Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

News & Commentary

Latest Content tagged with Threat Intelligence
Page 1 / 2   >   >>
JavaScript Obfuscation Moves to Phishing Emails
News  |  10/30/2020  | 
Attackers are hiding malicious payloads in phishing emails via a technique traditionally used to hide malicious code planted on websites.
Microsoft Warns of Ongoing Attacks Exploiting Zerologon
Quick Hits  |  10/30/2020  | 
The vulnerability, patched in August, has been weaponized by APT groups and prompted CISA to issue a security alert.
McAfee Launches XDR, Browser Isolation, Cloud App Security Tools
Quick Hits  |  10/29/2020  | 
New additions are built to help organizations better respond to threats and protect applications and data in the cloud.
Hackers Make Off With Millions From Wisconsin Republicans
Quick Hits  |  10/29/2020  | 
According to the Wisconsin Republican Party, thieves used altered invoices to make off with $2.3 million in election funds.
Ransomware Wave Targets US Hospitals: What We Know So Far
News  |  10/29/2020  | 
A joint advisory from the CISA, FBI, and HHS warns of an "increased and imminent" threat to US hospitals and healthcare providers.
Cybercriminals Aim BEC Attacks at Education Industry
News  |  10/29/2020  | 
Heightened vulnerability comes at a time when the sector has been focusing on setting up a remote workforce and online learning amid the pandemic.
US Government Issues Warning on Kimsuky APT Group
Quick Hits  |  10/28/2020  | 
The joint alert, from CISA, the FBI, and others, describes activities from the North Korean advanced persistent threat group.
6 Ways Passwords Fail Basic Security Tests
Slideshows  |  10/28/2020  | 
New data shows humans still struggle with password creation and management.
Trump Campaign Website Defaced by Unknown Attackers
Quick Hits  |  10/28/2020  | 
Individuals behind the brief Tuesday night incident posted anti-Trump sentiments and appeared to solicit cryptocurrency.
Chinese Attackers' Favorite Flaws Prove Global Threats, Research Shows
News  |  10/27/2020  | 
Following the NSA's list of 25 security flaws often weaponized by Chinese attackers, researchers evaluated how they're used around the world.
MITRE Shield Matrix Highlights Deception & Concealment Technology
Commentary  |  10/27/2020  | 
The role that these technologies play in the MITRE Shield matrix is a clear indicator that they are an essential part of today's security landscape.
Akamai Acquires Asavie
Quick Hits  |  10/27/2020  | 
Asavie's mobile, IoT, and security products and services will become part of the Akamai Security and Personalization Services product line.
Employees Aware of Emailed Threats Open Suspicious Messages
Quick Hits  |  10/27/2020  | 
A survey of 1,000 employees finds 96% of employees are aware of digital threats, but 45% click emails they consider to be suspicious.
Cybercriminals Extort Psychotherapy Patients Following Vastaamo Breach
Quick Hits  |  10/26/2020  | 
An attacker is running a Tor site to leak the session notes of 300 patients at Vastaamo, a Finnish psychotherapy facility.
Microsoft's Kubernetes Threat Matrix: Here's What's Missing
Commentary  |  10/26/2020  | 
With a fuller picture of the Kubernetes threat matrix, security teams can begin to implement mitigation strategies to protect their cluster from threats.
US Treasury Sanctions Russian Institution Linked to Triton Malware
Quick Hits  |  10/23/2020  | 
Triton, also known as TRISIS and HatMan, was developed to target and manipulate industrial control systems, the US Treasury reports.
Botnet Infects Hundreds of Thousands of Websites
News  |  10/22/2020  | 
KashmirBlack has been targeting popular content management systems, such as WordPress, Joomla, and Drupal, and using Dropbox and GitHub for communication to hide its presence.
Credential-Stuffing Attacks Plague Loyalty Programs
News  |  10/22/2020  | 
But that's not the only type of web attack cybercriminals have been profiting from.
McAfee Raises $740M in Second IPO
Quick Hits  |  10/22/2020  | 
The security software giant and its investors sold 37 million shares priced at $20 each, putting McAfee's value around $8.6 billion.
As Smartphones Become a Hot Target, Can Mobile EDR Help?
News  |  10/21/2020  | 
Lookout Security debuts a mobile endpoint detection and response offering that will integrate into its mobile security platform.
Iranian Cyberattack Group Deploys New PowGoop Downloader Against Mideast Targets
News  |  10/21/2020  | 
Seedworm Group, aka MuddyWater, is also deploying commodity ransomware as part of espionage attacks on companies and government agencies in the Middle East region.
