Dark Reading Daily -- June 21, 2023

Schneider Power Meter Vulnerability Opens Door to Power Outages

A severe security vulnerability allows credentials for the power meters to continuously transmit in cleartext, allowing device takeover.

100K+ Infected Devices Leak ChatGPT Accounts to the Dark Web

Infostealers are as alive as ever, wantonly sweeping up whatever business data might be of use to cybercriminals, including OpenAI credentials.

Mysterious Mystic Stealer Spreads Like Wildfire in Mere Months

A criminal crowd-sourcing campaign has led to swift adoption of the stealer, which can pilfer key computer data, credentials from browsers and chat apps, and cryptocurrency from multiple wallets.

Fresh Ransomware Gangs Emerge As Market Leaders Decline

The ransomware landscape is energized with the emergence of smaller groups and new tactics, while established gangs like LockBit see fewer victims.

Hackers Will Be Quick to Bypass Gmail's Blue Check Verification System

It's still important to use other security measures, such as strong passwords and two-factor authentication, to protect your data.

Rorschach Ransomware: What You Need to Know

Learn how the latest ransomware variant has heightened attack execution speed and what that means for cybersecurity operations.

(Sponsored Article) Harness the Power of PKI to Battle Data Breaches

The average cost of a data breach is $4.35 million. Understand the power of public key infrastructure (PKI) and its role in encrypting data and battling breaches.

Russian APT 'Cadet Blizzard' Behind Ukraine Wiper Attacks

Microsoft says Cadet Blizzard wielded a custom wiper malware in the weeks leading up to Russia's invasion of Ukraine, and it remains capable of wanton destruction.

Consumer Data: The Risk and Reward for Manufacturing Companies

To adequately address privacy, manufacturers need to think differently about data.

Critical Barracuda ESG Zero-Day Linked to Novel Chinese APT

A PRC-aligned actor used a trio of custom malware to take advantage of inherent weaknesses in edge appliances.

US Investors Sniffing Around Blacklisted NSO Group Assets

Pressure mounts on the NSO Group's business viability as Khashoggi widow joins group of plaintiffs suing the Israeli firm for Pegasus spyware abuse.

LATEST FROM THE EDGE

An Analyst View of Gartner Security & Risk Management Summit 2023

As a former Gartner analyst, it was interesting to be on the other side, listening as others explored the impact of CEO and CIO priorities on security.

LATEST FROM DR GLOBAL

Jordanian Cyber Leaders Kick Off Cybersecurity Framework Development

The nation of Jordan begins work on a national cybersecurity framework to align with international practices and better mitigate threats.

LATEST FROM DR TECHNOLOGY

eSentire's AI Investigator Chatbot Aids Human Response to Security Incidents

The tool trained on the company's investigative cybersecurity services data set, and provides natural language responses to client queries, to improve response and remediation efforts.

How to Use Threat Intelligence to Mitigate Third-Party Risk