop shops around the globe.
2 More Apple Zero-Days Exploited in Ongoing iOS Spy Campaign
The zero-day security bugs are being used to deploy the sophisticated but "odd" TriangleDB spying implant on targeted iOS devices.
SMB Edge Devices Walloped With Asus, Zyxel Patch Warnings
A slew of critical advisories this week showcase an exploding edge device attack surface for SMBs, which have limited cybersecurity protection, visibility, and maintenance available.
20-Year-Old Chinese APT15 Finds New Life in Foreign Ministry Attacks
The notorious APT15 used common malware tools and a third-generation custom 'Graphican' backdoor to continue its information gathering exploits, this time against foreign ministries.
'Muddled Libra' Uses Oktapus-Related Smishing to Target Outsourcing Firms
The emerging cyber-threat group is unusually persistent and nimble, bypassing MFA, stealing data, and using compromised environments for downstream customer attacks.
Avast, Norton Parent Latest Victim of MOVEit Data Breach Attacks
Gen Digital, the parent company of the security companies, is the latest victim in a rash of Cl0p attacks on the bug in the MOVEit transfer software, leading to employee data being revealed.
Ransomware Misconceptions Abound, to the Benefit of Attackers
It's time to update what we think we understand about ransomware, including new defensive measures and how fast the attack response should be.
Placing People & Realism at the Center of Your Cybersecurity Strategy
While it's impossible for an organization to be completely secure, there's no reason to be defenseless.
New DoJ Cyber Prosecution Team Will Go After Nation-State Threat Actors
The US Department of Justice adds litigators under its National Security Division to take on sophisticated cyber threats from adversarial nation-states.
Cyberattacks on OT, ICS Lay Groundwork for Kinetic Warfare
Organizations need to start taking critical infrastructure threats seriously, as they could be a precursor to future, hybrid cyber-kinetic warfare attacks, experts warn.
(Sponsored Article) How AI Can Help Organizations Adapt and Recover From Cyberattacks
Incident response playbooks and frameworks are leaving defenders ill-equipped to recover from the increasing number of successful cyberattacks. Developments in AI offer a new way for stretched teams to manage security incidents and heal swiftly.
MORE NEWS / MORE COMMENTARY
HOT TOPICS
Fresh Ransomware Gangs Emerge as Market Leaders Decline
The ransomware landscape is energized with the emergence of smaller groups and new tactics, while established gangs like LockBit see fewer victims.

Rorschach Ransomware: What You Need to Know
Learn how the latest ransomware variant has heightened attack execution speed and what that means for cybersecurity operations.

Hackers Will Be Quick to Bypass Gmail's Blue Check Verification System
It's still important to use other security measures, such as strong passwords and two-factor authentication, to protect your data.

MORE
EDITORS' CHOICE
Schneider Power Meter Vulnerability Opens Door to Power Outages
A severe security vulnerability allows credentials for the power meters to continuously transmit in cleartext, allowing device takeover.
LATEST FROM DR TECHNOLOGY

Ironscales Adds AI Assistant to Suss Out Phishing Attempts
The company says its Themis Co-pilot for Outlook helps recipients discern business email compromise attacks, reducing false positives for security staff.
LATEST FROM THE EDGE

Keep Job Scams From Hurting Your Organization
From fake job listings that ding your reputation to fake job applicants who hack your network, job scams are a major threat.
LATEST FROM DR GLOBAL

Angola Marks Technology Advancements With Cybersecurity Academy Plans
The academy is meant to ensure a safe and strong telecommunication service and information technologies for Angola's citizens, the president said.
WEBINARS
  • State of DDoS: Mid-Year Threat Report

    Killnet, REvil and Anonymous Sudan - it's been a busy quarter in the DDoS realm. Threat actor groups have been targeting Western organizations in an attempt to disrupt our way of life. If you're finding it hard to keep track ...

  • The Future is CNAPP: Cloud Security From Prevention To Threat Detection

    Cloud-native development introduces unique attack vectors that are challenging to identify and are evolving rapidly. Join us as we take a deeper look into common cloud attack paths in the wild and discuss strategies for how to combat them before ...
View More Dark Reading Webinars >>
WHITE PAPERS
View More White Papers >>
FEATURED REPORTS
  • Securing the Remote Worker: How to Mitigate Off-Site Cyberattacks

    The most profound change to enterprise security with the rise of remote work is the way endpoint security has moved from last line of defense to being on the frontline. The user's endpoint is the first device attackers encounter, making ...

  • The 10 Most Impactful Types of Vulnerabilities for Enterprises Today

    The enterprise attack surface is constantly expanding. Enterprises have to think beyond zero day vulnerabilities. It's imperative security teams start looking at vulnerabilities in 5G, firmware, edge, and ICS/OT, among others. Managing system vulnerabilities is one of the old ...

  • The Promise and Reality of Cloud Security

    Cloud security has been part of the cybersecurity conversation for years but has been on the sidelines for most enterprises. The shift to remote work during the COVID-19 pandemic and digital transformation projects have moved cloud infrastructure front-and-center as enterprises ...
View More Dark Reading Reports >>
PRODUCTS & RELEASES
Cymulate Announces Security Analytics for Continuous Threat Exposure Management
Netskope Enables Secure Enterprise Use of ChatGPT and Generative AI Applications
NineID Raises $2.6M to Build a Secure Bridge Between the Digital and Physical Worlds of Corporate Security
MORE PRODUCTS & RELEASES
CURRENT ISSUE

How to Use Threat Intelligence to Mitigate Third-Party Risk
DOWNLOAD THIS ISSUE
VIEW BACK ISSUES
Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
To opt-out of any future Dark Reading Daily Newsletter emails, please respond here.
Thoughts about this newsletter? Give us feedback.
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:
If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.
We take your privacy very seriously. Please review our Privacy Statement.
© 2023   |   Informa Tech  |   Privacy Statement   |   Terms & Conditions  |  Contact Us