4 Legal Surprises You May Encounter After a Cybersecurity Incident
Many organizations are not prepared to respond to all the constituencies that come knocking after a breach or ransomware incident.
A Preview of Windows 11’s Passkeys Support
The latest update to Windows 11 introduces support for passkeys, which provide phishing-resistant passwordless authentication.
https://www.darkreading.com/dr-tech/a-preview-of-windows-11-passkeys-support
CAPTCHAs Easy for Humans, Hard for Bots
Proton is aiming for the sweet spot between security, privacy, and accessibility with its CAPTCHA.
https://www.darkreading.com/dr-tech/captchas-easy-for-humans-hard-for-bots
Netscout Identified Nearly 7.9M DDOS Attacks in the First Half of 2023
Fortinet Announces Formation of Veterans Program Advisory Council to Narrow the Cybersecurity Skills Gap With Military Veteran Talent
Radiant Logic Announces Expanded Identity Analytics and Data Management Platform Capabilities
Researchers Release Details of New RCE Exploit Chain for SharePoint
One of the already-patched flaws enables elevation of privilege, while the other enables remote code execution.
China APT Cracks Cisco Firmware in Attacks Against the US and Japan
Sophisticated hackers are rewriting router firmware in real time and hiding their footprints, leaving defenders with hardly a fighting chance.
Microsoft Adds Passkeys to Windows 11
It's the latest step in the gradual shift away from traditional passwords.
https://www.darkreading.com/application-security/microsoft-adds-passkeys-to-windows-11
Threat Data Feeds and Threat Intelligence Are Not the Same Thing
It's important to know the difference between the two terms. Here's why.
Hackers Trick Outlook into Showing Fake AV Scans
Researchers spot attackers using an existing phishing obfuscation tactic in order to better ensure recipients fall for their scam.
Kenyan Financial Firm Fined for Mishandling Data
Kenyan data protection regulator issues monetary penalties to multiple firms for improper handling of personal data.
https://www.darkreading.com/dr-global/kenyan-financial-firm-fined-for-mishandling-data
How the Okta Cross-Tenant Impersonation Attacks Succeeded
Sophisticated attacks on MGM and Caesars underscore the reality that even robust identity and access management may not be enough to protect you.
Will Government Secure Open Source or Muck It Up?
The US government aims to support open source projects, while the European Union seeks to make open source projects liable for their software. Which approach will lead to more security?
https://www.darkreading.com/edge/will-government-secure-open-source-or-muck-it-up
Research From IANS and Artico Search Reveals Cybersecurity Budgets Increased Just 6% for 2022-2023 Cycle
Cyemptive Technologies Expands Operations in the Middle East and the Americas
Researchers Uncover RaaS Affiliate Distributing Multiple Ransomware Strains
Ransomware-as-a-service affiliate ShadowSyndicate is unusual for the size of its malicious infrastructure and the fact that it's distributing seven different ransomware strains.
Suspicious New Ransomware Group Claims Sony Hack
A deceitful threat actor claims its biggest haul yet. But what, if any, Sony data does it actually have?
https://www.darkreading.com/attacks-breaches/suspicious-new-ransomware-group-claims-sony-hack
Catalyte Leverages Google Career Certificates to Expand Cybersecurity Apprenticeship Opportunities
HD Moore's Discovery Journey
Metasploit creator's shift into enterprise asset discovery and passive scanning with startup runZero is a natural evolution of his exploratory cyber career.
https://www.darkreading.com/dr-tech/hd-moore-discovery-journey