"Apple patches actively exploited zero-day vulnerability."

Views expressed in this cybersecurity, cyber crime, and cyber espionage update are those of the reporters and correspondents.  Accessed on 28 January 2025, 1435 UTC.

Content and Source:  Email subscription from https://feedly.com.

 https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fwww.darkreading.com%2Frss%2Fall.xml

Please scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Dark Reading

162K followers30 articles per week#security#tech

13

Most popular

Apple Patches Actively Exploited Zero-Day Vulnerability

CVE-2025-24085

•

by Kristina Beek, Associate Editor, Dark Reading / 15h

The Apple iOS 18.3 update fixes 28 other vulnerabilities identified by the tech company, though there is little information on them.

For $50, Cyberattackers Can Use GhostGPT to Write Malicious Code

4 TTPs

•

by Jai Vijayan, Contributing Writer / 16h

•

GhostGPT aids cybercrime activities

Malware writing is only one of several malicious activities for which the new, uncensored generative AI chatbot can be used.

Crisis Simulations: A Top 2025 Concern for CISOs

CISOs increase crisis simulation budgets

•

by Kristina Beek, Associate Editor, Dark Reading / 16h

CISOs are planning to adjust their budgets this year to reflect their growing concerns for cybersecurity preparedness in the event of a cyberattack.

Yesterday

IT-Harvest Launches HarvestIQ.ai

16h

[no content]

Spectral Capital Files Quantum Cybersecurity Patent

16h

[no content]

USPS Impersonators Tap Trust in PDFs in Smishing Attack Wave

7 TTPs

•

by Elizabeth Montalbano, Contributing Writer / 16h

•

Mobile phishing campaign targets PDFs

Attackers aim to steal people's personal and payment-card data in the campaign, which dangles the threat of an undelivered package and has the potential to reach organizations in more than 50 countries.

The Case for Proactive, Scalable Data Protection

by Tom Ferrucci / 23h

Whether you're facing growing data demands and increased cyber threats, or simply looking to future-proof your business, it's time to consider the long-term benefits of transitioning to a cloud-first infrastructure.

Jan 24, 2025

CISOs Are Gaining C-Suite Swagger, but Has It Come With a Cost?

CISOs gain influence in boardrooms

•

by Becky Bracken, Senior Editor, Dark Reading / 3d

The number of CISOs who report directly to the CEO is up sharply in recent years, but many still say it's not enough to secure adequate resources.

DoJ Busts Up Another Multinational DPRK IT Worker Scam

US indicts individuals in North Korea scam

•

by Nate Nelson, Contributing Writer / 3d

A departmentwide initiative has now led to five major law enforcement actions, in an attempt to curb the increasingly common trend of North Korean hackers posing as IT job applicants.

MITRE's Latest ATT&CK Simulations Tackle Cloud Defenses

by Robert Lemos, Contributing Writer / 3d

The MITRE framework's applied exercise provides defenders with critical feedback about how to detect and defend against common, but sophisticated, attacks.

Cisco: Critical Meeting Management Bug Requires Urgent Patch

CVE-2025-20156

•

by Kristina Beek, Associate Editor, Dark Reading / 3d

The bug has been given a 9.9 CVSS score, and could allow authenticated threat actors to escalate their privileges to admin-level if exploited.

3 Use Cases for Third-Party API Security

by Dionisio Zumerle / 3d

Third-party API security requires a tailored approach for different scenarios. Learn how to adapt your security strategy to outbound data flows, inbound traffic, and SaaS-to-SaaS interconnections.

Strengthening Our National Security in the AI Era

Biden issues cybersecurity executive order

•

by Mike Arrowsmith / 3d

For the first time in a long while, the federal government and the software sector alike finally have the tools and resources needed to do security well — consistently and cost-effectively.

End of feed