DarkReading.com

"Behavioral Analytics in Cybersecurity:  Who benefits most?"

 Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 10 February 2025, 0057 UTC.

Content and Source:  https://www.darkreading.com.

Please check link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Dark Reading

163K followers35 articles per week#security#tech

40

Most popular

Behavioral Analytics in Cybersecurity: Who Benefits Most?

45by Jackie Wyatt / 2d

As the cost of data breaches continues to climb, the role of user and entity behavioral analytics (UEBA) has never been more important.

US Cybersecurity Efforts for Spacecraft Are Up in the Air

23by Robert Lemos, Contributing Writer / 3d

While President Trump supported federal space efforts during his first administration, the addition of SpaceX chief Elon Musk to his circle likely means challenges for regulating spacecraft cybersecurity, experts say.

Google's DMARC Push Pays Off, but Email Security Challenges Remain

7 TTPs

•

by Robert Lemos, Contributing Writer / 2d

A year after Google and Yahoo started requiring DMARC, the adoption rate of the email authentication specification has doubled; and yet, 87% of domains remain unprotected.

Feb 7, 2025

LLM Hijackers Quickly Incorporate DeepSeek API Keys

8 TTPs

•

by Nate Nelson, Contributing Writer / 2d

The secret use of other people's generative AI platforms, wherein hijackers gain unauthorized access to an LLM while someone else foots the bill, is getting quicker and stealthier by the month.

SolarWinds to Go Private for $4.4B

SolarWinds acquired by Turn/River Capital

•

by Kristina Beek, Associate Editor, Dark Reading / 2d

Five years after a Russian APT infiltrated a software update to gain access to thousands of SolarWinds customers, the board has voted unanimously to sell at a top valuation and plans for uninterrupted operations.

Microsoft: Thousands of Public ASP.NET Keys Allow Web Server RCE

ASP.NET machine key code injection

•

by Tara Seals, Managing Editor, News, Dark Reading / 2d

Developers are pulling in publicly available ASP.NET keys into their environments, without realizing that cyberattackers can use them for clandestine code injection.

Canadian Man Charged in $65M Cryptocurrency Hacking Schemes

Canadian charged in $65M crypto hack

•

2d

[no content]

2024 Breaks Records With Highest Ever Ransomware Attacks

Record ransomware attacks surge 2024

•

2d

[no content]

Databarracks Launches Air Gap Recover

Databarracks launches Air Gap Recover

•

2d

[no content]

Cybercrime Forces Local Law Enforcement to Shift Focus

by Jennifer Lawinski / 2d

Local law enforcements need to steer away from "place-based policing" when investigating cybercrimes.

7AI Streamlines Security Operations With Autonomous AI Agents

by Jeffrey Schwartz / 2d

Cybereason co-founders launch their second act with a security startup focused on offering a platform that uses agentic AI to offload repetitive tasks commonly performed by security analysts.

Feb 6, 2025

Researcher Outsmarts, Jailbreaks OpenAI's New o3-mini

by Nate Nelson, Contributing Writer / 3d

OpenAI's latest tech can reason better than its previous models could, but not well enough to ferret out careful social engineering.

Agencies Sound Alarm on Patient Monitors With Hardcoded Backdoor

Backdoor in Contec CMS8000 monitors

•

by Kristina Beek, Associate Editor, Dark Reading / 3d

CISA and the FDA are warning that Contec CMS8000 and Epsimed MN-120 patient monitors are open to meddling and data theft; Claroty Team82 flagged the vulnerability as an avoidable insecure design issue.

DeepSeek Phishing Sites Pursue User Data, Crypto Wallets

5 TTPs

•

by Jai Vijayan, Contributing Writer / 3d

•

Fake DeepSeek malware targets macOS

Riding the wave of notoriety from the Chinese company's R1 AT chatbot, attackers are spinning up lookalike sites for different malicious use cases.

The Cyber Savanna: A Rigged Race You Can't Win, but Must Run Anyway

by Boaz Barzel / 3d

When it comes to protecting your company from cyberattacks, you don't have to be the fastest gazelle — you just can't afford to be the slowest.

Feb 5, 2025

Basket of Bank Trojans Defraud Citizens of East India

8 TTPs

•

by Nate Nelson, Contributing Writer / 3d

Cheap banking scams are often easier to pull off in a country with older devices, fewer regulations, and experienced fraudsters.

Abandoned AWS Cloud Storage: A Major Cyberattack Vector

2 TTPs

•

by Jai Vijayan, Contributing Writer / 4d

•

Abandoned S3 buckets pose security risks

New research highlights how bad actors could abuse deleted AWS S3 buckets to create all sorts of mayhem, including a SolarWinds-style supply chain attack.

Why Cybersecurity Needs Probability — Not Predictions

by Vishaal "V8" Hariprasad / 4d

While probabilities may be based on subjective information, when used in an objective framework, they demonstrate an effective way to improve the value of hard decisions.

