Dark Reading Daily -- June 20, 2023

Follow Dark Reading:

June 20, 2023

LATEST SECURITY NEWS & COMMENTARY

US Investors Sniffing Around Blacklisted NSO Group Assets

Pressure mounts on the NSO Group's business viability as Khashoggi widow joins group of plaintiffs suing the Israeli firm for Pegasus spyware abuse.

Killnet Threatens Imminent SWIFT, World Banking Attacks

The DDoS collective claims to be teaming up with ReVIL and Anonymous Sudan for destructive financial attacks in retaliation for US aid in Ukraine, but the partnerships (and danger) are far from verified.

Attackers Create Synthetic Security Researchers to Steal IP

Threat groups created a fake security company, "High Sierra," with faux exploits and fake profiles for security researchers on GitHub and elsewhere, aiming to get targets to install their malware.

Consumer Data: The Risk and Reward for Manufacturing Companies

To adequately address privacy, manufacturers need to think differently about data.

Name That Toon: Time to Spare?

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card.

MORE NEWS / MORE COMMENTARY


HOT TOPICS
Third MOVEit Transfer Vulnerability Disclosed by Progress Software MOVEit has created a patch to fix the issue and urges customers to take action to protect their environments, as Cl0p attacks continue to mount, including on government targets. Illinois Hospital Closure Showcases Ransomware's Existential Threat St. Margaret's Health is shutting down due to a 2021 ransomware attack and other factors. It's an object lesson for how small and rural healthcare facilities face grave cyber-risk when extortionists come calling. Cybercrime Doesn't Take a Vacation Organizations need to prepare for security threats as summer holidays approach. Attackers Create Synthetic Security Researchers to Steal IP Threat groups created a fake security company, "High Sierra," with faux exploits and fake profiles for security researchers on GitHub and elsewhere, aiming to get targets to install their malware. MORE

LATEST FROM THE EDGE

Generative AI Has Its Risks, but the Sky Isn't Falling

The threat organizations face with GenAI is not new, but it could speed how quickly private data reaches a wider audience.

LATEST FROM DR GLOBAL

Dodgy Microlending Apps Stalk MEA Users, Highlighting Cyber Maturity Gaps

Mobile users in the Middle East and Africa often download moneylending apps that ask for excessive permissions — an all too common issue in an area where mobile-only is the norm and cyber awareness is low.

LATEST FROM DR TECHNOLOGY

Decoding Identity and Access Management for Organizations and Consumers

Workforce IAM and consumer IAM are not interchangeable — they serve different purposes and constituencies.

WEBINARS

Finding the Right Role for Identity and Access Management in Your Enterprise
End user credentials are essential to enabling your employees to gain access to the data and applications they need. Those credentials are also one of the most prized targets that attackers hope to gain. To enable user access and prevent ...
The Future is CNAPP: Cloud Security From Prevention To Threat Detection
Cloud-native development introduces unique attack vectors that are challenging to identify and are evolving rapidly. Join us as we take a deeper look into common cloud attack paths in the wild and discuss strategies for how to combat them before ...

View More Dark Reading Webinars >>

WHITE PAPERS

View More White Papers >>

FEATURED REPORTS

How to Use Threat Intelligence to Mitigate Third-Party Risk
The report discusses the various steps of a continuous third-party intelligence lifecycle: Data collection, Data classification, Data storage, Data analysis, reporting, dissemination, continuous monitoring, data governance, and choosing the right technology stack. The report also includes information about how attackers ...
How Enterprises Are Managing Application Security Risks in a Heightened Threat Environment
Concerns over API security and low-code/no-code use added to an already-full plate of application security challenges for many organizations over the last year. IT and security decision-makers are deeply concerned about compromises resulting from vulnerabilities in the software supply ...
Shoring Up the Software Supply Chain Across Enterprise Applications
Supply chain security attacks are growing at an alarming pace, and things are going to keep getting worse until DevSecOps teams get on the same page. A little help from the feds could also be welcome Modern-day software development depends ...

View More Dark Reading Reports >>

PRODUCTS & RELEASES

Security LeadHER Wraps Groundbreaking Inaugural Conference for Women in Security

Coalition Releases Security Vulnerability Exploit Scoring System

Action1 Announces $20M Investment in Its Patch Management Platform

Keytos Uncovers 15,000 Vulnerable Subdomains per Month in Azure Using Cryptographic Certificates

MORE PRODUCTS & RELEASES

CURRENT ISSUE

How to Use Threat Intelligence to Mitigate Third-Party Risk
DOWNLOAD THIS ISSUE
VIEW BACK ISSUES

Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA

To opt-out of any future Dark Reading Daily Newsletter emails, please respond here.

Thoughts about this newsletter? Give us feedback.

Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:

If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.

We take your privacy very seriously. Please review our Privacy Statement.

How to Use Threat Intelligence to Mitigate Third-Party Risk