| LATEST SECURITY NEWS & COMMENTARY | 8 Ways Ransomware Operators Target Your Network Security researchers explore how criminals are expanding their arsenals with new, more subtle, and more effective ransomware attack techniques. Accellion Data Breach Resulted in Extortion Attempts Against Multiple Victims FireEye Mandiant says it discovered data stolen via flaw in Accellion FTA had landed on a Dark Web site associated with a known Russia-based threat group. New APT Group Targets Airline Industry & Immigration LazyScript bears similarities to some Middle Eastern groups but appears to be a distinct operation of its own, Malwarebytes says. SolarWinds Attackers Lurked for 'Several Months' in FireEye's Network Top execs from FireEye, SolarWinds, Microsoft, and CrowdStrike testified before the US Senate Intelligence Committee today on the aftermath - and ongoing investigations - into the epic attacks. Attackers Already Targeting Apple's M1 Chip with Custom Malware A proof-of-concept program infects systems with ARM64-compiled binaries and then reaches out to download additional functionality. Chinese-Affiliated APT31 Cloned & Used NSA Hacking Tool APT31 cloned and reused a Windows-based hacking tool for years before Microsoft patched the vulnerability, researchers report. CVSS as a Framework, Not a Score The venerable system has served us well but is now outdated. Not that it's time to throw the system away; use it as a framework to measure risk using modern, context-based methods. What Can Your Connected Car Reveal About You? App developers must take responsibility for the security of users' data. How to Fine-Tune Vendor Risk Management in a Virtual World Without on-site audits, many organizations lack their usual visibility to assess risk factors and validate contracts and SLA with providers. 10K Targeted in Phishing Attacks Spoofing FedEx, DHL Express The two campaigns aimed to steal victims' business email account credentials by posing as the shipping companies. Sequoia Capital Suffers Data Breach The attack began with a successful phishing email. Kia Denies Ransomware Attack as IT Outage Continues Kia Motors America states there is no evidence its recent systems outage was caused by a ransomware attack. MORE NEWS & COMMENTARY | | |
|
Dark Reading Weekly -- Published By Dark Reading Informa Tech 303 Second St., Suite 900 South Tower, San Francisco, CA 94107 | To update your profile, change your e-mail address, or unsubscribe, click here. | To opt-out of any future Dark Reading Weekly Newsletter emails, please respond here. | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | We take your privacy very seriously. Please review our Privacy Statement. |
|
|