"Credential theft becomes cybercriminals' favorite target."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 05 February 2025, 1444 UTC.

Content and Source:  Email subscription via https://feedly.com.

 https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fwww.darkreading.com%2Frss%2Fall.xml

Please check link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Dark Reading

163K followers36 articles per week#security#tech

21

Most popular

Credential Theft Becomes Cybercriminals' Favorite Target

4 TTPs

•

by Kristina Beek, Associate Editor, Dark Reading / 16h

•

Malware targeting credentials triples

Researchers measured a threefold increase in credential stealing between 2023 and 2024, with more than 11.3 million such thefts last year.

How Are Modern Fraud Groups Using Gen AI and Deepfakes?

by Jennifer Lawinski / 1h

Fraud groups are using AI and deepfake technology to scale up their operations to create fake identities and execute fraud campaigns.

Backline Tackles Enterprise Security Backlogs With AI

Backline secures 9M seed funding

•

by Dark Reading Staff / 1h

The security startup's autonomous security remediation platform uses off-the-shelf large language models (LLMs) to analyze security alerts and apply the fixes.

Yesterday

Nigeria Touts Cyber Success, Even as Cybercrime Rises in Africa

by Robert Lemos, Contributing Writer / 6h

Organizations continue to be at high risk from cybercrime in Africa, despite law enforcement takedowns of cybercriminal syndicates in Nigeria and other African nations.

Black Hat USA 2024 Highlights

11h

Check out all the highlights from Black Hat USA 2024 at the Mandalay Bay in Las Vegas. #cybersecurity #infosec #blackhat

Black Hat USA

13h

[no content]

Ferret Malware Added to 'Contagious Interview' Campaign

4 TTPs

•

by Kristina Beek, Associate Editor, Dark Reading / 16h

•

New DPRK macOS malware variants discovered

Targets are lured into a fake interview process that convinces them to download malware needed for a virtual interview.

Cybercriminals Court Traitorous Insiders via Ransom Notes

by Kristina Beek, Associate Editor, Dark Reading / 18h

Ransomware actors are offering individuals millions to turn on their employers and divulge private company information, in a brand-new cybercrime tactic.

Chinese 'Infrastructure Laundering' Abuses AWS, Microsoft Cloud

IoC > 1 domain

•

by Elizabeth Montalbano, Contributing Writer / 19h

•

12 TTPs

•

Infrastructure laundering via cloud providers

Funnull CDN rents IPs from legitimate cloud service providers and uses them to host criminal websites, continuously cycling cloud resources in and out of use and acquiring new ones to stay ahead of cyber-defender detection.

Managing Software Risk in a World of Exploding Vulnerabilities

by Kirsten Newcomer / 23h

Organizations and development teams need to evolve from "being prepared" to "managing the risk" of security breaches.

Microsoft Sets End Date for Defender VPN

Microsoft Defender VPN support ends

•

by Kristina Beek, Associate Editor, Dark Reading / 23h

Though Windows, iOS, and macOS users won't need to make any changes, Android users are advised to remove their Defender VPN profiles.

Black Hat USA 2024 Highlights

23h

Check out all the highlights from Black Hat USA 2024 at the Mandalay Bay in Las Vegas. #cybersecurity #infosec #blackhat

Feb 3, 2025

DNSFilter's Annual Security Report Reveals Worrisome Spike in Malicious DNS Requests

1d

[no content]

EMEA CISOs Plan 2025 Cloud Security Investment

1d

[no content]

Interactive Online Training for Cybersecurity Professionals; Earn CPE Credits

1d

[no content]

'Constitutional Classifiers' Technique Mitigates GenAI Jailbreaks

Anthropic enhances AI security measures

•

by Jai Vijayan, Contributing Writer / 1d

Anthropic says its Constitutional Classifiers approach offers a practical way to make it harder for bad actors to try and coerce an AI model off its guardrails.

Name That Edge Toon: In the Cloud

by John Klossner / 1d

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 gift card.

AI Malware Dressed Up as DeepSeek Packages Lurk in PyPi

2 TTPs

•

by Becky Bracken, Senior Editor, Dark Reading / 1d

•

Malicious packages exploit DeepSeek popularity

Adversaries looking to ride the DeepSeek interest wave are taking advantage of developers in a rush to deploy the new technology, by using AI-generated malware against them.

Ransomware Groups Weathered Raids, Profited in 2024

by Robert Lemos, Contributing Writer / 1d

Cybercriminals posted nearly 6,000 breaches to data-leak sites last year — and despite significant takedowns, they continued to thrive in a record-breaking year for ransomware.

1-Click Phishing Campaign Targets High-Profile X Accounts

IoC > 2 domains

•

by Elizabeth Montalbano, Contributing Writer / 1d

•

4 TTPs

•

Phishing campaign targets high-profile accounts

In an attack vector that's been used before, threat actors aim to commit crypto fraud by hijacking highly followed users, thus reaching a broad audience of secondary victims.

Proactive Vulnerability Management for Engineering Success

by Remi Yazigi / 1d

By integrating security into CI/CD, applying automated policies, and supporting developers with the right processes and tools, infosec teams can increase efficiency and build secure software.

End of feed