Dark Reading Daily -- August 15, 2024

Cloud services and thus millions of end users who access them could have been affected by the poisoning of artifacts in the development workflow of open source projects.

LATEST SECURITY NEWS & COMMENTARY

GitHub Attack Vector Cracks Open Google, Microsoft, AWS Projects

Cloud services and thus millions of end users who access them could have been affected by the poisoning of artifacts in the development workflow of open source projects.

'EastWind' Cyber-Spy Campaign Combines Various Chinese APT Tools

The likely China-linked campaign is deploying CloudSorcerer and other proprietary binaries belonging to known state-sponsored groups, showing how advanced persistent threat groups often collaborate with each other.

UK Royal Family, Prime Minister Deepfakes Make Rounds on Meta

According to the researchers, roughly 250 fake advertisements appeared on platforms like Facebook and Instagram, and some are reportedly still up and running.

Cybercriminal Leader 'J.P.Morgan' Busted for Pioneering RaaS Model

Maksim Silnikau and his associates are accused of developing and distributing notorious ransomware strains such as Reveton and Ransom Cartel, among other criminal acts.

Cybersecurity's Real Challenge Is Communication, Not Just Technology

By nurturing a security-centric work culture that involves everybody, organizations can overcome challenges with greater agility and confidence.

MORE NEWS / MORE COMMENTARY


HOT TOPICS
Inc Ransomware Encryptor Contains Keys to Victim Data Recovery The threat group is disrupting healthcare organizations. Victims can help themselves, though, even after compromise, by being careful in the decryption process. DNC Credentials Compromised by 'IntelFetch' Telegram Bot The Democratic National Convention soon to take place in Chicago, already under heavy security, faces an additional threat in the form of stolen credentials for delegates. A Lesson From the CrowdStrike Incident The recent outage highlights the critical importance of adhering to established processes and governance frameworks. DARPA Aims to Ditch C Code, Move to Rust The Defense Advanced Research Projects Agency launches TRACTOR program to work with university and industry researchers on creating a translation system that can turn C code into secure, idiomatic Rust code. The Changing Expectations for Developers in an AI-Coding Future AI's proficiency at creating software code won't put developers out of a job, but the job will change to one focused on security, collaboration, and "mentoring" AI models. MORE

PRODUCTS & RELEASES

Experian Acquires Behavioral Analytics Company NeuroID

Digital Align Inc. Achieves SOC 2 Type 2 Certification for Secure Automation Intelligence

Zimperium Teams Up With Okta to Enhance Zero-Trust Identity Threat Protection With AI-Driven Mobile Security Solutions

MORE PRODUCTS & RELEASES

EDITORS' CHOICE

Microsoft Discloses 10 Zero-Day Bugs in Patch Tuesday Update

Attackers are already actively exploiting six of the bugs and four others are public, including one for which Microsoft has no patch yet.

LATEST FROM THE EDGE

How Can Organizations Navigate SEC's Cyber Materiality Disclosures?

Inconsistencies and lack of information in cybersecurity disclosures highlight the need for organizations to establish a robust materiality assessment framework.

LATEST FROM DR TECHNOLOGY

NIST Releases 3 Post-Quantum Standards, Urges Orgs to Start PQC Journey

Security experts welcomed the long-anticipated publication of the first post-quantum cryptographic standards as a significant milestone.

LATEST FROM DR GLOBAL

Ransomware Group Behind Major Indonesian Attack Wears Many Masks

Brain Cipher made a loud entry to the ransomware scene, but it doesn't seem to be quite as sophisticated as its accomplishment would suggest.

WEBINARS

View More Dark Reading Webinars >>

WHITE PAPERS

View More White Papers >>

FEATURED REPORTS

View More Dark Reading Reports >>