Dark Reading Daily -- June 28, 2022

Follow Dark Reading:

June 28, 2022

LATEST SECURITY NEWS & COMMENTARY

New Vulnerability Database Catalogs Cloud Security Issues

Researchers have created a new community website for reporting and tracking security issues in cloud platforms and services — plus fixes for them where available.

LockBit 3.0 Debuts With Ransomware Bug Bounty Program

LockBit 3.0 promises to 'Make Ransomware Great Again!' with a side of cybercrime crowdsourcing.

Shadow IT Spurs 1 in 3 Cyberattacks

Cerby platform emerges from stealth mode to let users automate security for applications outside of the standard IT purview.

(Sponsored Article) The Risk of Multichannel Phishing Is on the Horizon

The cybersecurity community is buzzing with concerns of multichannel phishing attacks, particularly on smishing and business text compromise, as hackers turn to mobile to launch attacks.

It's a Race to Secure the Software Supply Chain — Have You Already Stumbled?

If you haven't properly addressed the issue, you're already behind. But even if you've had a false start, it's never too late to get back up.

MORE NEWS / MORE COMMENTARY


HOT TOPICS
Only 3% of Open Source Software Bugs Are Actually Attackable, Researchers Say A new study says 97% of open source vulnerabilities linked to software supply chain risks are not attackable — but is "attackability" the best method for prioritizing bugs? Chinese APT Group Likely Using Ransomware Attacks as Cover for IP Theft Bronze Starlight’s use of multiple ransomware families and its victim-targeting suggest there’s more to the group’s activities than just financial gain, security vendor says. APT Groups Swarming on VMware Servers with Log4Shell CISA tells organizations running VMware servers without Log4Shell mitigations to assume compromise. MORE

EDITORS' CHOICE

7 Steps to Stronger SaaS Security

Continuous monitoring is key to keeping up with software-as-a-service changes, but that's not all you'll need to get better visibility into your SaaS security.

LATEST FROM THE EDGE

Federal, State Agencies' Aid Programs Face Synthetic Identity Fraud

Balancing public service with fraud prevention requires rule revisions and public trust.

LATEST FROM DR TECHNOLOGY

NIST Finalizes macOS Security Guidance

NIST SP800-219 introduces the macOS Security Compliance Project (mSCP) to assist organizations with creating security baselines and defining controls to protect macOS endpoints.

WEBINARS

How Ransomware Works - And What You Can Do to Stop It
From Darkside, to Lockbit, to Conti, ransomware gangs pulled off many headline-making attacks in the last year and they have evolved their techniques to become more stealthy and sophisticated when targeting organizations. In this webinar, experts walk you through the ...
Building and Maintaining Security at the Network Edge
Advances in networking and new technologies have expanded the possibilities of deploying applications at the network edge. These edge devices bring with them their own security management challenges and risks. How do you scale your security to manage the sheer ...

View More Dark Reading Webinars >>

WHITE PAPERS

View More White Papers >>

FEATURED REPORTS

Incorporating a Prevention Mindset into Threat Detection and Response
How Enterprises Are Securing the Application Environment
Download this report from Dark Reading to learn more about the measures enterprises have adopted to ensure the security of their internally developed applications and third-party packaged applications.
How Enterprises Plan to Address Endpoint Security Threats in a Post-Pandemic World
Dark Reading's 2022 Endpoint Security Report examines how IT and cybersecurity professionals are grappling with the impact of pandemic-related changes on endpoint security strategies. The report explores how they are building their endpoint security defenses, and provides insight on what organizations ...

View More Dark Reading Reports >>

PRODUCTS & RELEASES

Thrive Acquires DSM

Palo Alto Networks Bolsters Its Cloud Native Security Offerings With Out-of-Band WAAS

Johnson Controls Acquires Tempered Networks to Bring Zero Trust Cybersecurity to Connected Buildings

Tanium Partners With ScreenMeet to Enable Employees to Securely Connect to Their Remote Desktops

Zscaler Launches Posture Control Solution

MORE PRODUCTS & RELEASES

CURRENT ISSUE

Improving Enterprise Cybersecurity With XDR
DOWNLOAD THIS ISSUE
VIEW BACK ISSUES

Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA

To opt-out of any future Dark Reading Daily Newsletter emails, please respond here.

Thoughts about this newsletter? Give us feedback.

Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:

If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.

We take your privacy very seriously. Please review our Privacy Statement.

Improving Enterprise Cybersecurity With XDR