Dark Reading: Cybersecurity News and Commentary

Critical OAS bugs open industrial systems to takeover.

Views expressed in this cybersecurity-cyber crime update are those of the reporters and correspondents.

Accessed on 29 May 2022, 1452 UTC.

Content supplied by "DarkReading.com."

Source:  https://www.darkreading.com/

Please click link or scroll down to read your selections.

Thanks for joining us today.

Russ Roberts

https://www.hawaiicybersecurityjournal.net

https://paper.li/RussellRoberts (machine learning, artificial intelligence, IoT, and information security)

Latest News

Critical OAS Bugs Open Industrial Systems to Takeover

The most serious flaw gives attackers a way to remotely execute code on systems that many organizations use to move data in critical ICS environments, security vendor says.

Jai-Vijayan.jpeg

by Jai Vijayan, Contributing Writer, Dark Reading

May 28, 2022

APPLICATION SECURITY
4 MIN READ
Article Icon
ARTICLE
Space Force Expands Cyber Defense Operations

Space Force's Delta 6 cyber-defense group adds squadrons, updates legacy Satellite Control Network.

dr_staff_125x125.jpg

by Dark Reading Staff, Dark Reading

May 27, 2022

VULNERABILITIES/THREATS
2 MIN READ
Article Icon
ARTICLE
Scammer Behind $568M International Cybercrime Syndicate Gets 4 Years

The 14th defendant behind The Infraud Organization contraband marketplace has been sentenced, this time for one count of racketeering.

dr_staff_125x125.jpg

by Dark Reading Staff, Dark Reading

May 27, 2022

ATTACKS/BREACHES
1 MIN READ
Article Icon
ARTICLE
New Chaos Malware Variant Ditches Wiper for Encryption

The Chaos ransomware-builder was known for creating destructor malware that overwrote files and made them unrecoverable -- but the new Yashma version finally generates binaries that can encrypt files of all sizes.

Tara-Seals-Headshot2.jpg

by Tara Seals, Managing Editor, News, Dark Reading

May 27, 2022

THREAT INTELLIGENCE
7 MIN READ
Article Icon
ARTICLE
ChromeLoader Malware Hijacks Browsers With ISO Files

The malware’s abuse of PowerShell makes it more dangerous, allowing for more advanced attacks such as ransomware, fileless malware, and malicious code memory injections.

NathanEddyHeadshot.PNG

by Nathan Eddy, Contributing Writer, Dark Reading

May 27, 2022

APPLICATION SECURITY
4 MIN READ
Article Icon
ARTICLE
Microsoft Unveils Dev Box, a Workstation-as-a-Service

Microsoft Dev Box will make it easier for developers and hybrid teams to get up and running with workstations already preconfigured with required applications and tools.

dr_staff_125x125.jpg

by Dark Reading Staff, Dark Reading

May 26, 2022

DR TECH
2 MIN READ
Article Icon
ARTICLE
Broadcom Snaps Up VMware in $61B Deal

Massive merger will put Broadcom's Symantec and VMware's Carbon Black under one roof.

dr_staff_125x125.jpg

by Dark Reading Staff, Dark Reading

May 26, 2022

CLOUD
1 MIN READ
Article Icon
ARTICLE
Lacework Announces Layoffs, Restructuring

The cloud-security company blames "seismic" market shifts for shakeup.

dr_staff_125x125.jpg

by Dark Reading Staff, Dark Reading

May 26, 2022

CLOUD
1 MIN READ
Article Icon
ARTICLE
MORE NEWS

Latest Commentary

Physical Security Teams' Impact Is Far-Reaching

Here's how physical security teams can integrate with the business to identify better solutions to security problems.

Tom Kopecky photo

by Tom Kopecky, Chief Strategy Officer and Co-Founder, Ontic

May 27, 2022

The FDA's New Cybersecurity Guidance for Medical Devices Reminds Us That Safety & Security Go Hand in Hand

The new draft guidance on premarket submissions incorporates quality system regulations and doubles down on a life-cycle approach to product security.

