Dark Reading Daily
Follow Dark Reading:
 March 30, 2024
LATEST SECURITY FEATURES & COMMENTARY
Are You Affected by the Backdoor in XZ Utils?
In this Tech Tip, we outline how to check if a system is impacted by the newly discovered backdoor in the open source xz compression utility.
AWS CISO: Pay Attention to How AI Uses Your Data
Amazon Web Services CISO Chris Betz explains why generative AI is both a time-saving tool and a double-edged sword.
10 Steps to Detect, Prevent, and Remediate the Terrapin Vulnerability
You don't have to stop using SSH keys to stay safe. This Tech Tip explains how to protect your system against CVE-2023-48795.
A CISO's Guide to Materiality and Risk Determination
For many CISOs, "materiality" remains an ambiguous term. Even so, they need to be able to discuss materiality and risk with their boards.
It's Time to Stop Measuring Security in Absolutes
All-or-nothing security policies strain resources by aiming for perfection. We need a better way to assess progress.
Abstract Security Brings AI to Next-Gen SIEM
The startup's AI-powered data-streaming platform separates security analytics from compliance data.
Strata Identity Releases New Authentication Recipes
The Microsoft Identity Cookbook is a collection of orchestration recipes to help organizations adopt cloud-based identity providers.
MORE FROM THE EDGE / MORE FROM DR TECHNOLOGY
HOT TOPICS
Pervasive LLM Hallucinations Expand Code Developer Attack Surface
The tendency of popular AI-based tools to recommend nonexistent code libraries offers a bigger opportunity than thought to distribute malicious packages.

Suspected MFA Bombing Attacks Target Apple iPhone Users
Several Apple device users have experienced recent incidents where they have received incessant password reset prompts and vishing calls from a number spoofing Apple's legitimate customer support line.

CISA Seeks to Curtail 'Unforgivable' SQL Injection Defects
In a joint alert with the FBI, CISA seeks to tamp down the pervasiveness of a well-known class of bugs.

MORE
PRODUCTS & RELEASES
Flare Acquires Foretrace to Accelerate Threat Exposure Management Growth
New Cyber Threats to Challenge Financial Services Sector in 2024
Checkmarx Announces Partnership With Wiz
WiCyS and ISC2 Launch Spring Camp for Cybersecurity Certification
MORE PRODUCTS & RELEASES
EDITORS' CHOICE
CISO Corner: Cyber-Pro Swindle; New Faces of Risk; Cyber Boosts Valuation
Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps. Also included: Australia gets its cyber-groove back, and 2023's zero-day field day.
Don't Answer the Phone: Inside a Real-Life Vishing Attack
Successful attackers focus on the psychological manipulation of human emotions, which is why anyone, even a tech-savvy person, can become a victim.
New Regulations Make D&O Insurance a Must for CISOs
CISOs currently hold all of the responsibility to stop cyberattacks yet have none of the authority to fund the technological defenses that regulations require.
WEBINARS
View More Dark Reading Webinars >>
WHITE PAPERS
View More White Papers >>
FEATURED REPORTS
View More Dark Reading Reports >>
Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
To opt-out of any future Dark Reading Daily Newsletter emails, please respond here.
Thoughts about this newsletter? Give us feedback.
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:
If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.
We take your privacy very seriously. Please review our Privacy Statement.
© 2024  |   Informa Tech  |   Privacy Statement   |   Terms & Conditions  |  Contact Us