Threat actors convince employees to reset MFA for Super Admin accounts in the IAM service to leverage compromised accounts, impersonating users and moving laterally within an organization.
| | | LATEST SECURITY NEWS & COMMENTARY | | Hackers Target High-Privileged Okta Accounts via Help Desk Threat actors convince employees to reset MFA for Super Admin accounts in the IAM service to leverage compromised accounts, impersonating users and moving laterally within an organization. Researchers Discover Critical Vulnerability in PHPFusion CMS No patch is available yet for the bug, which can enable remote code execution under the correct circumstances. LockBit Leaks Documents Filched From UK Defense Contractor A company that builds physical perimeter defenses failed to keep the LockBit group from penetrating its cyber defenses. Data Initiatives Force Closer Partnership Between CISOs, CDOs Though security leaders and chief data officers both care about data management, their different missions have created a tension that needs addressing. GhostSec Leaks Source Code of Alleged Iranian Surveillance Tool GhostSec has made the source code for what it calls a powerful surveillance tool openly available in a 26GB file, but FANAP denies its legitimacy. Peiter 'Mudge' Zatko Lands Role as CISA Senior Technical Adviser The former hacker and Twitter security executive will use his role to help fulfill the Biden administration's plans for the National Cybersecurity Strategy. As LotL Attacks Evolve, So Must Defenses Because living-off-the-land (LotL) attacks masquerade as frequently used, legitimate companies, they are very difficult to block and detect. How Companies Can Cope With the Risks of Generative AI Tools To benefit from AI yet minimize risk, companies should be cautious about information they share, be aware of AI's limitations, and stay vigilant about business implications. (Sponsored Article) How to Choose a Managed Detection and Response (MDR) Solution MDR empowers organizations with enhanced security. Look for these four capabilities when selecting an MDR product. MORE NEWS / MORE COMMENTARY | | |
|
Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
| | To opt-out of any future Dark Reading Daily Newsletter emails, please respond here. | | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | | We take your privacy very seriously. Please review our Privacy Statement. |
|
| |
