A newly patched flaw in Windows Defender allows attackers to hijack the signature-update process to sneak in malware, delete benign files, and inflict mayhem on target systems.
| | | LATEST SECURITY NEWS & COMMENTARY | | Windows Defender-Pretender Attack Dismantles Flagship Microsoft EDR A newly patched flaw in Windows Defender allows attackers to hijack the signature-update process to sneak in malware, delete benign files, and inflict mayhem on target systems. Black Hat Opens With Call to Steer AI From Predictions to Policy Without cybersecurity guardrails now, AI will be harder to harness in the future. 'Downfall' Bug in Billions of Intel CPUs Reveals Major Design Flaw A newly revealed flaw affects a good chunk of the world's computers. A patch has been released, but broad, structural change in CPU design will be required to address the root cause. DAY 2! Dark Reading News Desk: Live at Black Hat USA 2023 Dark Reading News Desk returns for a second day of interviews from Black Hat USA 2023. The livestream will start at 10 a.m. PT. Private Key Leaks Allow Attackers to Empty Crypto Investors' Wallets Digital signature schemes designed to protect crypto investors are vulnerable to leakage. It's Time for Cybersecurity to Talk About Climate Change From e-waste to conference swag to addressing data center energy consumption, cybersecurity stakeholders need a whole-industry approach to being part of the solution and reducing the risk of climate change. C-Suite Cybersecurity Sign-off Hinges on Customer Trust, Digital Opps Omdia's Maxine Holt says cybersecurity practitioners need to emphasize their role in growing the business, not just preventing breaches. OWASP Lead Flags Gaping Hole in Software Supply Chain Security SBOMs aren't enough: Developers need to dig deeper into how software is built by using a process called binary source validation. RedHotel Checks in as Dominant China-Backed Cyberspy Group The APT has been rampaging across three continents on behalf of China's Ministry of State Security, and now claims the throne as kings of intelligence gathering and economic espionage. New LLM Tool Seeks and Remediates Vulnerabilities Vicarius launched vuln_GPT, which it says will generate and execute scripts to ameliorate flaws such as the TETRA backdoor. Why Shellshock Remains a Cybersecurity Threat After 9 Years Nearly a decade after it was disclosed, the Shellshock vulnerability still plagues organizations. Learn how to protect yourself. Top 3 Insights I Learned at Recent Cybersecurity Events Events like RSA Conference and Infosecurity Europe provide industry collaboration opportunities required to address the evolving cybersecurity threat landscape. (Sponsored Article) How to Prepare for ChatGPT's Risk Management Challenges ChatGPT promises to transform all sorts of corporate business functions, but your business needs to be prepared to address the new risks that come with it. MORE NEWS / MORE COMMENTARY | | |
|
Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
| | To opt-out of any future Dark Reading Daily Newsletter emails, please respond here. | | Thoughts about this newsletter? Give us feedback. |
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: | | If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. | | We take your privacy very seriously. Please review our Privacy Statement. |
|
| |
