| | | LATEST SECURITY NEWS & COMMENTARY | | How to Proactively Limit Damage From BlackMatter Ransomware Logic flaw exists in malware that can be used to prevent it from encrypting remote shares, security vendor says. Microsoft Kicks Off 2022 With 96 Security Patches Nine of the Microsoft patches released today are classified as Critical, 89 are Important, and six are publicly known. Microsoft RDP Bug Enables Data Theft, Smart-Card Hijacking The vulnerability was patched this week in Microsoft's set of security updates for January 2022. New Mac Malware Samples Underscore Growing Threat A handful of malicious tools that emerged last year showed threat actors may be getting more serious about attacking Apple macOS and iOS environments. No Significant Intrusions Related to Log4j Flaw Yet, CISA Says But that could change anytime, officials warn, urging organizations to prioritize patching against the critical remote code execution flaw. CDN Cache Poisoning Allows DoS Attacks Against Cloud Apps A Romanian researcher discovers more than 70 vulnerabilities in how applications and their content delivery networks handle cache misses that open the doors to denial-of-service attacks. Rethinking Cybersecurity Jobs as a Vocation Instead of a Profession The prevailing mindset is that security practitioners are professionals, and thus, require a college degree. But there are some flaws in that logic. Critical Infrastructure Security and a Case for Optimism in 2022 The new US infrastructure law will fund new action to improve cybersecurity across rail, public transportation, the electric grid, and manufacturing. The Evolution of Patch Management: How and When It Got So Complicated In the wake of WannaCry and its ilk, the National Vulnerability Database arose to help security organizations track and prioritize vulnerabilities to patch. Part 1 of 3. Patch Management Today: A Risk-Based Strategy to Defeat Cybercriminals By combining risk-based vulnerability prioritization and automated patch intelligence, organizations can apply patches based on threat level. Part 2 of 3. 7 Predictions for Global Energy Cybersecurity in 2022 Increased digitization makes strong cybersecurity more important than ever. FBI Warns FIN7 Campaign Delivers Ransomware via BadUSB An FBI warning says the FIN7 cybercrime group has sent packages containing malicious USB drives to US companies in an effort to spread ransomware. MORE NEWS / MORE COMMENTARY | | | | |
|
Dark Reading Weekly
-- Published By Dark Reading
Informa Tech
303 Second St., Suite 900 South Tower, San Francisco, CA 94107 | | To update your profile, change your e-mail address, or unsubscribe, click here. | | To opt-out of any future Dark Reading Weekly Newsletter emails, please respond here. | | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | | We take your privacy very seriously. Please review our Privacy Statement. |
|
| |
