Dark Reading Daily -- May 15, 2024

CVE-2024-30051, under active exploit, is the most concerning out of this month's Patch Tuesday offerings, and already being abused by several QakBot actors.

LATEST SECURITY NEWS & COMMENTARY

Microsoft Windows DWM Zero-Day Poised for Mass Exploit

CVE-2024-30051, under active exploit, is the most concerning out of this month's Patch Tuesday offerings, and already being abused by several QakBot actors.

Dangerous Google Chrome Zero-Day Allows Sandbox Escape

Exploit code is circulating for CVE-2024-4761, disclosed less than a week after a similar security vulnerability was disclosed as being used in the wild.

Unprotected Session Tokens Can Undermine FIDO2 Security

While the protocol has made passwordless authentication a reality, token-binding is key to prevent against token theft and reuse, security vendor says.

DNS Tunneling Abuse Expands to Tracking & Scanning Victims

Several campaigns are leveraging the evasive tactic to provide useful insights into victims' online activities and find new ways to compromise organizations.

As the FBI Closes In, Scattered Spider Attacks Finance, Insurance Orgs

Scattered Spider is as active as ever, despite authorities claiming that they're close to nailing its members.

There Is No Cyber Labor Shortage

There are plenty of valuable candidates on the market. Hiring managers are simply looking in the wrong places.

MORE NEWS / MORE COMMENTARY


HOT TOPICS
Ascension Healthcare Suffers Major Cyberattack The attack cut off access to electronic healthcare records (EHRs) and ordering systems, plunging the organization and its health services into chaos. Millions of IoT Devices at Risk From Flaws in Integrated Cellular Modem Researchers discovered seven vulnerabilities — including an unauthenticated RCE issue — in widely deployed Telit Cinterion modems. Why Tokens Are Like Gold for Opportunistic Threat Actors When setting authentication token expiry policies, always lean in to security over employee convenience. IntelBroker Nabs Europol Info; Agency Investigating Europe's cross-border law enforcement agency says the well-known hacking outfit, contrary to claims, did not access operational data. MORE

PRODUCTS & RELEASES

CyberProof Announces Strategic Partnership With Google Cloud

87% of DDoS Attacks Targeted Windows OS Devices in 2023

Cyolo Partners With Dragos to Unveil Holistic Secure Remote Access Solution for Critical Infrastructure

Netcraft Announces New AI-Powered Innovations to Disrupt and Expose Criminal Financial Infrastructure

runZero Research Explores Unexpected Exposures in Enterprise Infrastructure

MORE PRODUCTS & RELEASES

EDITORS' CHOICE

500 Victims In, Black Basta Reinvents With Novel Vishing Strategy

Ransomware groups have always created problems for their victims that only they could solve. Black Basta is taking that core idea in a creative, new direction.

LATEST FROM THE EDGE

Top 5 Most Dangerous Cyber Threats in 2024

SANS Institute experts weigh in on the top threat vectors faced by enterprises and the public at large.

LATEST FROM DR TECHNOLOGY

A Cost-Effective Encryption Strategy Starts With Key Management

Key management is more complex than ever. Your choices are: Rely on your cloud provider or manage keys locally; Encrypt only the most critical data; Or encrypt everything.

LATEST FROM DR GLOBAL

Singapore Cybersecurity Update Puts Cloud Providers on Notice

The nation amends its Cybersecurity Act, giving its primary cybersecurity agency more power to regulate critical infrastructure and third parties, and requiring cyber incidents be reported.

WEBINARS

View More Dark Reading Webinars >>

WHITE PAPERS

View More White Papers >>

FEATURED REPORTS

View More Dark Reading Reports >>