Dark Reading

NSA Appoints Rob Joyce as Cyber Director

The NSA has confirmed longtime US cybersecurity official Rob Joyce as the new leader of its Cybersecurity Directorate. He most recently has been serving as the NSA's top representative in the UK, a position he has held since 2018.

'Chimera' Threat Group Abuses Microsoft & Google Cloud Services

Security researchers are watching a threat group that takes advantage of Microsoft and Google cloud services with the goal of exfiltrating data across a broad range of target organizations.

Understanding TCP/IP Stack Vulnerabilities in the IoT

Internet of Things devices are highly susceptible to attacks, breaches, and flaws emanating from issues within the TCP/IP network communications architecture. Here's an overview of what you need to know to mitigate risks.

SolarWinds Hack Lessons Learned: Finding the Next Supply Chain Attack

The SolarWinds supply chain compromise won't be the last of its kind. Vendors and enterprises alike must learn and refine their detection efforts to find the next such attack.

Netwrix and Stealthbits Merge to Tackle Data Security

Security companies Netwrix and Stealthbits today confirmed their merger. The new company will operate under the Netwrix name and sell seven core products focused on information security.

Mac Attackers Remain Focused Mainly on Adware, Fooling Users

In February 2020, Malwarebytes reported that its Mac users encountered about twice as many "threats" as Windows users. However, it mainly included potentially unwanted programs (PUPs) and adware.

Amazon Gift Card Scam Delivers Dridex This Holiday Season

The operators behind Dridex have a nefarious trick up their sleeves this holiday season. A widespread phishing scam promises victims a $100 Amazon gift card but instead delivers the prolific banking Trojan to target machines.

White Ops Announces Its Acquisition

White Ops Announces Its Acquisition A group including Goldman Sachs Merchant Banking Division, ClearSky Security, and NightDragon has purchased the human verification technology company.
December 23, 2020

SolarWinds Campaign Focuses Attention on 'Golden SAML' Attack Vector

According to Sygnia, the Golden SAML technique involves attackers first gaining administrative access to an organization's ADFS server and stealing the necessary private key and signing certificate.

Emotet Campaign Restarts After Seven-Week Hiatus

Multiple security researchers note the return of an email campaign attempting to spread the malware, which is often used to drop the Ryuk ransomware and Trickbot banking Trojan.

Defend Against Threats with Cyber Fusion

Cyware is the leading provider of cyber fusion solutions that power threat intelligence sharing , end-to-end automation and 360-degree threat response.

Trending Tags