Roman Kesler

by Roman Kesler, VP of Research, Cybellum

May 26, 2022

Act Now: Leveraging PCI Compliance to Improve Security

Let the threat landscape guide your company's timeline for complying with new data security standards for credit cards. Use the phase-in time to improve security overall — security as a process — not just comply with new standards.

Tim Erlin

by Tim Erlin, VP of Strategy, Tripwire

May 26, 2022

Spring Cleaning Checklist for Keeping Your Devices Safe at Work

Implement zero-trust policies for greater control, use BYOD management tools, and take proactive steps such as keeping apps current and training staff to keep sensitive company data safe and employees' devices secure.

Alex Lisle

by Alex Lisle, Chief Technology Officer, Kryptowire

May 25, 2022

Industry 4.0 Points Up Need for Improved Security for Manufacturers

With manufacturing ranking as the fourth most targeted sector, manufacturers that understand their exposure will be able to build the necessary security maturity.

Photo of Jordan Kendall

by Jordan Kendall, President, Security Compass Advisory

May 25, 2022

MORE COMMENTARY

Comments

Post a Comment

Please leave a comment about our recent post.

Popular posts from this blog

SecurityWeek Briefing.

Image
"Microsoft offers up to $15,000 in New AI Bug Bounty Program." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 13 October 2023, 2020 UTC.  Content provided by email subscription to "SecurityWeek Briefing." Source:  https://mail.google.com/mail/u/0/#inbox/FMfcgzGtxdZHmrfcBkMDJSSNTtHlmhQX ("SecurityWeek Briefing"). Please click link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). SecurityWeek News Briefing | Friday, October 13, 2023 CISA Now Flagging Vulnerabilities, Misconfigurations Exploited by Ransomware Juniper Networks Patches Over 30 Vulnerabilities in Junos OS In Other News : Ex-Uber Security Chief Appeal, New Offerings From Tech Giants, Crypto Bounty Dozens of Squid Proxy Vulnerabilities Remain Unpatched 2 Years After Disclosure Microsoft Offers Up to $15,000 in New AI Bug Bounty Program Researcher Co
Read more

SecurityWeek Briefing.

Image
"Health Care Solutions giant disrupted by Cyberattack." Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 19 October 2023, 2033 UTC.  Content provided by email subscription to "SecurityWeek Briefing." Source:  https://mail.google.com/mail/u/0/?tab=rm&ogbl#inbox/FMfcgzGwHLhdlHbpbQJXqhLLSvQbhdnC ("SecurityWeek Briefing"). Please click link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). SecurityWeek News Briefing | Thursday, October 19, 2023 Healthcare Solutions Giant Disrupted by Cyberattack Thousands of Remote IT Workers Sent Wages to North Korea to Help Fund Weapons Program CipherStash Raises $3 Million for Encryption-in-Use Technology US Government Releases Anti-Phishing Guidance Google Play Protect Gets Real-Time Code Scanning Number of Cisco Devices Hacked via Unpatched Vulnerability Increases to 40,00
Read more

Cyber War News Wire.

Image
 "Navy establishes cyber warfare enlisted rating." Views expressed in this cyber war, cybersecurity, cyber espionage update are those of the reporters and correspondents.  Accessed on 02 July 2023, 2311 UTC.  Content provided by EIN Presswire. Source:  https://mail.google.com/mail/u/0/#inbox/FMfcgzGtvsTbTPlbNrgzDpppFbtXwWxF ("Cyber War News Wire" from EIN Presswire). Please click link or scroll down to read your selections.  Thanks for joining us today. Russ Roberts (https://www.hawaiicybersecurityjournal.net). ·  Subscribe  ·  Unsubscribe My Alerts       Cyber War Newswire Got News to Share? Send 2 FREE Releases ↓ Daily update  ·  July 2, 2023     NEWS     Navy Establishes Cyber Warfare Enlisted Rating  Seapower Magazine ***** ARLINGTON, Va. — The U.S. Navy’s effort to expand its cyber warfare capabilities took another step with the establishment of the Cyber Warfare Technician (CWT) rating in its enlisted force.  The CTWs will conduct both offensive and defensive
Read more