Dark Reading

New Techniques Emerge for Abusing Windows Services to Gain System Control

Several new techniques have become available recently that give attackers an easy way to abuse legitimate Windows services and escalate low-level privileges on a system to gain full control of it.

Newer Generic Top-Level Domains a Security 'Nuisance'

A study into the use and popularity of the Internet's TLDs over a 10-year period shows that many newer TLDs may present more of a security nuisance for organizations than anything else.

Researchers Find Bugs Using Single-Codebase Inconsistencies

A Northeastern University research team finds code defects -- and some vulnerabilities -- by detecting when programmers used different code snippets to perform the same functions.

KnowBe4 Issues IPO to Drive Global Expansion, New Automation Features

Security awareness company KnowBe4 successfully debuted on the NASDAQ, with its initial public offering bringing in more than $150 million to fund the company's international expansion and a focus on new automation and machine learning features.

CISA Warns of ICS Vulnerabilities in Horner Automation Cscape and Mitsubishi Electric GOT

The DHS's Cybersecurity and Infrastructure Security Agency (CISA) today issued ICS advisories for vulnerabilities in the Horner Automation Cscape software and the Mitsubishi Electric GOT.

Foreign Spies Target British Nationals With Fake Social Media Profiles

At least 10,000 UK nationals have been approached by malicious individuals using fraudulent profiles on the professional networking site, the BBC reports, citing security agency MI5.

Attackers Test Weak Passwords in Purple Fox Malware Attacks

Weak passwords used over the Windows Server Message Block (SMB) protocol are often part of attacks that result in the spread of Purple Fox malware, Specops researchers report.

High-Level Admin of FIN7 Cybercrime Group Sentenced to 10 Years in Prison

A high-level manager of cybercrime group FIN7, also known as the Carbanak Group and the Navigator Group, has been sentenced to ten years in prison, the Department of Justice reports.

Google Brings 37 Security Fixes to Chrome 90

Google this week released Chrome 90 to the stable channel for Windows, Mac, and Linux. The update brings 37 security fixes, HTTPS by default, and other updates to the browser.

CISA Urges Caution for Security Researchers Targeted in Attack Campaign

The Cybersecurity and Infrastructure Security Agency (CISA) is cautioning cybersecurity researchers to keep their guard up amid a wave of attacks targeting this particular group.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags