Dark Reading Daily -- June 07, 2024

Monetary losses, reputational damage, share price declines — it's hard to counter, much less try to stay ahead of, AI-based attacks.

LATEST SECURITY NEWS & COMMENTARY

Technology, Regulations Can't Save Orgs From Deepfake Harm

Monetary losses, reputational damage, share price declines — it's hard to counter, much less try to stay ahead of, AI-based attacks.

'Commando Cat' Digs Its Claws Into Exposed Docker Containers

Attackers are taking advantage of misconfigured containers to deploy cryptocurrency mining software.

Attacks Surge on Check Point's Recent VPN Zero-Day Flaw

One monitoring firm has detected exploitation attempts targeting CVE-2024-24919 from more than 780 unique IP addresses in the past week.

Mallox Ransomware Variant Targets Privileged VMWare ESXi Environments

Novel attack vector uses a custom shell for payload delivery and execution — and only goes after systems with administrative privileges.

Interpol, FBI Disrupt Moldova-Based Cyber Ring

Four suspects were taken into custody, accused of paying intermediaries in Moldova to inform criminals of their Red Notice status and wipe law-enforcement flags from the system.

Understanding Security's New Blind Spot: Shadow Engineering

In the rush to digital transformation, many organizations are exposed to security risks associated with citizen developer applications without even knowing it.

MORE NEWS / MORE COMMENTARY


HOT TOPICS
Hijacking Scheme Takes Over High-Profile TikTok Accounts Hijacking malware gets spread through TikTok's direct messaging and doesn't require the victim to click links or download anything. Remote Work's Hidden Dangers Ten cybersecurity strategies for enterprises to keep remote work safer. Ticketmaster Breach Showcases SaaS Data Security Risks MFA and other mechanisms are critical to protect against unauthorized access to data in cloud application environments, but businesses still fall down on the job. RansomHub Actors Exploit ZeroLogon Vuln in Recent Ransomware Attacks CVE-2020-1472 is a privilege escalation flaw that allows an attacker to take over an organization's domain controllers. MORE

PRODUCTS & RELEASES

Cloud Security Alliance Survey Finds 70% of Organizations Have Established Dedicated SaaS Security Teams

EV Manufacturer BYD Selects Karamba Security to Meet Global Automotive Cybersecurity Regulations

Notable Capital Launches Rising in Cyber to Spotlight Promising Cybersecurity Startups

ISC2 Provides Opportunity for Employers to Connect With Cybersecurity Job Seekers

MORE PRODUCTS & RELEASES

EDITORS' CHOICE

RansomHub Actors Exploit ZeroLogon Vuln in Recent Ransomware Attacks

CVE-2020-1472 is a privilege escalation flaw that allows an attacker to take over an organization's domain controllers.

LATEST FROM THE EDGE

Making the Case for 'Reasonable' Cybersecurity

Reasonable cybersecurity is highly subjective. Organizations need to plan carefully in order to quantify cyber-risk and apply security controls.

LATEST FROM DR TECHNOLOGY

Inside Baseball: The Red Sox Cloud Security Game

Inside the baseball team's strategy for building next-gen security operations through zero trust and initiatives aiming to safeguard team data, fan info, and the iconic Fenway Park — which, by the way, is now a smart stadium.

LATEST FROM DR GLOBAL

Africa Ranks Low on Phishing Cyber Resilience

As threats to Africa's cybersecurity continue to grow, the continent faces high risks to its society and economy with a growing cyber skills gap and lack of preparedness.

WEBINARS

View More Dark Reading Webinars >>

WHITE PAPERS

View More White Papers >>

FEATURED REPORTS

View More Dark Reading Reports >>