| | | LATEST SECURITY NEWS & COMMENTARY | | Microsoft Warns of Uptick in MSHTML Attacks Attackers leveraging the flaw are using infrastructure associated with other criminal groups, including ransomware-as-a-service operators, the company says. IoT 'Nutrition' Labels Aim to Put Security on Display NIST has laid the groundwork for an easy-to-understand way to communicate to consumers the security of software and connected devices. Who Is BlackMatter? Researchers piece together the origins of the group that made headlines this week as the perpetrator behind a ransomware attack on New Cooperative. New Cooperative's Ransomware Attack Underscores Threat to Food & Agriculture The Iowa grain cooperative took its systems offline in response to a security incident earlier this week. Open Source Software Projects Up Their Security Game but Face More Attacks Patches for dependencies are trickling up through the open source ecosystem faster than ever — a good thing because attackers are focusing more on open source software. International Insider Threat: DoJ Fines US Intel Officials Who Aided UAE Three former US intelligence operatives have been fined $1,685,000 for aiding the United Arab Emirates in widespread hacking campaigns. Why Cryptomining Malware Is a Harbinger of Future Attacks Crypto thieves rely on users not noticing installation of their tiny payload on thousands of machines, or the CPU cycles being siphoned off to perpetuate the schemes. White House Cybersecurity Summit: A Missed Opportunity Last month's summit with the president was missing something crucial: representation from those who deal with critical infrastructure. Under Pressure: COVID-19 Forced Many Execs to Sideline Cybersecurity CISOs are more stressed, and the fallout is increased cyber-risk. Also, budget restrictions lead to a yawning chasm between need and funding. Midmarket Security: Think You’re Safe? Think Again Gone is the false perception that large enterprises, banks, and financial institutions are the only organizations under attack. CISA, FBI, NSA Warn of Increase in Conti Ransomware Attacks A new alert provides the technical details of ongoing attacks and guidance for organizations to secure systems against Conti. Mirai Botnet Exploiting OMIGOD Azure Vulnerability Microsoft patched four Open Management Infrastructure flaws earlier this week. FBI, CISA, CGCYBER Warn of APTs Targeting CVE-2021-40539 The critical authentication bypass vulnerability exists in Zoho ManageEngine ADSelfService Plus, officials report. MORE NEWS / MORE COMMENTARY | | | | |
|
Dark Reading Weekly
-- Published By Dark Reading
Informa Tech
303 Second St., Suite 900 South Tower, San Francisco, CA 94107 | | To update your profile, change your e-mail address, or unsubscribe, click here. | | To opt-out of any future Dark Reading Weekly Newsletter emails, please respond here. | | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | | We take your privacy very seriously. Please review our Privacy Statement. |
|
| |
