Dark Reading - Compliance

Compliance

• Rackspace Incident Highlights How Disruptive Attacks on Cloud Providers Can Be
• Fraudsters Siphon $360M From Retailers Using 50M Fake Shoppers
• Android Serves Up a Slew of Security Updates, 4 Critical
• Key Security Announcements From AWS re:Invent 2022
• 4 Arrested for Filing Fake Tax Returns With Stolen Data
• Will New CISA Guidelines Help Bolster Cyber Defenses?
• Piiano Equips Developers to Stop Sensitive Data Breaches
• 3 xIoT Attacks Companies Aren't Prepared For
• San Francisco Rolls Back Its Plan for Killer Robots
• Cybersecurity Resilience Emerges as Top Priority as 62% of Companies Say Security Incidents Impacted Business Operations
• Zerobot Weaponizes Numerous Flaws in Slew of IoT Devices
• For Cyberattackers, Popular EDR Tools Can Turn into Destructive Data Wipers
• Shift to Memory-Safe Languages Gains Momentum
• ASM Can Fill Gaps While Working to Implement SBOM
• Cambridge Centre for Risk Studies and Kivu Release Benchmark of Cost-Effective Responses to Cybercrime
• Google Chrome Flaw Added to CISA Patch List
• Russia Readies Winter Cyberattacks As Troops Retreat From Ukraine
• What Will It Take to Secure Critical Infrastructure?
• Name That Edge Toon: Not Your Average Bear
• Intellicene Brand Launches After Completion of Acquisition by Volaris Group
• Hardening Identities With Phish-Resistant MFA
• Applying the OODA Loop to Cybersecurity and Secure Access Service Edge
• Russian Actors Use Compromised Healthcare Networks Against Ukrainian Orgs
• AlgoSec Acquires Prevasio To Disrupt Agentless Cloud Security Market
• Machine Learning Models: A Dangerous New Attack Vector
• Wiper, Disguised as Fake Ransomware, Targets Russian Orgs
• Hive Social Buzzing With Security Flaws, Analysts Warn
• Cybersecurity Should Focus on Managing Risk
• Cyberattack Shuts Down French Hospital
• The New External Attack Surface: 3 Elements Every Organization Should Monitor
• Palo Alto Networks Announces Medical IoT Security to Protect Connected Devices Critical to Patient Care
• OpenSSF Membership Exceeds 100, With Many New Members Dedicated to Securing Open Source Software
• Infostealer Malware Market Booms, as MFA Fatigue Sets In
• The Privacy War Is Coming
• Ransomware Professionalization Grows as RaaS Takes Hold
• Malware Authors Inadvertently Take Down Own Botnet
• Concern Over DDoS Attacks Falls Despite Rise in Incidents
• SiriusXM, MyHyundai Car Apps Showcase Next-Gen Car Hacking
• Newsroom Sues NSO Group for Pegasus Spyware Compromise
• Where Advanced Cyberttackers Are Heading Next: Disruptive Hits, New Tech
• SOC Turns to Homegrown Machine Learning to Catch Cyber Intruders
• A Risky Business: Choosing the Right Methodology
• AWS Unveils Amazon Security Lake at re:Invent 2022
• LastPass Discloses Second Breach in Three Months
• Artifact Poisoning in GitHub Actions Imports Malware via Software Pipelines
• One Year After Log4Shell, Most Firms Are Still Exposed to Attack
• Is MFA the Vegetable of Cybersecurity?
• IBM Cloud Supply Chain Vulnerability Showcases New Threat Class
• Data Security Concerns Are Driving Changes in US Consumer Behavior and Demands
• Of Exploits and Experts: The Professionalization of Cybercrime
• Guidehouse Insights Anticipates Market for Automotive Cybersecurity Solutions Will Grow to More Than $445 Billion by 2031
• CyberRatings.org Announces Results from First-of-its-Kind Comparative Test on Cloud Network Firewall
• Phylum Expands Its Software Supply Chain Security Capabilities, Introduces Automated Vulnerability Reachability
• CI Fuzz CLI Brings Fuzz Testing to Java Applications
• Nvidia GPU Driver Bugs Threaten Device Takeover & More
• Google TAG Warns on Emerging Heliconia Exploit Framework for RCE
• How Banks Can Upgrade Security Without Affecting Client Service
• New Exploit Broker on the Scene Pays Premium for Signal App Zero-Days
• SPHERE Receives $31M for Series B Funding From Edison Partners, Forgepoint Capital
• The Evolution of Business Email Compromise
• API Secrets: Where the Bearer Model Breaks Down
• Critical Quarkus Flaw Threatens Cloud Developers With Easy RCE
• Identity Digital Releases Its First DNS Anti-Abuse Report
• Delinea Introduces Granular Privileged Access Controls on Servers
• CyberRatings.org Revives NSS Labs Research
• Connect the Dots with Genetic Algorithms on CNAPP
• Microsoft Defender Gets New Security Protections
• How to Use Cyber Deception to Counter an Evolving and Advanced Threat Landscape
• Cyberattackers Selling Access to Networks Compromised via Recent Fortinet Flaw
• Oracle Fusion Middleware Flaw Flagged by CISA
• The Metaverse Could Become a Top Avenue for Cyberattacks in 2023
• Killnet Gloats About DDoS Attacks Downing Starlink, White House
• Why the Culture Shift on Privacy and Security Means Today's Data Looks Different
• CDNetworks Releases State of Web Security H1 2022: Attacks Against API Services Surged 168.8%
• Acer Firmware Flaw Lets Attackers Bypass Key Security Feature
• Nok Nok and UberEther Partner to Deliver Phishing-Resistant MFA FedRAMP-Certified IAM Solutions
• CISA's Strategic Plan Is Ushering in a New Cybersecurity Era
• Cybersecurity and ESG Among Top Areas of Concern for Audit Leaders in 2023
• 9 Out of 10 Security Leaders State That Control Failures Are the Primary Reason For Data Breaches
• What Every Enterprise Can Learn From Russia’s Cyber Assault on Ukraine
• How the Cloud Changed Digital Forensics Investigations
• Cybersecurity Consolidation Continues, Even as Valuations Stall
• Cyber-Threat Group Targets Critical RCE Vulnerability in 'Bleed You' Campaign
• Global Cyber-Enforcement Op Nets $130M, Says Interpol
• Black Basta Gang Deploys Qakbot Malware in Aggressive Cyber Campaign
• $275M Fine for Meta After Facebook Data Scrape
• KnowBe4 Launches New Mobile Learner App for Cybersecurity Learning
• NanoLock Brings Built-In Meter-Level Cybersecurity to Renesas Customers
• Bring Your Own Key — A Placebo?
• Slippery RansomExx Malware Moves to Rust, Evading VirusTotal
• For Gaming Companies, Cybersecurity Has Become a Major Value Proposition
• How Development Teams Should Respond to Text4Shell
• Why Africa's Telecoms Must Actively Collaborate to Combat Fraud
• 'Patch Lag' Leaves Millions of Android Devices Vulnerable
• Hot Ticket: 'Aurora' Go-Based InfoStealer Finds Favor Among Cyber-Threat Actors
• Microsoft: Popular IoT SDKs Leave Critical Infrastructure Wide Open to Cyberattack
• Penetration Testing Market Size Is Projected to Reach $5.28B Globally by 2028
• Where Are We Heading With Data Privacy Regulations?
• Cybersecurity Pros Put Mastodon Flaws Under the Microscope
• Adversarial AI Attacks Highlight Fundamental Security Issues