Dark Reading Daily -- May 09, 2024

An attacker accessed personal information of over 225,000 active, reserve, and former UK military members from third-party payroll processing system.

LATEST SECURITY NEWS & COMMENTARY

UK Military Data Breach a Reminder of Third-Party Risk in Defense Sector

An attacker accessed personal information of over 225,000 active, reserve, and former UK military members from third-party payroll processing system.

Critical Bug Could Open 50K+ Tinyproxy Servers to DoS, RCE

Patch now: CVE-2023-49606 in the open source, small-footprint proxy server can potentially lead to remote code execution.

CISOs Are Worried About Their Jobs & Dissatisfied With Their Incomes

The research shows a significant drop in the number of tech CISOs that got a base salary increase in the past year — roughly 18% year-over-year.

Microsoft Will Hold Executives Accountable for Cybersecurity

At least a portion of executive compensation going forward will be tied to meeting security goals and metrics.

Security Teams & SREs Want the Same Thing: Let's Make It Happen

Site reliability engineers (SREs) and security teams are more powerful when they work together, and being able to combine our efforts can make or break our teams' experiences and outputs.

(Sponsored Article) Integrating Data Security Into the Security Operations Center

Attackers have one motive: gaining access to the most critical data in the organization. It's time to bring data security into the SOC experience.

MORE NEWS / MORE COMMENTARY


HOT TOPICS
Does CISA's KEV Catalog Speed Up Remediation? Vulnerabilities added to the CISA known exploited vulnerability (KEV) list do indeed get patched faster, but not fast enough. LockBit Honcho Faces Sanctions, With Aussie Org Ramifications Australian businesses and individuals now face government fines and consequences for paying ransoms or interacting with assets owned by LockBitSupp, aka Dmitry Yuryevich Khoroshev. Spies Among Us: Insider Threats in Open Source Environments Does the open source ecosystem needs stricter security around contributors? City of Wichita Public Services Disrupted After Ransomware Attack The city was forced to shut down its IT networks and continues to investigate a major cyber incident that happened over the weekend. MORE

PRODUCTS & RELEASES

Netcraft Announces New AI-Powered Innovations to Disrupt and Expose Criminal Financial Infrastructure

runZero Research Explores Unexpected Exposures in Enterprise Infrastructure

AttackIQ Partners With Cyber Poverty Line Institute to Provide Academy Courses to Underserved Communities

Introducing the NetBeacon Institute: Empowering a Safer Web

MORE PRODUCTS & RELEASES

EDITORS' CHOICE

Chinese Hackers Deployed Backdoor Quintet to Down MITRE

MITRE's hackers made use of at least five different Web shells and backdoors as part of their attack chain.

LATEST FROM THE EDGE

Rethinking How You Work With Detection and Response Metrics

Airbnb's Allyn Stott introduces maturity model inspired by the Hunting Maturity Model (HMM) to complement MITRE ATT&CK to improve security metrics analysis.

LATEST FROM DR TECHNOLOGY

Anetac Targets Service Account Security

The startup's new identity and access management platform uncovers poorly monitored service accounts and secures them from abuse.

LATEST FROM DR GLOBAL

3-Year Iranian Influence Op Preys on Divides in Israeli Society

Iran follows in Russia's disinformation footsteps but with a different, more economical, and potentially higher-impact model.

WEBINARS

View More Dark Reading Webinars >>

WHITE PAPERS

View More White Papers >>

FEATURED REPORTS

View More Dark Reading Reports >>