The Chinese state-sponsored cyberattack threat managed to infiltrate the "lawful intercept" network connections that police use in criminal investigations.
| LATEST SECURITY NEWS & COMMENTARY | Salt Typhoon APT Subverts Law Enforcement Wiretapping: Report The Chinese state-sponsored cyberattack threat managed to infiltrate the "lawful intercept" network connections that police use in criminal investigations. Ex-Uber CISO Requests a New, 'Fair' Trial Attorneys for Joseph Sullivan argue the jury didn't hear essential facts of the case during the original trial and that his conviction must be overturned. Hackers Hide Remcos RAT in GitHub Repository Comments The tack highlights bad actors' interest in trusted development and collaboration platforms — and their users. CISO Paychecks: Worth the Growing Security Headaches? CISOs' cash compensation tops $400,000 now, but the high pay comes with struggles, rapidly changing responsibilities, and tight budgets. iPhone 'VoiceOver' Feature Could Read Passwords Aloud CVE-2024-44204 is one of two new Apple iOS security vulnerabilities that showcase an unexpected coming together of privacy snafus and accessibility features. AI-Powered Cybercrime Cartels on the Rise in Asia All across the Asia-Pacific region, large and diverse marketplaces for AI cybercrime tools have developed, with deepfakes proving most popular. Thousands of DrayTek Routers at Risk From 14 Vulnerabilities Several of the flaws enable remote code execution and denial-of-service attacks, while others enable data theft, session hijacking, and other malicious activity. AI 'Nude Photo Generator' Delivers Infostealers Instead of Images The FIN7 group is mounting a sophisticated malware campaign that spans numerous websites, to lure people with a deepfake tool promising to create nudes out of photos. Single HTTP Request Can Exploit 6M WordPress Sites The popular LiteSpeed Cache plug-in is vulnerable to unauthenticated privilege escalation via a dangerous XSS flaw. Cybersecurity Is Serious — but It Doesn't Have to Be Boring Thoughtfully applied, humor breaks through security fatigue, increases engagement, and fosters a culture of security awareness. How Major Companies Are Honoring Cybersecurity Awareness Month The annual event reinforces best practices while finding new ways to build a culture where employees understand how their daily decisions affect company security. Find out how AWS, IBM, Intuit, SentinelOne, and Gallo are spreading the word. What the White House Should Do Next for Cyber Regulation Creating a new office of cyber-regulation strategy is the government's best opportunity to improve security and to protect Americans in an increasingly dangerous world. MORE NEWS / MORE COMMENTARY | | | PRODUCTS & RELEASES | Introducing Mayhem: ForAllSecure Unveils New Name and Company Focus CYRISMA Secures $7M Growth Equity Financing led by Blueprint Equity OpenGradient Raises $8.5M to Decentralize AI Infrastructure and Accelerate Secure, Open-Source AI 90% of Successful Attacks Seen in the Wild Resulted in Leaked Sensitive Data MORE PRODUCTS & RELEASES |
|
Dark Reading Weekly -- Published By Dark Reading Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
| To opt-out of any future Dark Reading Weekly Newsletter emails, please respond here. | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | We take your privacy very seriously. Please review our Privacy Statement. |
|
|