Safeguarding Our Children's Digital Future: A Call to Action
Frequent cyberattacks on America's schools are putting our children at risk. Urgent action is needed to protect students and families.
https://www.darkreading.com/cyberattacks-data-breaches/safeguarding-our-childrens-digital-future
Zoom's Bug-Scoring System Prioritizes Riskiest Vulns for Cyber Teams
New vulnerability impact scoring system aims to help cyber defenders find threats and patch against bugs most likely to disrupt their environments.
Tips for Modernizing SecOps Teams
Dark Reading's special report looks at ways security operations teams can improve their efficiency and effectiveness to address the latest threats.
https://www.darkreading.com/cybersecurity-operations/tips-for-modernizing-secops
Global TeamCity Exploitation Opens Door to SolarWinds-Style Nightmare
Russia's APT29 is going after a critical RCE flaw in the JetBrains TeamCity software developer platform, prompting governments worldwide to issue an urgent warning to patch.
Confidential AI Protects Data and Models Across Clouds
Confidential AI integrates zero trust and confidential computing to guard data and models during inferencing, training, learning, and fine-tuning.
https://www.darkreading.com/cloud-security/confidential-ai-protect-data-models-across-cloud
MITRE Debuts ICS Threat Modeling for Embedded Systems
EMB3D, like ATT&CK and CWE, seeks to provide a common understanding of cyber-threats to embedded devices and of the security mechanisms for addressing them.
https://www.darkreading.com/ics-ot-security/mitre-debuts-ics-cyber-threat-modeling-embedded-systems
Attackers Target Microsoft Accounts to Weaponize OAuth Apps
After compromising Azure and Outlook user accounts, threat actors are creating malicious apps with high privileges to conduct cryptomining, phishing, and password spraying.
https://www.darkreading.com/cloud-security/attackers-target-microsoft-accounts-weaponize-oauth-apps
Saudi Cyber Students Team with Bahrain to Assess AI Security & Risk
A visit to the "Island of Pearls" is part of ongoing regional efforts to enhance cooperation and exchange knowledge between universities in the cyber and technology sectors.
https://www.darkreading.com/cloud-security/saudi-cyber-students-team-bahrain-assess-ai-risk
Hacktivists Interrupt UAE TV Streams With a Message About Gaza
The root cause may lie in set-top boxes run by a questionable service provider.
Software & Security: How to Move Supply Chain Security Up the Agenda
Getting more insight helps you to prioritize across all your systems, letting you drive more collaboration, real change, and real success for your teams.
Ransomware Gangs Use PR Charm Offensive to Pressure Victims
Threat actors are fully embracing the spin machine: rebranding, speaking with the media, writing detailed FAQs, and more, all in an effort to make headlines.
https://www.darkreading.com/threat-intelligence/ransomware-gangs-pr-charm-offensive-pressure-victims
Survey: 90% of IT Pros Felt Prepared for a Password-Based Cyberattack, Yet More Than Half Fell Victim to One
Axiad's State of Authentication Survey also found nearly half of respondents think phishing is the most likely cyberattack, yet only 27% plan to use phishing-resistant MFA next year.
Stamus Networks Supports NATO Red Teaming Cyber Exercise for the Fifth Consecutive Year
Twelfth annual Crossed Swords will see Stamus Networks share expertise and technology to develop and test the capabilities and practical skills of participants
Microsoft Gives Admins a Reprieve With Lighter-Than-Usual Patch Update
The company's final patch release for 2023 contained fixes for a total of just 36 vulnerabilities — none of which, for a change, were zero-days.
Kyivstar Mobile Attack Plunges Millions in Ukraine Into Comms Blackout
The destructive attack, likely carried out by Russian actors, is the biggest hit on the country's basic infrastructure since the beginning of the war.
https://www.darkreading.com/ics-ot-security/kyivstar-mobile-attack-ukraine-comms-blackout
Dozens of Bugs Patched in Apple TVs and Watches, Macs, iPads, iPhones
A laundry list of tweaks to Safari, Bluetooth, Accessibility, and much more.
https://www.darkreading.com/endpoint-security/dozens-bugs-patched-apple-tv-watch-mac-iphone
BlackBerry Appoints John Giamatteo as CEO
Company to pursue full separation of IoT and cybersecurity business units.
https://www.darkreading.com/endpoint-security/blackberry-appoints-john-giamatteo-as-ceo
BT and Netskope Partner to Provide Secure Managed Services
https://www.darkreading.com/endpoint-security/bt-netskope-partner-provide-secure-managed-services
Debate Roils Over Extent of Nation-State Cyber Involvement in Gaza
Are hacktivists under the control of nation-states, or are they just independent contractors acting on their behalf?
Biden's AI Exec Order Is a Start, but We Must Safeguard Innovation
It's important for Congress to strengthen protections for AI and set guardrails to make sure it isn't used maliciously.