Microsoft, three others release patches to fix a vulnerability in their respective products that enables such manipulation. Potentially other EDR products affected as well.
| LATEST SECURITY NEWS & COMMENTARY | For Cyberattackers, Popular EDR Tools Can Turn into Destructive Data Wipers Microsoft, three others release patches to fix a vulnerability in their respective products that enables such manipulation. Potentially other EDR products affected as well. Shift to Memory-Safe Languages Gains Momentum Software firms and the National Security Agency urge developers to move to memory-safe programming languages to eliminate a major source of high-severity flaws. Wiper, Disguised as Fake Ransomware, Targets Russian Orgs The program, dubbed CryWiper, is aimed at Russian targets; it requests a ransom but has no way to decrypt any overwritten files. Machine Learning Models: A Dangerous New Attack Vector Threat actors can weaponize code within AI technology to gain initial network access, move laterally, deploy malware, steal data, or even poison an organization's supply chain. Russian Actors Use Compromised Healthcare Networks Against Ukrainian Orgs Victims include at least 15 healthcare organizations, one Fortune 500 company, and other organizations in multiple countries, security vendor says. Google Chrome Flaw Added to CISA Patch List CISA gives agencies deadline to patch against Google Chrome bug being actively exploited in the wild. Russia Readies Winter Cyberattacks As Troops Retreat From Ukraine Microsoft warns that the Kremlin is ramping up cyberattacks against infrastructure and supply chains and starting disinformation campaigns as Russian troops lose on the battlefield. Applying the OODA Loop to Cybersecurity and Secure Access Service Edge Organizations can best defend themselves on the cyber battlefield by adopting a military-style defense. What Will It Take to Secure Critical Infrastructure? There's no quick fix after decades of underinvestment, but the process has started. Cybersecurity grants, mandatory reporting protocols, and beefed-up authentication requirements are being put in place. MORE NEWS / MORE COMMENTARY | |
|
Dark Reading Daily -- Published By Dark Reading Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
| To opt-out of any future Dark Reading Daily Newsletter emails, please respond here. | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | We take your privacy very seriously. Please review our Privacy Statement. |
|
|