The Chinese state-sponsored APT has compromised as many as 30% of Cisco legacy routers on a SOHO botnet that multiple threat groups use.
Follow Dark Reading:
 January 12, 2024
LATEST SECURITY NEWS & COMMENTARY
Volt Typhoon Ramps Up Malicious Activity Against Critical Infrastructure
The Chinese state-sponsored APT has compromised as many as 30% of Cisco legacy routers on a SOHO botnet that multiple threat groups use.
Move Over, APTs: Cybercriminals Now Target Critical Infrastructure Too
Danish energy sector attacks attributed to Russia's Sandworm APT turn out to be the work of a new concern: cyber opportunists.
OpenAI's New GPT Store May Carry Data Security Risks
Third-party developers of custom GPTs (mostly) aren't able to see your chats, but they can access, store, and potentially utilize some other kinds of personal data you share.
Mandiant, SEC Lose Control of X Accounts Without 2FA
Crypto hacks on Mandiant and SEC X accounts are the predictable result of the social media platform's upcharge for basic cybersecurity protections, experts say.
Ivanti Researchers Report Two Critical Zero-Day Vulnerabilities
Patches will be available in late January and February, but until then, customers must take mitigation measures.
UAE Faces Fresh Plague of Phishing Scams, Poisoned Searches
Dubai Police are issuing warnings about highly indexed websites that mimic popular online destinations, like the city's travel card top-up site.
War or Cost of Doing Business? Cyber Insurers Hashing Out Exclusions
Following a settlement over Merck's $700 million claims over NotPetya damages, questions remain about what constitutes an act of war for cyber-insurance policies.
Fake Recruiters Defraud Facebook Users via Remote-Work Offers
Scammers are targeting multiple brands with "job offers" on Meta's social media platform, that go as far as to offer what look like legitimate job contracts to victims.
Anonymous Sudan Launches Cyberattack on Chad Telco
Hacktivists attack infrastructure, including routers, network administration systems, and devices.
Hospitals Must Treat Patient Data and Health With Equal Care
All companies are under the data privacy compliance gun — but healthcare companies have a target on their backs.
MORE NEWS / MORE COMMENTARY
HOT TOPICS
Who Is Behind Pro-Ukrainian Cyberattacks on Iran?
Are Ukrainian cyberattacks against Iranian targets a blip or the beginning of a new trend?

Pikabot Malware Surfaces as Qakbot Replacement for Black Basta Attacks
An emerging threat actor, Water Curupira, is wielding a new, sophisticated loader in a series of thread-jacking phishing campaigns that precede ransomware.

Adapting Security to Protect AI/ML Systems
AI/ML libraries create much larger attack surfaces, and traditional IT security lacks several key capabilities for protecting them.

Patch Now: Critical Windows Kerberos Bug Bypasses Microsoft Security
A second, easy-to-exploit critical security vulnerability in Microsoft's first 2024 Patch Tuesday allows RCE within Hyper-Virtualization.

MORE
PRODUCTS & RELEASES
Claroty Welcomes Former US National Cyber Director Chris Inglis to Advisory Board
Critical Start Implements Cyber Risk Assessments With Peer Benchmarking and Prioritization Engine
Orca Security Appoints Raf Chiodo As Chief Revenue Officer
MORE PRODUCTS & RELEASES
EDITORS' CHOICE
CES 2024: Will the Coolest New AI Gadgets Protect Your Privacy?
Consumer electronics manufacturers are innovating fast. Regulators are slow to keep up. Data privacy is in the balance.
LATEST FROM THE EDGE

FBI Warns More Election "Chaos" in 2024
FBI Director Christopher Wray says to have confidence in the American election system but to expect ongoing information warfare, pointing to China as most formidable threat actor.
LATEST FROM DR TECHNOLOGY

Taking a Page From Data Scientists for Better Security
A security data lake approach can help your enterprise get a better handle on the massive proliferation of data.
LATEST FROM DR GLOBAL

Kenya Issues New Guidance for Protecting Personal Data
Kenya has a data privacy law. Now it's up to the government to spread awareness, and enforce compliance.
WEBINARS
View More Dark Reading Webinars >>
WHITE PAPERS
View More White Papers >>
FEATURED REPORTS
  • The State of Supply Chain Threats
  • What Ransomware Groups Look for in Enterprise Victims

    Ransomware attackers cast a wide net -- they just care about causing damage, making money, and gaining new victims. That means no organization is automatically immune to attack just because of its size or industry. Organizations need to take steps ...

  • How to Use Threat Intelligence to Mitigate Third-Party Risk

    The report discusses the various steps of a continuous third-party intelligence lifecycle: Data collection, Data classification, Data storage, Data analysis, reporting, dissemination, continuous monitoring, data governance, and choosing the right technology stack. The report also includes information about how attackers ...
View More Dark Reading Reports >>
Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
To opt-out of any future Dark Reading Daily Newsletter emails, please respond here.
Thoughts about this newsletter? Give us feedback.
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:
If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.
We take your privacy very seriously. Please review our Privacy Statement.
© 2024  |  Informa Tech  |  Privacy Statement  |  Terms & Conditions  |  Contact Us