Darkreading.com: Latest Cybersecurity News

Cookies for MFA bypass gain traction among cyber attackers.

Views expressed in this cybersecurity, cybercrime update are those of the reporters and correspondents.  Accessed on 14 November 2022, 0032 UTC.  Content provided by "Darkreading.com."

Source:  https://www.darkreading.com/latest/news

Please click link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net and https://paper.li/RussellRoberts).

NEWS

Cookies for MFA Bypass Gain Traction Among Cyberattackers

Multifactor authentication has gained adoption among organizations as a way of improving security over passwords alone, but increasing theft of browser cookies undermines that security.

by Robert Lemos, Contributing Writer, Dark Reading

November 11, 2022

THREAT INTELLIGENCE

4 MIN READ

ARTICLE

Knock, Knock: Aiphone Bug Allows Cyberattackers to Literally Open (Physical) Doors

The bug affects several Aiphone GT models using NFC technology and allows malicious actors to potentially gain access to sensitive facilities.

by Nathan Eddy, Contributing Writer, Dark Reading

November 11, 2022

IOT

5 MIN READ

ARTICLE

Uyghurs Targeted With Spyware, Courtesy of PRC

Chinese government employs spyware to detect so-called "pre-crimes" including using a VPN, religious apps, or WhatsApp, new analysis reveals.

by Becky Bracken, Editor, Dark Reading

November 11, 2022

THREAT INTELLIGENCE

2 MIN READ

ARTICLE

Twitter's CISO Takes Off, Leaving Security an Open Question

Lea Kissner was one of three senior executives to quit this week, leaving many to wonder if the social media giant is ripe for a breach and FTC action.

by Jai Vijayan, Contributing Writer, Dark Reading

November 10, 2022

RISK

5 MIN READ

ARTICLE

Evasive KmsdBot Cryptominer/DDoS Bot Targets Gaming, Enterprises

KmsdBot takes advantage of SSH connections with weak login credentials to mine currency and deplete network resources, as it gains a foothold on enterprise systems.

by Elizabeth Montalbano, Contributor, Dark Reading

November 10, 2022

THREAT INTELLIGENCE

3 MIN READ

ARTICLE

Amazon, Microsoft Cloud Leaks Highlight Lingering Misconfiguration Issues

Cloud storage databases, often deployed as "rogue servers" without the blessing of the IT department, continue to put companies and their sensitive data at risk.

by Robert Lemos, Contributing Writer, Dark Reading

November 10, 2022

CLOUD

4 MIN READ

ARTICLE

Patch ASAP: Critical Citrix, VMware Bugs Threaten Remote Workspaces With Takeover

Hole-y software alert, Batman: Cybercriminal faves Citrix Gateway and VMware Workspace ONE have authentication-bypass bugs that could offer up total access to attackers.

by Tara Seals, Managing Editor, News, Dark Reading

November 09, 2022

VULNERABILITIES/THREATS

3 MIN READ

ARTICLE

InterPlanetary File System Increasingly Weaponized for Phishing, Malware Delivery

Cyberattackers like IPFS because it is resilient to content blocking and takedown efforts.

by Jai Vijayan, Contributing Writer, Dark Reading

November 09, 2022

VULNERABILITIES/THREATS

4 MIN READ

ARTICLE

Cloud9 Malware Offers a Paradise of Cyberattack Methods

The Swiss Army knife-like browser extension is heaven for attackers — and can be hell for enterprise users.

by Elizabeth Montalbano, Contributor, Dark Reading

November 09, 2022

THREAT INTELLIGENCE

5 MIN READ

ARTICLE

Microsoft Quashes Bevy of Actively Exploited Zero-Days for November Patch Tuesday

Long-awaited security fixes for ProxyNotShell and Mark of the Web bypasses are part of a glut of actively exploited zero-day vulnerabilities and other critical flaws that admins need to prioritize in the coming hours.

by Tara Seals, Managing Editor, News, Dark Reading

November 08, 2022

THREAT INTELLIGENCE

5 MIN READ

ARTICLE

Retail Sector Prepares for Annual Holiday Cybercrime Onslaught

Retailers and hospitality companies expect to battle credential harvesting, phishing, bots, and various malware variants.

by Elizabeth Montalbano, Contributor, Dark Reading

November 08, 2022

RISK

5 MIN READ

ARTICLE

SolarWinds Faces Potential SEC Enforcement Act Over Orion Breach

In the nearly two years since the company discovered the cyber intrusion, SolarWinds has fundamentally rearchitected its development environment to make it much harder to compromise, CISO Tim Brown tells Dark Reading.

