Follow Dark Reading:
 December 24, 2020
LATEST SECURITY NEWS & COMMENTARY
Amazon Gift Card Scam Delivers Dridex This Holiday Season
Dridex operators launch a social engineering scam that promises victims a $100 gift card but delivers a banking Trojan.
SolarWinds Campaign Focuses Attention on 'Golden SAML' Attack Vector
Adversaries that successfully execute attack can achieve persistent anytime, anywhere access to a victim network, security researchers say.
Lazarus Group Seeks Intelligence Related to COVID-19
Researchers attribute attacks targeting a pharmaceutical company and a government ministry related to COVID-19 response.
Emotet Campaign Restarts After Seven-Week Hiatus
Multiple security researchers note the return of an email campaign attempting to spread the malware, which is often used to drop the Ryuk ransomware and Trickbot banking Trojan.
We Have a National Cybersecurity Emergency -- Here's How We Can Respond
Let's prioritize bipartisan strategic actions that can ensure our national security and strengthen the economy. Here are five ideas for how to do that.
Prepare to Fight Upcoming Cyber-Threat Innovations
Cybercriminals are preparing to use computing performance innovations to launch new types of attacks.
Quarterbacking Vulnerability Remediation
It's time that security got out of the armchair and out on the field.
Security as Code: How Repeatable Policy-Driven Deployment Improves Security
The SaC approach lets users codify and enforce a secure state of application configuration deployment that limits risk.
Cisco, Intel, Deloitte Among Victims of SolarWinds Breach: Report
The Wall Street Journal identified 24 businesses so far that have downloaded the SolarWinds software infected with malicious code.
Law Enforcement Disrupts VPN Services Enabling Cybercrime
The United States and international partners shut down three bulletproof hosting services used to facilitate criminal activity.
MORE NEWS & COMMENTARY
HOT TOPICS
Microsoft, McAfee, Rapid7, and Others Form New Ransomware Task Force
Industry group wants to get a framework in the hands of the new administration's cybersecurity officials by early spring 2021.

2021 Cybersecurity Predictions: The Intergalactic Battle Begins
There's much in store for the future of cybersecurity, and the most interesting things aren't happening on Earth.

NSA, CISA Warn of Attacks on Federated Authentication
While incident responders focus on attacks using SolarWinds Orion, government cyber defenders highlight other methods likely being used as well.

MORE
EDITORS' CHOICE

5 Key Takeaways From the SolarWinds Breach
New details continue to emerge each day, and there may be many more lessons to learn from what could be among the largest cyberattacks ever.
Rising to the Challenge: Perspectives from Security Leaders on 2020 and Beyond
For those who work in the security industry 2020 has been a particularly challenging year. Chris Price talks to five industry leaders from different perspectives in the sector about how they coped with COVID and asks them to look forward to 2021.
LATEST FROM THE EDGE

Delivering Santa from Third-Party Risk
2020 has made even St. Nick susceptible to the risks associated with the coronavirus pandemic. Fortunately, cybersecurity experts are ready to help the merry old elf with advice on reducing risks to his global operations.
7 Infamous Moments in Adobe Flash's Security History
End-of-life is here: Adobe's support for Flash is gone as of Jan. 1. Here's what we won't miss about the multimedia software platform.
Tech Resources
ACCESS TECH LIBRARY NOW

  • A Radical Approach to Threat Intel Management

    What's the point of collecting tactical information that your team can't act on or map to what's happening in your environment? As a security leader, you need more from your cyber threat intelligence program.

  • Cyber Attack Evasion Techniques

    When it comes to evasion techniques there's a perpetual cat and mouse game between malware developers and solutions providers. By drawing on the latest in evasion techniques, malware developers not only go undetected on the compromised machine but more importantly, ...
MORE WEBINARS
FEATURED REPORTS
MORE REPORTS
CURRENT ISSUE

2020: The Year in Security
DOWNLOAD THIS ISSUE SUBSCRIBE NOW
BACK ISSUES | MUST READS | TECH DIGEST
PRODUCTS & RELEASES
Report: Fraudsters Bank on Targeted, High-Value Attacks During 2020 Holiday Shopping Season
Iranian Cyber Actors Responsible for Website Threatening US Election Officials
Sectigo IoT Security & Identity Management Advancements Speed Integration and Use in Multivendor Ecosystems
CyberRatings.org Announces 2021 SD-WAN Product Ratings
MORE PRODUCTS & RELEASES
Dark Reading Weekly
-- Published By Dark Reading
Informa Tech
303 Second St., Suite 900 South Tower, San Francisco, CA 94107
To update your profile, change your e-mail address, or unsubscribe, click here.
To opt-out of any future Dark Reading Weekly Newsletter emails, please respond here.
Thoughts about this newsletter? Give us feedback.
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:
If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.
We take your privacy very seriously. Please review our Privacy Statement.
© 2020  |   Informa Tech  |  Privacy Statement  |   Terms & Conditions  |  Contact Us