The risk of exploitation is heightened, thanks to a proof-of-concept that's been made publicly available.
Follow Dark Reading:
 October 24, 2024
LATEST SECURITY NEWS & COMMENTARY
Microsoft SharePoint Vuln Is Under Active Exploit
The risk of exploitation is heightened, thanks to a proof-of-concept that's been made publicly available.
Lazarus Group Exploits Chrome Zero-Day in Latest Campaign
The North Korean actor is going after cryptocurrency investors worldwide leveraging a genuine-looking game site and AI-generated content and images.
Russian Trolls Pose as Reputable Media to Sow US Election Chaos
Operation Overload pushes dressed up Russian state propaganda with the aim of flooding the US with election disinformation.
Bumblebee Malware Is Buzzing Back to Life
Despite a law enforcement sweep last May, the sophisticated downloader malware is re-emerging.
'Prometei' Botnet Spreads Its Cryptojacker Worldwide
The Russian-language malware primarily enlists computers to mine Monero, but theoretically it can do worse.
Mobile Apps With Millions of Downloads Expose Cloud Credentials
Popular titles on both Google Play and Apple's App Store include hardcoded and unencrypted AWS and Azure credentials in their codebases or binaries, making them vulnerable to misuse by threat actors.
The US Needs a Better Energy Grid to Win the AI Arms Race
The longer we avoid reform, the further behind we'll fall in AI innovation — and the more vulnerable we'll be.
MORE NEWS / MORE COMMENTARY
HOT TOPICS
Swarms of Fake WordPress Plug-ins Infect Sites With Infostealers
GoDaddy flagged a ClickFix campaign that infected 6,000 sites in a one-day period, with attackers using stolen admin credentials to distribute malware.

Samsung Zero-Day Vuln Under Active Exploit, Google Warns
If it's exploited, bad actors can execute arbitrary code while evading detection thanks to a renamed process.

OPA for Windows Vulnerability Exposes NTLM Hashes
The vulnerability affects all versions prior to v0.68.0 and highlights the risks organizations assume when consuming open source software and code.

What Today's SOC Teams Can Learn From Baseball
There are more similarities between developing a professional athlete and developing a cybersecurity pro than you might expect.

MORE
PRODUCTS & RELEASES
Honeywell and Google Cloud to Accelerate Auto Operations With AI Agents for the Industrial Sector
SoftwareOne Launches Cloud Competency Centre in Malaysia
Retail & Hospitality ISAC Launches Program Aimed at Securing Supply Chains
MORE PRODUCTS & RELEASES
EDITORS' CHOICE
Tricky CAPTCHA Caught Dropping Lumma Stealer Malware
The persistent infostealer's latest campaign inserts fake CAPTCHA pages into legitimate applications, fooling users into executing the malicious payload, researchers find.
LATEST FROM THE EDGE

Breaking Barriers: Making Cybersecurity Accessible for Neurodiverse Professionals
Cybersecurity is not "one size fits all." Employers, recruiters, and managers need to embrace neurodiversity through inclusive hiring practices, tailored training programs, and adaptive management styles.
LATEST FROM DR TECHNOLOGY

Codasip Donates Tools to Develop Memory-Safe Chips
The software development kit will simplify building and testing of CHERI-enabled RISC-V applications.
LATEST FROM DR GLOBAL

Iran's APT34 Abuses MS Exchange to Spy on Gulf Gov'ts
A MOIS-aligned threat group has been using Microsoft Exchange servers to exfiltrate sensitive data from Gulf-state government agencies.
WEBINARS
View More Dark Reading Webinars >>
WHITE PAPERS
View More White Papers >>
FEATURED REPORTS
View More Dark Reading Reports >>
Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
To opt-out of any future Dark Reading Daily Newsletter emails, please respond here.
Thoughts about this newsletter? Give us feedback.
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:
If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.
We take your privacy very seriously. Please review our Privacy Statement.
© 2024  |  Informa Tech  |  Privacy Statement  |  Terms & Conditions  |  Contact Us