Dark Reading Weekly -- September 07, 2023

W3LL Gang Compromises Thousands of Microsoft 365 Accounts

A secretive phishing cabal boasts a sophisticated affiliate network and a modular, custom toolset that's claiming victims on three continents.

Google's Souped-up Chrome Store Review Process Foiled by Data-Stealer

Researchers have discovered that despite Google's adoption of the Manifest V3 security standard to protect against malicious plug-ins, attackers can still get bad extensions past its review process.

AtlasVPN Linux Zero-Day Disconnects Users, Reveals IP Addresses

All it takes is a simple copy-paste to undo a VPN service used by millions worldwide.

NYC Subway Disables Trip-History Feature Over Tap-and-Go Privacy Concerns

The move by New York's Metropolitan Transit Authority (MTA) follows a report that showed how easy it is for someone to pull up another individual's seven-day ride history through the One Metro New York (OMNY) website.

Researchers Discover Critical Vulnerability in PHPFusion CMS

No patch is available yet for the bug, which can enable remote code execution under the correct circumstances.

Peiter 'Mudge' Zatko Lands Role as CISA Senior Technical Adviser

The former hacker and Twitter security executive will use his role to help fulfill the Biden administration's plans for the National Cybersecurity Strategy.

Proposed SEC Cybersecurity Rule Will Put Unnecessary Strain on CISOs

The Security and Exchange Commission's Proposed Rule for Public Companies (PPRC) is ambiguous.

Apple iPhone 14 Pro Offered Up to the Hacking Masses

Since launching in 2019, the Security Device Research Program has discovered 130 critical vulnerabilities; applications are now open for Apple's 2024 iteration.

Securing Your Legacy: Identities, Data, and Processes

Legacy systems of all kinds pose significant cybersecurity risks. Here's how to mitigate them.

Realism Reigns on AI at Black Hat and DEF CON

Realistic expectations and caution began to replace wonder and confusion for generative AI at the recent security industry gatherings.

As LotL Attacks Evolve, So Must Defenses

Because living-off-the-land (LotL) attacks masquerade as frequently used, legitimate companies, they are very difficult to block and detect.

A Brief History of ICS-Tailored Attacks

It's on the cyber defenders to learn from the past and make industrial control system networks hostile to attackers.

How Companies Can Cope With the Risks of Generative AI Tools

To benefit from AI yet minimize risk, companies should be cautious about information they share, be aware of AI's limitations, and stay vigilant about business implications.

Cybercriminals Team Up to Upgrade 'SapphireStealer' Malware

A hacker published a real gem of an infostealer to GitHub that requires zero coding knowledge to use. Then a community sprung up around it, polishing the code to a high shine and creating new, even more robust features.

Hackers Target High-Privileged Okta Accounts via Help Desk

Threat actors convince employees to reset MFA for Super Admin accounts in the IAM service to leverage compromised accounts, impersonating users and moving laterally within an organization.

LATEST FROM THE EDGE

Cybersecurity Builds Trust in Critical Infrastructure

Improving an energy company's resistance to cyberattack does more than protect vital resources — it enhances trust from customers and investors.

LATEST FROM DR TECHNOLOGY

Coding Tips to Sidestep JavaScript Vulnerabilities

This Tech Tip focuses on best security practices to write secure JavaScript code.

LATEST FROM DR GLOBAL

US Government Denies Blocking Sales of AI Chips to Middle East

Nvidia and AMD do face expanded export rules for their A100 and H100 artificial intelligence (AI) chips in the Middle East, but it's not yet clear why.

What Ransomware Groups Look for in Enterprise Victims