Dark Reading Daily -- August 25, 2023

Follow Dark Reading:

August 25, 2023

LATEST SECURITY NEWS & COMMENTARY

Ransomware With an Identity Crisis Targets Small Businesses, Individuals

TZW is the latest version of Adhubllka, which has been active since 2019 but has gone largely unreported due to its lower ransom demands.

eBay Users Beware Russian 'Telekopye' Telegram Phishing Bot

Thanks to a simple Telegram bot that democratizes phishing, ordinary Russians can conduct full-fledged phishing attacks with zero technical know-how.

5 Best Practices for Implementing Risk-First Cybersecurity

Embracing a risk-first mindset empowers organizations to make informed decisions, strengthen security, safeguard valuable assets, and reduce financial impact.

What the Hive Ransomware Case Says About RaaS and Cryptocurrency

Hive tells us a lot about ransomware-as-a-service trends and the best ways to defend against attacks.

US Space Industry More Prone to Foreign Espionage, US Agencies Warn

Foreign intelligence entities have the US space industry in their sights, posing serious threats to US national security, multiple federal agencies say.

MORE NEWS / MORE COMMENTARY


HOT TOPICS
Attackers Dangle AI-Based Facebook Ad Lures to Hijack Business Accounts The offending ads and pages leveraged interest in AI to spread a malicious credential-stealing browser extension. Threat Actor Exploits Zero-Day in WinRAR to Target Crypto Accounts Attacks targeting the now-patched bug have been going on since at least April 2023, security vendor says. Name That Toon: Swift as an Arrow Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. When Leadership Style Is a Security Risk Risk-aware leaders can be a cybersecurity advantage. Their flexible leadership style and emphasis on security first help set the tone and demonstrate a commitment to avoiding risk. MORE

EDITORS' CHOICE

Ransomware Reaches New Heights

It's not going anywhere: Easy-to-exploit bugs like MOVEit, leaks of stolen data, and rapid-fire escalation are keeping ransomware attacks as painful as ever.

LATEST FROM THE EDGE

8 AI Risk and Resilience Firms CISOs Should Track

Check out our list of emerging firms that are building technology and services to assess the risk posture of AI systems and ML models.

LATEST FROM DR TECHNOLOGY

eSentire Labs Open Sources Project to Monitor LLMs

The eSentire LLM Gateway provides monitoring and governance of ChatGPT and other Large Language Models being used in the organization.

LATEST FROM DR GLOBAL

Tel Aviv Stock Exchange CISO: Making Better Use of Your SIEM

If rule writing for SIEMs isn't managed properly, it can lead to false positives and misconfigurations, which create extra work for the SOC team.

WEBINARS

Implementing Zero-Trust With A Remote Workforce
The shift to remote work and a distributed workforce model highlighted the importance of the zero-trust model for organizations. Corporate endpoint devices are no longer protected behind the enterprise perimeter, connect to routers with unknown levels of security, and share ...
Where and When Automation Makes Sense For Enterprise Cybersecurity
A shortage of skilled IT security professionals has made it tempting to try to automate everything. But security teams have to be able to determine which tasks are safe to automate. How does emerging automation technology work, and how can ...

View More Dark Reading Webinars >>

WHITE PAPERS

View More White Papers >>

FEATURED REPORTS

What Ransomware Groups Look for in Enterprise Victims
Ransomware attackers cast a wide net -- they just care about causing damage, making money, and gaining new victims. That means no organization is automatically immune to attack just because of its size or industry. Organizations need to take steps ...
Everything You Need to Know About DNS Attacks
Successfully Managing Identity in Modern Cloud and Hybrid Environments
Cloud promised to simplify the security and management of enterprise systems. In many ways it has, but when it comes to identity management it's as complicated as ever. This report details how to get identity programs on track -- and ...

View More Dark Reading Reports >>

PRODUCTS & RELEASES

Malwarebytes Announces Acquisition of Online Privacy Company Cyrus

Critical Insight Releases H1 2023 Report

Cypago Raises $13M and Unveils its Cyber GRC Automation (CGA) Platform to Simplify GRC Processes

Black Hat USA 2023 Closes on Record-Breaking Event in Las Vega

Kyndryl and Cisco Expand Partnership Focusing on Cyber Resilience

MORE PRODUCTS & RELEASES

CURRENT ISSUE

How Supply Chain Attacks Work, and How to Stop Them
DOWNLOAD THIS ISSUE
VIEW BACK ISSUES

Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA

To opt-out of any future Dark Reading Daily Newsletter emails, please respond here.

Thoughts about this newsletter? Give us feedback.

Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:

If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.

We take your privacy very seriously. Please review our Privacy Statement.

How Supply Chain Attacks Work, and How to Stop Them