In the wrong hands, the popular red-teaming tool can be made to access networks, escalate privileges, conduct reconnaissance, and disguise malicious activity as a simulated exercise.
Feb. 26, 2025
Daily Edition
Today’s news and insights for cybersecurity professionals
- Today's News and Features -
TOP STORY
Max Severity RCE Vuln in All Versions of MITRE Caldera
In the wrong hands, the popular red-teaming tool can be made to access networks, escalate privileges, conduct reconnaissance, and disguise malicious activity as a simulated exercise.‎‎
Feed image
North Korea's Lazarus Pulls Off Biggest Crypto Heist in History‎‎
Cyberattackers believed to be affiliated with the state-sponsored threat group pulled off the largest crypto heist reported to date, stealing $1.5 billion from exchange Bybit. It was carried out by interfering with a routine transfer between wallets.‎‎
Feed image
Microsoft 365 Accounts Get Sprayed by Mega-Botnet‎
The threat actors are exploiting noninteractive sign-ins, an authentication feature that security teams don't typically monitor.‎
Feed image
AI Tricksters Spin Up Fake DeepSeek Sites to Steal Crypto‎
The fake websites trick users into downloading and running malware that searches for personal information, especially anything related to cryptocurrency.‎
DR TECHNOLOGY
Feed image
How to Rein in Identity Session Security Risk With CAEP‎
Addressing the complexities of session management in multi-IDP environments, CAEP offers a pathway to real-time security, proactive risk mitigation, and enhanced user trust.‎
THE EDGE
Feed image
Signs Your Organization's Culture Is Hurting Your Cybersecurity‎
High turnover, burnout, and blame-heavy environments do more than hurt morale. They also weaken security and put the organization at risk.‎
SPONSORED ARTICLE
Feed image
3 Quick Wins for Cybersecurity Validation in 2025‎‎
Rethink resilience with these game-changing ways to validate your security.‎‎
VIRTUAL EVENT
Cybersecurity's Most Promising New and Emerging Technologies
Join us on March 20 for this all-day virtual event, designed to update cybersecurity teams on some of the most promising emerging cybersecurity technologies and provide advice on using them.
- Commentary -
Opinions from thought leaders around the cybersecurity industry
Unmanaged Devices: The Overlooked Threat CISOs Must Confront
No matter the strategy, companies must approach securing unmanaged devices with sensitivity and respect for employee privacy.‎‎
How APT Naming Conventions Make Us Less Safe
Only by addressing the inefficiencies of current naming conventions can we create a safer, more resilient landscape for all defenders.‎‎
- Upcoming Events -
Mar 19, 2025
Mar 5, 2025
Mar 20, 2025
- More Resources -
WHITE PAPER
WHITE PAPER
WHITE PAPER
REPORT
- Elsewhere in Cyber Today -
MALWAREBYTES
UNIT 42
CYBERSECURITY DIVE
- Do You Find Today’s Newsletter Helpful? -
Yes
Not sure
No
You received this message because you are subscribed to Dark Reading's Daily newsletter.
If a friend forwarded you this message, sign up here to get it in your inbox. Thoughts about this newsletter? Give us feedback.
Copyright © 2025 TechTarget, Inc. or its subsidiaries. All rights reserved.
Operated by TechTarget, Inc. and its subsidiaries,
275 Grove Street, Newton, Massachusetts, 02466 US