Dark Reading Daily -- October 03, 2024

All an attacker needs to exploit flaws in the Common Unix Printing System is a few seconds and less than 1 cent in computing costs.

LATEST SECURITY NEWS & COMMENTARY

Unix Printing Vulnerabilities Enable Easy DDoS Attacks

All an attacker needs to exploit flaws in the Common Unix Printing System is a few seconds and less than 1 cent in computing costs.

North Korea's 'Stonefly' APT Swarms US Private Co's. for Profit

Despite a $10 million bounty on one member, APT45 is not slowing down, pivoting from intelligence gathering to extorting funds for Kim Jong-Un's regime.

Python-Based Malware Slithers Into Systems via Legit VS Code

The prolific Chinese APT Mustang Panda is the likely culprit behind a sophisticated cyber-espionage attack that sets up persistent remote access to victim machines.

Manufacturers Rank as Ransomware's Biggest Target

Improvements in cybersecurity and basics like patching aren't keeping pace with the manufacturing sector's rapid growth.

Top 5 Myths of AI & Cybersecurity

Organizations looking to maximize their security posture will find AI a valuable complement to existing people, systems, and processes.

China-Backed APT Group Culling Thai Government Data

CeranaKeeper is bombarding Southeast Asia with data exfiltration attacks via file-sharing services such as Pastebin, OneDrive, and GitHub, researchers say.

(Sponsored Article) Rethinking Privileged Access Management in a Cloud-Driven World

Compromising privileged accounts enables direct access to sensitive data across environments, making PAM an essential part of cybersecurity.

MORE NEWS / MORE COMMENTARY


HOT TOPICS
Cyberattackers Use HR Targets to Lay More_Eggs Backdoor The FIN6 group is the likely culprit behind a spear-phishing campaign that demonstrates a shift in tactics, from targeting job seekers to going after those who hire. Calif. Gov. Vetoes AI Safety Bill Aimed at Big Tech Players Critics viewed the bill as seeking protections against nonrealistic "doomsday" fears, but most stakeholders agree that oversight is needed in the GenAI space. Infrastructure vs. Runtime — Where Are Your Priorities? Amid the noise of new solutions and buzzwords, understanding the balance between securing infrastructure and implementing runtime security is key to crafting an effective cloud strategy. Gov't, Judicial IT Systems Beset by Access Control Bugs Poor permission controls and user input validation is endemic to the platforms that protect Americans' legal, medical, and voter data. MORE

PRODUCTS & RELEASES

Kevin Mandia Joins Expel's Board of Directors

Apono Raises $15.5M Series A Funding for AI-driven, Least Privilege Solution Set

Palo Alto Networks and Deloitte Expand Strategic Alliance Globally

Darktrace Announces Formal Completion of its Acquisition by Thoma Bravo

MORE PRODUCTS & RELEASES

EDITORS' CHOICE

Zimbra RCE Vuln Under Attack Needs Immediate Patching

The bug gives attackers a way to run arbitrary code on affected servers and take control of them.

LATEST FROM THE EDGE

NSA Releases 6 Principles of OT Cybersecurity

Organizations can use this guide to make decisions about designing, implementing, and managing OT environments to ensure they are both safe and secure, as well as to enable business continuity for critical services.

LATEST FROM DR TECHNOLOGY

4 Ways to Fight AI-Based Fraud

Generative AI is being used to make cyberscams more believable. Here's how organizations can counter that using newly emerging tools and reliable methods.

LATEST FROM DR GLOBAL

UAE, Saudi Arabia Become Plum Cyberattack Targets

Hacktivism-related DDoS attacks have risen 70% in the region, most often targeting the public sector, while stolen data and access offers dominate the Dark Web.

WEBINARS

View More Dark Reading Webinars >>

WHITE PAPERS

View More White Papers >>

FEATURED REPORTS

View More Dark Reading Reports >>