Dark Reading Daily -- July 24, 2024

A painful recovery from arguably one of the worst IT outages ever continues, and the focus is shifting to what can be done to prevent something similar from happening again.

LATEST SECURITY NEWS & COMMENTARY

Sprawling CrowdStrike Incident Mitigation Showcases Resilience Gaps

A painful recovery from arguably one of the worst IT outages ever continues, and the focus is shifting to what can be done to prevent something similar from happening again.

Goodbye? Attackers Can Bypass 'Windows Hello' Strong Authentication

Accenture researcher undercut WHfB's default authentication using open source Evilginx adversary-in-the-middle (AitM) reverse-proxy attack framework.

Attackers Exploit 'EvilVideo' Telegram Zero-Day to Hide Malware

An exploit sold on an underground forum requires user action to download an unspecified malicious payload.

China's 'Evasive Panda' APT Spies on Taiwan Targets Across Platforms

The cohort's variety of individual tools covers just about any operating system it could possibly wish to attack.

Russia Adjusts Cyber Strategy for the Long Haul in War With Ukraine

Russia has cast aside its focus on civilian infrastructures and is instead targeting Ukraine's military operations in myriad ways.

Wanted: A SBOM Standard to Rule Them All

A unified standard is essential for realizing the full potential of SBOMs in enhancing software supply chain security.

MORE NEWS / MORE COMMENTARY


HOT TOPICS
Quantum Leap: Advanced Computing Is a Vulnerable Cyber Target At Black Hat USA, researchers from Bitdefender and Transilvania Quantum will showcase how attackers can target quantum-based infrastructure. Kaspersky Is an Unacceptable Risk Threatening the Nation's Cyber Defense As geopolitical tensions rise, foreign software presents a grave supply chain risk and an ideal attack vector for nation-state adversaries. Tech Giants Agree to Standardize AI Security The Coalition for Secure AI is a consortium of influential AI companies aiming to develop tools to secure AI applications and set up an ecosystem for sharing best practices. Novel ICS Malware Sabotaged Water-Heating Services in Ukraine Newly discovered "FrostyGoop" is the first ICS malware that can communicate directly with operational technology systems via the Modbus protocol. MORE

PRODUCTS & RELEASES

Two Foreign Nationals Plead Guilty to Participating in LockBit Ransomware Group

EC-Council Democratizes Hands-On Cybersecurity Training With 8 Cyber Courses

Check Point Research Reports Highest Increase of Global Cyber Attacks Seen in Last Two Years

Seemplicity 2024 Remediation Operations Report: Rising Exposure Management Risk

Threat Hunting Market Worth $6.9B by 2029

MORE PRODUCTS & RELEASES

EDITORS' CHOICE

Chinese Forced-Labor Ring Sponsors Football Clubs, Hides Behind Stealth Tech

An illegal gambling empire fueled by modern-day slavery is being propped up by high-profile sponsorships — and defended with sophisticated anti-detection software.

LATEST FROM THE EDGE

Shocked, Devastated, Stuck: Cybersecurity Pros Open Up About Their Layoffs

Here's a dose of reality from those on the frontlines and how they're coping.

LATEST FROM DR TECHNOLOGY

Linx Security Launches With Identity Management Platform

The Israeli security startup's technology helps organizations map existing accounts and credentials to existing employees to identify those that should be removed.

LATEST FROM DR GLOBAL

Under-Resourced Maintainers Pose Risk to Africa's Open Source Push

Many nations see open source software as a great equalizer, giving the Global South the tools necessary for sustainable development. But recent supply chain attacks highlight the need for security.

WEBINARS

View More Dark Reading Webinars >>

WHITE PAPERS

View More White Papers >>

FEATURED REPORTS

2024 InformationWeek US IT Salary Report

View More Dark Reading Reports >>