| LATEST SECURITY NEWS & COMMENTARY | 7 Things We Know So Far About the SolarWinds Attacks Two months after the news first broke, many questions remain about the sophisticated cyber-espionage campaign. Malicious Code Injected via Google Chrome Extension Highlights App Risks An open source plug-in purportedly introduced tracking and malicious download code to infect nearly 2 million users, reports say. High-Severity Vulnerabilities Discovered in Multiple Embedded TCP/IP Stacks Flaw leaves millions of IT, OT, and IoT devices vulnerable to attack. Microsoft Fixes Windows Zero-Day in Patch Tuesday Rollout Microsoft's monthly security fixes addressed a Win32k zero-day, six publicly known flaws, and three bugs in the Windows TCP/IP stack. SASE Surge: Why the Market Is Poised to Grow Analysts who anticipate the SASE market will expand by more than a factor of five before 2025 explain reasons behind the surge. Iranian Cyber Groups Spying on Dissidents & Others of Interest to Government A new investigation of two known threat groups show cyber actors are spying on mobile devices and PCs belonging to targeted users around the world. Emotet Takedown: Short-Term Celebration, Long-Term Concerns Security researchers examine how and when Emotet's operators may resurface, and the threats that could evolve in the meantime. Cybercrime Goes Mainstream Organized cybercrime is global in scale and the second-greatest risk over the next decade. Cloud-Native Apps Make Software Supply Chain Security More Important Than Ever Cloud-native deployments tend to be small, interchangeable, and easier to protect, but their software supply chains require closer attention. How Neurodiversity Can Strengthen Cybersecurity Defense Team members from different backgrounds, genders, ethnicities, and neurological abilities are best equipped to tackle today's security challenges. Android App Infects Millions of Devices With a Single Update The popular Barcode Scanner app, which as been available on Google Play for years, turned malicious with one software update. Microsoft & Facebook Were Phishers' Favorite Brands in 2020 Cloud services was the most impersonated industry, followed by financial services, e-commerce, and social media, researchers report. MORE NEWS & COMMENTARY | | |
|
Dark Reading Weekly -- Published By Dark Reading Informa Tech 303 Second St., Suite 900 South Tower, San Francisco, CA 94107 | To update your profile, change your e-mail address, or unsubscribe, click here. | To opt-out of any future Dark Reading Weekly Newsletter emails, please respond here. | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | We take your privacy very seriously. Please review our Privacy Statement. |
|
|