Attackers Target Education Sector, Hijack Microsoft Accounts

4 TTPs

•

by Elizabeth Montalbano, Contributing Writer / 4d

•

Phishing attack targets Microsoft ADFS

A sophisticated cyberattack campaign is targeting organizations that still rely on Active Directory Federation Services (ADFS) for authentication across applications and services.

How Are Modern Fraud Groups Using GenAI and Deepfakes?

by Jennifer Lawinski / 4d

Fraud groups are using cutting-edge technology to scale their operations to create fake identities and execute fraud campaigns.

Backline Tackles Enterprise Security Backlogs With AI

Backline secures 9M seed funding

•

by Dark Reading Staff / 4d

The security startup's autonomous security remediation platform uses off-the-shelf large language models (LLMs) to analyze security alerts and apply the fixes.

Feb 4, 2025

Nigeria Touts Cyber Success, Even as Cybercrime Rises in Africa

by Robert Lemos, Contributing Writer / 4d

Organizations continue to be at high risk from cybercrime in Africa, despite law enforcement takedowns of cybercriminal syndicates in Nigeria and other African nations.

Black Hat USA 2024 Highlights

4d

Check out all the highlights from Black Hat USA 2024 at the Mandalay Bay in Las Vegas. #cybersecurity #infosec #blackhat

Black Hat USA

4d

[no content]

Credential Theft Becomes Cybercriminals' Favorite Target

4 TTPs

•

by Kristina Beek, Associate Editor, Dark Reading / 5d

•

Credential theft surges in 2024

Researchers measured a threefold increase in credential stealing between 2023 and 2024, with more than 11.3 million such thefts last year.

Ferret Malware Added to 'Contagious Interview' Campaign

4 TTPs

•

by Kristina Beek, Associate Editor, Dark Reading / 5d

•

New DPRK macOS malware variants discovered

Targets are lured into a fake interview process that convinces them to download malware needed for a virtual interview.

Cybercriminals Court Traitorous Insiders via Ransom Notes

by Kristina Beek, Associate Editor, Dark Reading / 5d

Ransomware actors are offering individuals millions to turn on their employers and divulge private company information, in a brand-new cybercrime tactic.

Chinese 'Infrastructure Laundering' Abuses AWS, Microsoft Cloud

IoC > 1 domain

•

by Elizabeth Montalbano, Contributing Writer / 5d

•

12 TTPs

•

Infrastructure laundering via cloud providers

Funnull CDN rents IPs from legitimate cloud service providers and uses them to host criminal websites, continuously cycling cloud resources in and out of use and acquiring new ones to stay ahead of cyber-defender detection.

Managing Software Risk in a World of Exploding Vulnerabilities

by Kirsten Newcomer / 5d

Organizations and development teams need to evolve from "being prepared" to "managing the risk" of security breaches.

Microsoft Sets End Date for Defender VPN

Microsoft Defender VPN support ends

•

by Kristina Beek, Associate Editor, Dark Reading / 5d

Though Windows, iOS, and macOS users won't need to make any changes, Android users are advised to remove their Defender VPN profiles.

Black Hat USA 2024 Highlights

5d

Check out all the highlights from Black Hat USA 2024 at the Mandalay Bay in Las Vegas. #cybersecurity #infosec #blackhat

Feb 3, 2025

DNSFilter's Annual Security Report Reveals Worrisome Spike in Malicious DNS Requests

6d

[no content]

EMEA CISOs Plan 2025 Cloud Security Investment

6d

[no content]

Interactive Online Training for Cybersecurity Professionals; Earn CPE Credits

6d

[no content]

'Constitutional Classifiers' Technique Mitigates GenAI Jailbreaks

Anthropic enhances AI security measures

•

by Jai Vijayan, Contributing Writer / 6d

Anthropic says its Constitutional Classifiers approach offers a practical way to make it harder for bad actors to try and coerce an AI model off its guardrails.

Name That Edge Toon: In the Cloud

by John Klossner / 6d

Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 gift card.

AI Malware Dressed Up as DeepSeek Packages Lurk in PyPi

2 TTPs

•

by Becky Bracken, Senior Editor, Dark Reading / 6d

•

Malware disguises as DeepSeek tools

Adversaries looking to ride the DeepSeek interest wave are taking advantage of developers in a rush to deploy the new technology, by using AI-generated malware against them.

Ransomware Groups Weathered Raids, Profited in 2024

by Robert Lemos, Contributing Writer / 6d

Cybercriminals posted nearly 6,000 breaches to data-leak sites last year — and despite significant takedowns, they continued to thrive in a record-breaking year for ransomware.

1-Click Phishing Campaign Targets High-Profile X Accounts

IoC > 2 domains

•

by Elizabeth Montalbano, Contributing Writer / 6d

•

4 TTPs

•

Phishing campaign targets high-profile accounts

In an attack vector that's been used before, threat actors aim to commit crypto fraud by hijacking highly followed users, thus reaching a broad audience of secondary victims.

Proactive Vulnerability Management for Engineering Success

by Remi Yazigi / 6d

By integrating security into CI/CD, applying automated policies, and supporting developers with the right processes and tools, infosec teams can increase efficiency and build secure software.

End of feed