Pair of Galaxy App Store Bugs Offer Cyberattackers Mobile Device Access
The Galaxy App Store, the official mobile app store available on Samsung devices, has two vulnerabilities, which, if exploited, could allow threat actors to install a malicious application without the...
Hunting Insider Threats on the Dark Web
Insider threats are a serious and growing problem. According to recent research, malicious employees contribute to 20% of incidents and the attacks that insiders are involved in are, on...
FanDuel Sportsbook Bettors Exposed in Mailchimp Breach
The FanDuel online sportsbook has told its users to be on the lookout for phishing cyberattacks in the wake of a breach of its email marketing contractor, Mailchimp. Mailchimp...
Ransomware Profits Decline as Victims Dig In, Refuse to Pay
In another sign that the tide may be finally turning against ransomware actors, ransom payments declined substantially in 2022 as more victims refused to pay their attackers — for...
Attackers Crafted Custom Malware for Fortinet Zero-Day
Researchers analyzing data associated with a recently disclosed zero-day vulnerability in Fortinet's FortiOS SSL-VPN technology have identified a sophisticated new backdoor specifically designed to run on Fortinet's FortiGate firewalls.The...
Cybercriminals Target Telecom Provider Networks
The growing use of mobile devices for multifactor authentication increasingly has made telecom providers a juicy target for cybercrime. An ongoing SIM card-swapping campaign by a Chinese threat actor...
Name That Toon: Poker Hand
New year, new cartoon contest! We're flushed with excitement, knowing our clever, cybersecurity-minded readers are going to come up with imaginative captions for our latest cartoon, above. Here are...
New Coalfire Report Reveals CISOs Rising Influence
WESTMINSTER, Colo., Jan. 18, 2023 /PRNewswire/ -- In partnership with the world-class Dark Reading research team, global cybersecurity pioneer Coalfire today unveiled its second annual State of CISO Influence report, which explores the expanding influence...
ChatGPT Could Create Polymorphic Malware Wave, Researchers Warn
The newly released ChatGPT artificial intelligence bot from OpenAI could be used to usher in a new dangerous wave of polymorphic malware, security researchers warn.One of the many spectacular...
Initial Access Broker Market Booms, Posing Growing Threat to Enterprises
Names such as Novelli, orangecake, Pirat-Networks, SubComandanteVPN, and zirochka are unlikely to mean anything to a vast majority of enterprise security teams. But for ransomware operators and other cybercriminals...