NSA Reveals the Top 25 Vulnerabilities Exploited by Chinese Nation-State Hackers
Quick Hits  |  10/20/2020  | 
Officials urge organizations to patch the vulnerabilities most commonly scanned for, and exploited by, Chinese attackers.
Businesses Rethink Endpoint Security for 2021
News  |  10/20/2020  | 
The mass movement to remote work has forced organizations to rethink their long-term plans for endpoint security. How will things look different next year?
Trickbot Tenacity Shows Infrastructure Resistant to Takedowns
News  |  10/20/2020  | 
Both the US Cyber Command and a Microsoft-led private-industry group have attacked the infrastructure used by attackers to manage Trickbot -- but with only a short-term impact.
Russian Military Officers Unmasked, Indicted for High-Profile Cyberattack Campaigns
News  |  10/19/2020  | 
US Department of Justice charges members of Sandworm/APT28 for BlackEnergy, NotPetya, Olympic Destroyer, and other major attacks.
GravityRAT Spyware Targets Android & MacOS in India
Quick Hits  |  10/19/2020  | 
The Trojan once used in attacks against Windows systems has been transformed into a multiplatform tool targeting macOS and Android.
Microsoft Tops Q3 List of Most-Impersonated Brands
News  |  10/19/2020  | 
The technology sector was also the most likely targeted industry for brand phishing attacks, according to Check Point's latest report on brand phishing.
7 Tips for Choosing Security Metrics That Matter
Slideshows  |  10/19/2020  | 
Experts weigh in on picking metrics that demonstrate how the security team is handling operational efficiency and reducing risk.
US Counterintelligence Director & Fmr. Europol Leader Talk Election Security
News  |  10/16/2020  | 
The US counterintelligence lead joins a former Europol cyber chief to discuss modern election threats and the benefits of public-private collaboration.
Academia Adopts Mitre ATT&CK Framework
News  |  10/16/2020  | 
Security pros and academic researchers discuss the best ways to use MITRE's framework to inform cybersecurity efforts, analyze threats, and teach future workers.
Prolific Cybercrime Group Now Focused on Ransomware
News  |  10/15/2020  | 
Cybercriminal team previously associated with point-of-sale malware and data theft has now moved almost completely into the more lucrative crimes of ransomware and extortion.
Twitter Hack Analysis Drives Calls for Greater Security Regulation
Quick Hits  |  10/15/2020  | 
New York's Department of Financial Services calls for more cybersecurity regulation at social media firms following the "jarringly easy" Twitter breach.
London Borough of Hackney Investigates 'Serious' Cyberattack
Quick Hits  |  10/14/2020  | 
London's Hackney Council says some services may be slow or unavailable as it looks into a cyberattack affecting services and IT systems.
Microsoft Fixes Critical Windows TCP/IP Flaw in Patch Rollout
News  |  10/13/2020  | 
The October 2020 Patch Tuesday fixed 87 vulnerabilities, including 21 remote code execution flaws, in Microsoft products and services.
25% of BEC Cybercriminals Based in the US
News  |  10/13/2020  | 
While the US is known to be a prime target for BEC attacks, just how many perpetrators are based there came as a surprise to researchers.
Security Firms & Financial Group Team Up to Take Down Trickbot
News  |  10/12/2020  | 
Microsoft and security firms ESET, Black Lotus Labs, and Symantec collaborated with the financial services industry to cut off the ransomware operation's C2 infrastructure.
A 7-Step Cybersecurity Plan for Healthcare Organizations
Slideshows  |  10/12/2020  | 
With National Cybersecurity Awareness Month shining a spotlight on the healthcare industry, security pros share best practices for those charged with protecting these essential organizations.
How to Pinpoint Rogue IoT Devices on Your Network
News  |  10/12/2020  | 
Researchers explain how security practitioners can recognize when a seemingly benign device could be malicious.
Critical Zerologon Flaw Exploited in TA505 Attacks
Quick Hits  |  10/9/2020  | 
Microsoft reports a new campaign leveraging the critical Zerologon vulnerability just days after nation-state group Mercury was seen using the flaw.
Cyberattacks Up, But Companies (Mostly) Succeed in Securing Remote Workforce
News  |  10/8/2020  | 
Despite fears that the burgeoning population of remote workers would lead to breaches, companies have held their own, a survey of threat analysts finds.
Scale Up Threat Hunting to Skill Up Analysts
Commentary  |  10/8/2020  | 
Security operation centers need to move beyond the simplicity of good and bad software to having levels of "badness," as well as better defining what is good. Here's why.
