Malware 'Meal Kits' Serve Up No-Fuss RAT Attacks
The wider availability of turnkey cyberattack kits in the criminal underground is leading to a glut of campaigns using remote access Trojans (RATs).
https://www.darkreading.com/endpoint/malware-meal-kits-serve-up-no-fuss-rat-attacks
US Leads 40-Country Alliance to Cut Off Ransomware Payments
The parties within the International Counter Ransomware Initiative intend to use information-sharing tools and AI to achieve their goals of cutting off the financial resources of threat actors.
https://www.darkreading.com/endpoint/us-leads-alliance-cut-off-ransomware-attack-payments
'Prolific Puma' Hacker Gives Cybercriminals Access to .us Domains
Cybercriminals are upping their phishing with shortened links and showing that coveted, regulated top-level domains aren't as exclusive as you'd think.
Arid Viper Camouflages Malware in Knockoff Dating App
The APT group uses updates from the app to get the user to download the malware.
https://www.darkreading.com/dr-global/arid-viper-camouflages-malware-in-knockoff-dating-app
Survey: AppSec Maturity Hindered by Staffing, Budgets, Vulnerabilities
Report highlights the challenges impeding the applications industry from achieving AppSec maturity.
'Elektra-Leak' Attackers Harvest AWS Cloud Keys in GitHub Campaign
Cyber adversaries are scanning public GitHub repositories in real-time, evading Amazon quarantine controls, and harvesting AWS keys.
https://www.darkreading.com/cloud/elektra-leak-attackers-harvest-aws-cloud-keys-github-campaign
New Index Finds AI Models Are Murky, Not Transparent At All
Despite the growing demand for AI transparency, 10 of the better-known models did not score very highly on Stanford's new Foundation Model Transparency Index.
https://www.darkreading.com/tech-trends/new-index-finds-ai-models-are-murky-not-transparent-at-all
20 Years Later, Is Patch Tuesday Enough?
Microsoft's longstanding practice isn't enough to handle its vulnerability problem.
https://www.darkreading.com/vulnerabilities-threats/20-years-later-is-patch-tuesday-enough
Google Dynamic Search Ads Abused to Unleash Malware 'Deluge'
An advanced feature of Google targeted ads can allow a rarely precedented flood of malware infections, rendering machines completely useless.
https://www.darkreading.com/endpoint/google-dynamic-search-ads-malware-deluge
Budget Cuts at CISA Could Affect Enterprise Cybersecurity
Politicians are suggesting massive cuts to CISA's budget, threatening its missions to secure federal networks and help critical infrastructure operators fend off cyberattacks.
https://www.darkreading.com/edge/budget-cuts-at-cisa-could-affect-enterprise-cybersecurity
Biden's Artificial Intelligence Executive Order Covers Broad Concerns
The executive order is ambitious and seeks to protect a variety of different groups who are most at risk from the irresponsible use of AI.
https://www.darkreading.com/endpoint/biden-artificial-intelligence-executive-order-broad-concerns
Budget Cuts at CISA Could Affect Enterprise Cybersecurity
Politicians are suggesting massive cuts to CISA's budget, threatening its missions to secure federal networks and help critical infrastructure operators fend off cyberattacks.
Boeing Breached by Ransomware, LockBit Gang Claims
LockBit gives Boeing a Nov. 2 deadline to pay the ransom, or have its sensitive documents leaked to the public, but it hasn't given evidence of the compromise.
https://www.darkreading.com/endpoint/boeing-breached-ransomware-lockbit-gang-claims
UAE Cyber Council Warns of Google Chrome Vulnerability
The country has issued a recommendation to update after a high-risk vulnerability was disclosed last week in the browser.
https://www.darkreading.com/dr-global/uae-cyber-council-warns-google-chrome-vulnerability
UAE Bolsters Cyber Future With US Treasury Partnership, Collaborations
A determination to be taken seriously as a cyber player sees the United Arab Emirates announce a series of collaborations.
https://www.darkreading.com/dr-global/uae-cyber-future-us-treasury-partnership-collaborations
What the Boardroom Is Missing: CISOs
From communicating why security should be a priority to advocating for accountability and greater focus on protecting data in the cloud, CISOs can make the case for keeping people and sensitive data s...
https://www.darkreading.com/operations/what-the-boardroom-is-missing-cisos
What the Bionic Acquisition Can Bring to CrowdStrike
CrowdStrike is moving deeper into application security with its agreement to acquire Bionic, provider of ASPM technology that proactively scans software in production for vulnerabilities.
https://www.darkreading.com/dr-tech/what-bionic-acquisition-can-bring-crowdstrike
Getting Smart With Cybersecurity: AI Can Help the Good Guys, Too
With the rapid advancement and adoption of artificial intelligence (AI) in cybersecurity, the benefits of speed and accuracy are becoming clearer every day.
CISO Skills in a Changing Security Market: Are You Prepared?
The CISO role has evolved from a strictly technical position to one that increasingly requires business acumen. Here are some things you need to know.
Securing Modern Enterprises in a Borderless Landscape
CISOs offer recommendations to help secure identities, data, code, and cloud infrastructure and protect against evolving threats and vulnerabilities.