Japan's Space Program at Risk After Microsoft Active Directory Breach
The agency, known as JAXA, has shut down parts of its network as it conducts an investigation to discover the scope and impact of the breach.
Emirates CISOs Flag Rampant Cybersecurity Gaps
UAE security leaders warn that people, tech, and process gaps are exposing their organizations to cybercrime.
https://www.darkreading.com/cybersecurity-operations/emirates-cisos-rampant-cybersecurity-gaps
Saudi Companies Outsource Cybersecurity Amid 'Serious' Incidents
Saudi companies are seeking extra help in droves, because of a lack of tools and personnel.
The US Needs To Follow Germany's Attack-Detection Mandate
A more proactive approach to fighting cyberattacks for US companies and agencies is shaping up under the CISA's proposal to emphasize real-time attack detection and response.
Researchers Uncover Simple Technique to Extract ChatGPT Training Data
Apparently all it takes to get a chatbot to start spilling its secrets is prompting it to repeat certain words like "poem" forever.
https://www.darkreading.com/cyber-risk/researchers-simple-technique-extract-chatgpt-training-data
Okta Breach Widens to Affect 100% of Customer Base
Early disclosures related to September compromise insisted less than 1% of Okta customers were impacted; now, the company says it was all of them.
https://www.darkreading.com/application-security/otka-breach-widens-entire-customer-base
Law Firms and Legal Departments Get Singled Out For Cyberattacks
Cybercriminals use legal search terms to ensnare unwitting victims, then launch ransomware or business email compromise attacks.
A New, Spookier Gh0st RAT Malware Haunts Global Cyber Targets
A decade and a half after Gh0st RAT first appeared, the "SugarGh0st RAT" variant aims to make life sweeter for cybercriminals.
https://www.darkreading.com/threat-intelligence/new-spookier-gh0st-rat-uzbekistan-south-korea
Siemens PLCs Still Vulnerable to Stuxnet-like Cyberattacks
Security updates are tedious and difficult, so users continue to use a weak version of a core protocol and remain exposed to major attacks on critical infrastructure.
https://www.darkreading.com/ics-ot-security/siemens-plcs-still-vulnerable-stuxnet-like-cyberattacks
Feds Seize 'Sinbad' Crypto Mixer Used by North Korea's Lazarus
The prolific threat actor has laundered hundreds of millions of dollars in stolen virtual currency through the service.
Deluge of Nearly 300 Fake Apps Floods Iranian Banking Sector
No Iranian bank customers are safe from financially motivated cybercriminals wielding convincing but fake mobile apps.
8 Tips on Leveraging AI Tools Without Compromising Security
AI tools can deliver quick and easy results and offer huge business benefits — but they also bring hidden risks.
Wiz-Securonix Partnership Promises Unified Threat Detection
The collaboration focuses on helping security teams detect and address cloud threats more effectively.
Rundown of Security News from AWS re:Invent 2023
Amazon Web Services announced enhancements to several of its security tools, including GuardDuty, Inspector, Detective, IAM Access Analyzer, and Secrets Manager, to name a few during its re:Invent eve...
https://www.darkreading.com/cloud-security/rundown-of-security-news-from-aws-re-invent-2023
10 Holiday Gifts For Stressed-Out Security Pros
Office giving-friendly fidgets, stress balls, brain teasers, and more that are perfect to calm the most harried cybersecurity professionals.
https://www.darkreading.com/endpoint-security/10-holiday-gifts-for-stressed-out-security-pros
Ex-Cybersecurity Adviser to Bush, Obama Weighs in On Current Admin
Melissa Hathaway, a former White House cybersecurity adviser, says Biden is pushing through more regulatory reforms than previous administrations.
XM Cyber Launches Kubernetes Exposure Management to Intelligently Protect Critical Container Environments
Code Scanner by Piiano Helps Enterprises Prevent Data Leaks Proactively
1Kosmos Unifies Identity Verification User Journeys Across Web and Mobile Platforms