US Seizes Domain Names Used in Iranian Disinformation Campaign
Quick Hits  |  10/8/2020  | 
The US has seized 92 domain names used by Iran's Islamic Revolutionary Guard Corps to spread a worldwide disinformation campaign.
Kaspersky Researchers Spot Russia-on-Russia Cyber-Espionage Campaign
News  |  10/8/2020  | 
Steganography-borne malware used to spy on industrial targets in Russia.
'Bahamut' Threat Group Targets Government & Industry in Middle East
News  |  10/7/2020  | 
Researchers say the cyber espionage group was involved in several attacks against government officials and businesses in the Middle East and South Asia.
Rare Firmware Rootkit Discovered Targeting Diplomats, NGOs
News  |  10/7/2020  | 
Second-ever sighting of a firmware exploit in the wild is a grim reminder of the dangers of these mostly invisible attacks.
Cyber Intelligence Suffers From 'Snobby' Isolationism, Focus on Rare Threats
News  |  10/7/2020  | 
Cyber-threat intelligence groups need to more often investigate their organization's specific threats and better integrate with other business groups, experts say.
CISA Warns of Renewed Emotet Activity
Quick Hits  |  10/7/2020  | 
The Emotet malware dropper is seeing an upsurge in new activity in the second half of 2020.
How Netflix Makes Security Decisions: A Peek Inside the Process
News  |  10/6/2020  | 
A senior information security risk engineer explains how Netflix's risk management program helps businesses leaders make key decisions.
Malware for Ad Fraud Gets More Sophisticated
News  |  10/6/2020  | 
Facebook says SilentFade campaign disabled notifications that could have warned users that their accounts had been compromised.
Meet 'Egregor,' a New Ransomware Family to Watch
Quick Hits  |  10/5/2020  | 
Egregor's operators promise to decrypt victims' files and provide security recommendations in exchange for ransom payment.
Page 1 / 2   >   >>


COVID-19: Latest Security News & Commentary
Dark Reading Staff 10/30/2020
'Act of War' Clause Could Nix Cyber Insurance Payouts
Robert Lemos, Contributing Writer,  10/29/2020
6 Ways Passwords Fail Basic Security Tests
Curtis Franklin Jr., Senior Editor at Dark Reading,  10/28/2020
Register for Dark Reading Newsletters
White Papers
Video
Cartoon
Current Issue
How to Measure and Reduce Cybersecurity Risk in Your Organization
In this Tech Digest, we examine the difficult practice of measuring cyber-risk that has long been an elusive target for enterprises. Download it today!
Flash Poll
How IT Security Organizations are Attacking the Cybersecurity Problem
How IT Security Organizations are Attacking the Cybersecurity Problem
The COVID-19 pandemic turned the world -- and enterprise computing -- on end. Here's a look at how cybersecurity teams are retrenching their defense strategies, rebuilding their teams, and selecting new technologies to stop the oncoming rise of online attacks.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2020-5991
PUBLISHED: 2020-10-30
NVIDIA CUDA Toolkit, all versions prior to 11.1.1, contains a vulnerability in the NVJPEG library in which an out-of-bounds read or write operation may lead to code execution, denial of service, or information disclosure.
CVE-2020-15273
PUBLISHED: 2020-10-30
baserCMS before version 4.4.1 is vulnerable to Cross-Site Scripting. The issue affects the following components: Edit feed settings, Edit widget area, Sub site new registration, New category registration. Arbitrary JavaScript may be executed by entering specific characters in the account that can ac...
CVE-2020-15276
PUBLISHED: 2020-10-30
baserCMS before version 4.4.1 is vulnerable to Cross-Site Scripting. Arbitrary JavaScript may be executed by entering a crafted nickname in blog comments. The issue affects the blog comment component. It is fixed in version 4.4.1.
CVE-2020-15277
PUBLISHED: 2020-10-30
baserCMS before version 4.4.1 is affected by Remote Code Execution (RCE). Code may be executed by logging in as a system administrator and uploading an executable script file such as a PHP file. The Edit template component is vulnerable. The issue is fixed in version 4.4.1.
CVE-2020-7373
PUBLISHED: 2020-10-30
vBulletin 5.5.4 through 5.6.2 allows remote command execution via crafted subWidgets data in an ajax/render/widget_tabbedcontainer_tab_panel request. NOTE: this issue exists because of an incomplete fix for CVE-2019-16759. ALSO NOTE: CVE-2020-7373 is a duplicate of CVE-2020-17496. CVE-2020-17496 is ...