| | | LATEST SECURITY NEWS & COMMENTARY | | 6 Lessons From the Expiration of the Let's Encrypt Root Certificate Fallout from the transition highlights the need for organizations to monitor and have processes for updating CA roots, experts say. Microsoft Fixes Zero-Day Flaw in Win32 Driver A previously known threat actor is using the flaw in a broad cyber-espionage campaign, security vendor warns. Applying Behavioral Psychology to Strengthen Your Incident Response Team A deep-dive study on the inner workings of incident response teams leads to a framework to apply behavioral psychology principles to CSIRTs. North American Orgs Hit With an Average of 497 Cyberattacks per Week A new analysis confirms a surge in global cyberattacks since the COVID-19 pandemic began. Microsoft: 58% of Nation-State Cyberattacks Come From Russia A wealth of Microsoft data highlights trends in nation-state activity, hybrid workforce security, disinformation, and supply chain, IoT, and OT security. Overly Complex IT Infrastructures Pose Security Risk Cybersecurity budgets are set to increase in 2022, but companies worry that complex IT networks and data infrastructure are wasting money, new PwC survey finds. VirusTotal Shares Data on Ransomware Activity Google's online malware scanning service analyzed 80 million ransomware samples that were uploaded in the past year-and-a-half. Why Choke-Point Analysis Is Essential in Active Directory Security Defense should focus on high-value choke points first to ensure that their most critical assets are protected, before moving on to deal with other attack paths. A Close Look at Russia's Ghostwriter Campaign The group, which conducts espionage and sows disinformation, is larger than previously thought and has shifted tactics. New Regulations Are Coming — Get a Handle on Your App Portfolio With the realization that any app could be a gateway for a larger attack, there will be more pressure than ever on companies to fully protect their entire application landscape. CyberArk Leads the PAM Omdia Universe With more staff working remotely, privileged access management (or PAM) has never been more important. Market forecasts, drivers, and trends are explored. 'FontOnLake' Malware Family Targets Linux Systems Researchers report that the location of its C2 server and the countries where samples were uploaded may indicate targets include Southeast Asia. Patch 'Immediately': Apache Issues Software Fix Amid Zero-Day Attacks CISA reports it's seeing ongoing scanning for the flaws and expects the activity to accelerate. MORE NEWS / MORE COMMENTARY | | | | |
|
Dark Reading Weekly
-- Published By Dark Reading
Informa Tech
303 Second St., Suite 900 South Tower, San Francisco, CA 94107 | | To update your profile, change your e-mail address, or unsubscribe, click here. | | To opt-out of any future Dark Reading Weekly Newsletter emails, please respond here. | | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | | We take your privacy very seriously. Please review our Privacy Statement. |
|
| |