by Jai Vijayan, Contributing Writer, Dark Reading

November 07, 2022

APPLICATION SECURITY

4 MIN READ

ARTICLE

Unencrypted Traffic Still Undermining Wi-Fi Security

An analysis by RSA Conference's security operations center found 20% of data over its network was unencrypted and more than 55,000 passwords were sent in the clear.

by Robert Lemos, Contributing Writer, Dark Reading

November 07, 2022

REMOTE WORKFORCE

4 MIN READ

ARTICLE

Microsoft Warns on Zero-Day Spike as Nation-State Groups Shift Tactics

The software giant also recorded an increase in attacks on IT services companies as state-backed threat actors have adapted to better enterprise defenses and cast a wider net, Microsoft says.

by Jai Vijayan, Contributing Writer, Dark Reading

November 04, 2022

ATTACKS/BREACHES

4 MIN READ

ARTICLE

RomCom Malware Woos Victims With 'Wrapped' SolarWinds, KeePass Software

An analysis of the RomCom APT shows the group is expanding its efforts beyond the Ukrainian military into the UK and other English-speaking countries.

by Becky Bracken, Editor, Dark Reading

November 04, 2022

THREAT INTELLIGENCE

3 MIN READ

ARTICLE

Cyberattackers Focus In on State-of-the-Art ALMA Observatory

Operations at the world's most expensive ground-based telescope, high in the Atacama Desert, remain disrupted.

by Tara Seals, Managing Editor, News, Dark Reading

November 04, 2022

ATTACKS/BREACHES

2 MIN READ

ARTICLE

W4SP Stealer Stings Python Developers in Supply Chain Attack

Threat actors continue to push malicious Python packages to the popular PyPI service, striking with typosquatting, authentic sounding file names, and hidden imports to fool developers and steal their information.

by Robert Lemos, Contributing Writer, Dark Reading

November 04, 2022

THREAT INTELLIGENCE

3 MIN READ

ARTICLE

Oreo Giant Mondelez Settles NotPetya 'Act of War' Insurance Suit

The settlement muddies the waters even further for the viability of war exclusion clauses when it comes to cyber insurance.

by Tara Seals, Managing Editor, News, Dark Reading

November 03, 2022

ATTACKS/BREACHES

7 MIN READ

ARTICLE

FIN7 Cybercrime Group Likely Behind Black Basta Ransomware Campaign

Several artifacts from recent attacks strongly suggest a connection between the two operations, researchers say.

by Jai Vijayan, Contributing Writer, Dark Reading

November 03, 2022

ATTACKS/BREACHES

4 MIN READ

ARTICLE

Supply Chain Attack Pushes Out Malware to More than 250 Media Websites

TA569 has modified the JavaScript of a legitimate content and advertising engine used by news affiliates, in order to spread the FakeUpdates initial access framework.

by Elizabeth Montalbano, Contributor, Dark Reading

November 03, 2022

APPLICATION SECURITY

4 MIN READ

ARTICLE

Cyber-Threat Actor Uses Booby-Trapped VPN App to Deploy Android Spyware

"SandStrike," the latest example of espionage-aimed Android malware, relies on elaborate social media efforts and back-end infrastructure.

by Jai Vijayan, Contributing Writer, Dark Reading

November 02, 2022

MOBILE

4 MIN READ

ARTICLE

Dropbox Code Repositories Stolen in Cyberattack on GitHub-Based Developers

An attack campaign using phishing attacks gives threat actors access to internal Dropbox code repositories, the latest in a series of attacks targeting developers through their GitHub accounts.

by Robert Lemos, Contributing Writer, Dark Reading

November 02, 2022

ATTACKS/BREACHES

4 MIN READ

ARTICLE

Vitali Kremez Found Dead After Apparent Scuba Diving Accident

The renowned security researcher, ethical hacker, and cybersecurity phenom was found Wednesday by the US Coast Guard.

by Tara Seals, Managing Editor, News, Dark Reading

November 02, 2022

CAREERS & PEOPLE

2 MIN READ

ARTICLE

Musk's Twitter-Verification Payment Tease Spurs Cyberattackers

A proposed plan to charge users for the platform's coveted blue check mark has, unsurprisingly, inspired attackers to try to dupe people into giving up their credentials.

by Elizabeth Montalbano, Contributor, Dark Reading

November 02, 2022

CLOUD

5 MIN READ

ARTICLE

Critical Vulnerability in Microsoft Azure Cosmos DB Opens Up Jupyter Notebooks

The now-patched RCE flaw in Cosmos DB's Jupyter Notebook feature highlights some of the weaknesses that can arise from emerging tech in the cloud-native and machine learning worlds.

by Ericka Chickowski, Contributing Writer, Dark Reading

November 02, 2022

APPLICATION SECURITY

4 MIN READ

ARTICLE