The finance services giant says it was hacked — and reported the incident proactively before SEC requirements mandated it. It could be an anti-extortion move, or merely a brand protection effort.
| | | LATEST SECURITY NEWS & COMMENTARY | | Prudential Files Voluntary Breach Notice With SEC The finance services giant says it was hacked — and reported the incident proactively before SEC requirements mandated it. It could be an anti-extortion move, or merely a brand protection effort. Attackers Exploit Microsoft Security-Bypass Zero-Day Bugs The Water Hydra cyberattacker group is one adversary using the zero-days to get past built-in Windows protections. AWS SNS Compromises Fuel Cloud Smishing Campaign Using a custom Python script to send bulk phishing messages with a USPS lure, the cyberattackers are posing a risk to consumer-facing organizations moving workloads to the cloud. Fortinet, Ivanti Keep Customers Busy With Yet More Critical Bugs Brand-new vulnerabilities from both vendors this week — one exploited in the wild — add to a steady stream of critical security issues in the security platforms. Deepfake Democracy: AI Technology Complicates Election Security While cybersecurity risks to the democratic process have been pervasive for many years now, the prevalence of AI now represents new threats. Super Bowl LVIII Presents a Vast Attack Surface for Threat Actors The NFL's digitization of almost all aspects of the event means it has a lot more turf to protect for itself, and for the game's tens of millions of fans. 'Coyote' Malware Begins Its Hunt, Preying on 61 Banking Apps Brazil, the world's center for banking Trojan malware, has produced one of its most advanced tools yet. And as history shows, Coyote may soon expand its territory. China Caught Dropping RAT Designed for FortiGate Devices Dutch military intelligence warns that new malware, called "Coathanger," was found in multiple FortiGate devices during an incident response, and that Chinese-state actors are using the persistent RAT for espionage. CISO Corner: DoD Regs, Neurodiverse Talent & Tel Aviv's Light Rail Also in this issue: How the SEC's reporting rules are being weaponized, quishing attacks plaguing execs, and tabletop exercises making a comeback. QR Code 'Quishing' Attacks on Execs Surge, Evading Email Security The use of QR codes to deliver malicious payloads jumped in Q4 2023, especially against executives, who saw 42 times more QR code phishing than the average employee. BumbleBee Malware Buzzes Back on the Scene After 4-Month Hiatus Cyberattacks targeting thousands of US organizations wields a new attack vector to deliver the versatile initial-access loader — and is a harbinger of a surge in threat activity. United Nations Digging Into DPRK Crypto Cyberattacks Totaling $3B The UN is reportedly investigating dozens of crypto cyberattacks suspected to have earned the North Korean regime billions to fund its nuclear program. BofA Warns Customers of Data Leak in Third-Party Breach An attack on a technology partner claimed by LockBit ransomware exposed sensitive information, including Social Security numbers, of more than 57,000 banking customers. CISO and CIO Convergence: Ready or Not, Here It Comes Recent shifts underscore the importance of collaboration and alignment between these two IT leaders for successful digital transformation. How 'Big 4' Nations' Cyber Capabilities Threaten the West Russia, China, Iran, and North Korea pose significant cyber threats to Western nations. It's Time to Rethink Third-Party Risk Assessment Continuously evaluating and updating your third-party risk assessment can improve your security posture and ensure your company doesn't have the next headline-making incident. MORE NEWS / MORE COMMENTARY | | | | | | PRODUCTS & RELEASES | | OpenText Joins the Joint Cyber Defense Collaborative to Enhance US Government Cybersecurity ISC2 Collaborates With IBM to Launch Entry-Level Cybersecurity Certificate BlackBerry Provides Update on Progress in Separation of Divisions and Path to Profitability Akto Launches Proactive GenAI Security Testing Solution CSC Partners With NetDiligence to Help Mitigate Cyber Risks MORE PRODUCTS & RELEASES |
|
Dark Reading Weekly
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
| | To opt-out of any future Dark Reading Weekly Newsletter emails, please respond here. | | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | | We take your privacy very seriously. Please review our Privacy Statement. |
|
| |
