Dark Reading Daily

"Ransomware attackers abuse multiple windows CLFS driver zero-days."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 26 December 2023, 1557 UTC.

Content and Source:  https://mail.google.com/mail/u/0/#inbox/FMfcgzGwJSBJLccPZVwhWtNgfsBBRbKj ("Dark Reading Daily").

Please click link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

LATEST SECURITY NEWS & COMMENTARY
Ransomware Attackers Abuse Multiple Windows CLFS Driver Zero-Days
Attackers were escalating privileges left and right in 2023, thanks to one performance-oriented, security-lacking driver.
Google Releases Eighth Zero-Day Patch of 2023 for Chrome
CVE-2023-7024, exploited in the wild prior to patching, is a Chrome vulnerability that allows remote code execution within the browser's WebRTC component.
Iran's 'Peach Sandstorm' Cyberattackers Target Global Defense Network
The FalseFont backdoor allows operators to remotely access an infected system and launch additional files.
5 Tips for Strengthening the Developer-Security Team Relationship
Adopt these best practices to move past a reactive approach to software development and build a productive work environment. Collaboration can turn security into a shared goal, not a bottleneck.
MORE NEWS / MORE COMMENTARY
HOT TOPICS
'BattleRoyal' Hackers Deliver DarkGate RAT Using Every Trick
The shadowy threat actor uses some nifty tricks to drop popular malware with targets that meet its specifications.

Chameleon Android Trojan Offers Biometric Bypass
A more sophisticated version of a "work in progress" malware is impersonating a Google Chrome app to attack a wider swath of mobile users.

8 Strategies for Defending Against Help Desk Attacks
The help desk is under siege from AI-based and other attacks. Next-gen tactics call for in-depth cyber-defense strategies.

How AI Is Shaping the Future of Cybercrime
Cybercriminals are increasingly using AI tools to launch successful attacks, but defenders are battling back.

MORE
PRODUCTS & RELEASES
EDITORS' CHOICE
Russian Water Utility Hacked in Retaliation for Kyivstar Hit
Moscow's Rosvodokanal water-management company was ransacked by Ukraine-aligned Blackjack group, with reports that the company's IT infrastructure was "destroyed."
LATEST FROM THE EDGE

Security Pros Grapple With Ways to Manage GenAI Risk
Security professionals in Dark Reading's latest survey are well aware of the risks posed by generative AI in their organizations, but questions remain on what strategies to employ.
LATEST FROM DR TECHNOLOGY

GenAI Tools Will Permeate All Areas of the Enterprise
Many departments and groups see the benefits of using generative AI tools, which will complicate the security teams' job of protecting the enterprise from data leaks and compliance and privacy violations.
LATEST FROM DR GLOBAL

Strengthening Resilience: Navigating the Cybersecurity Landscape
The significance of cybersecurity resilience has never been higher as we grow more reliant on digital infrastructure.
WEBINARS
View More Dark Reading Webinars >>
WHITE PAPERS
View More White Papers >>
FEATURED REPORTS
View More Dark Reading Reports >>
Dark Reading Daily
-- Published By Dark Reading
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
To opt-out of any future Dark Reading Daily Newsletter emails, please respond here.
Thoughts about this newsletter? Give us feedback.
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list:
If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.
We take your privacy very seriously. Please review our Privacy Statement.
© 2023  |   Informa Tech  |   Privacy Statement   |   Terms & Conditions  |  Contact Us

Comments

Popular posts from this blog

SecurityWeek Briefing.

Cyber War Newswire

SecurityWeek Briefing.