Payments Giant Tipalti: No Ransomware Breach, No Threat to Roblox
BlackCat/ALPHV claims it has had access to the payments technology vendor's systems since September, and threatens follow-on attacks on its customer Roblox.
https://www.darkreading.com/application-security/payments-giant-tipalti-no-ransomware-breach-roblox
Q&A: Lessons Learned From the Middle East's National Cyber Drills
Suleyman Ozarslan, co-founder of Picus Security, discusses critical-infrastructure cyber drills in the region, who runs them, and what happens to the results.
https://www.darkreading.com/ics-ot-security/lessons-learned-middle-east-national-cyber-drills
Hackers Claim to Breach Israeli Defense Force Medical Data
The Malek Team, which previously hit a private college in Israel, claims responsibility for a hack of Israel's Ziv Medical Center.
https://www.darkreading.com/cyberattacks-data-breaches/israeli-defence-force-medical-data-hacked
WordPress Bug 'Patch' Installs Backdoor for Full Site Takeover
A faux security alert purports to provide a fix for an RCE flaw, but instead creates a user with admin privileges and spreads a backdoor to infected sites.
Embrace Generative AI for Security, but Heed Caution
AI could be a net positive for security, with a caveat: It could make security teams dangerously complacent.
Enhancing Incident Response Playbooks With Machine Learning
Cybersecurity analysts use playbooks as a guide to quickly investigate and respond to incidents, but regularly neglect to keep the process documents up to date.
Zatik Security Gains Momentum, Announces Co-Founder, CTO, Partner Network
Meta AI Models Cracked Open With Exposed API Tokens
Researchers at Lasso found 1,500+ tokens in total that gave them varying levels of access to LLM repositories at Google, Microsoft, VMware, and some 720 other organizations.
https://www.darkreading.com/vulnerabilities-threats/meta-ai-models-cracked-open-exposed-api-tokens
'AeroBlade' Group Hacks US Aerospace Company
Aeroblade flew under the radar, slicing through detection checks on a quest to steal sensitive commercial data.
23andMe: Data Breach Was a Credential-Stuffing Attack
The DNA testing company believes that the attack has now been contained and is notifying impacted individuals.
Pro-Iran Attackers Access Multiple Water Facility Controllers
Multiple agencies warn that attackers have been active since Nov. 22, targeting operational technology (OT) across the US.
Name That Edge Toon: On Your Mark...
Come up with a clever cybersecurity-related caption, and our panel of experts will reward the winner with a $25 Amazon gift card.
https://www.darkreading.com/cybersecurity-operations/name-that-edge-toon-on-your-mark-
Establishing New Rules for Cyber Warfare
Why we should applaud the Red Cross's efforts, even if they likely won't work.
https://www.darkreading.com/cyberattacks-data-breaches/establishing-new-rules-cyber-warfare
Interpol Arrests Smuggler With New Biometric Screening Database
Interpol has upgraded its biometric background check tech. It'll help catch criminals, but will it protect sensitive, immutable data belonging to the innocent?
https://www.darkreading.com/cyber-risk/interpol-arrests-smuggler-biometric-screening-database
The Latest Delinea Secret Server Release Boosts Usability With New Features
Cybersecurity is a Team Sport
Enterprise security goes beyond tech leadership, and beyond the CISO's office. Achieving cybersecurity and resilience is a team effort, and requires building a culture of security awareness.
https://www.darkreading.com/cybersecurity-operations/cybersecurity-team-sport
Flow Security Launches GenAI DLP
https://www.darkreading.com/cloud-security/flow-security-launches-genai-dlp
The European Space Agency Explores Cybersecurity for Space Industry
An ESA cybersecurity expert explains how space-based data and services benefit from public investment in space programs.
North Korea APT Slapped With Cyber Sanctions After Satellite Launch
Sanctions on Kimsuky/APT43 focuses the world on disrupting DPRK regime's sprawling cybercrime operations, expert says.
https://www.darkreading.com/vulnerabilities-threats/north-korea-apt-cyber-sanctions-satellite-launch
Critical 'LogoFAIL' Bugs Offer Secure Boot Bypass for Millions of PCs
Hundreds of consumer and enterprise-grade x86 and ARM devices from various vendors, including Intel, Acer, and Lenovo, are potentially vulnerable to bootkits and takeover.
https://www.darkreading.com/endpoint-security/critical-logofail-bugs-secure-boot-bypass-millions-pcs