Under Attack: Hosting & Internet Service Providers
The digital universe depends on always-on IT networks and services, so ISPs and hosting providers have become favorite targets for cyberattacks.In less than a decade, cybersecurity has become a...
How to Submit a Column to Dark Reading
Have a new idea, a lesson learned, or a call to action for your fellow cybersecurity professionals? Here's how to submit your Commentary pieces to Dark Reading. While reading...
Water Utility Hack Could Inspire More Intruders
If past cyberattacks are any indication, success begets imitation. In the wake of last week's hack of Florida water utility, other water utilities and users of remote desktop software...
Microsoft Launches Phase 2 Mitigation for Zerologon Flaw
The Netlogon remote code execution vulnerability, disclosed last August, has been weaponized by APT groups.Microsoft has released phase two mitigation for the critical Zerologon vulnerability disclosed in August 2020....
Ransomware Attackers Set Their Sights on SaaS
Ransomware has begun to target data-heavy SaaS applications, open source, and Web and application frameworks.Ransomware attacks have begun to more heavily target software applications, open source tools, and Web...
Microsoft Fixes Windows Zero-Day in Patch Tuesday Rollout
Microsoft's monthly security fixes addressed a Win32k zero-day, six publicly known flaws, and three bugs in the Windows TCP/IP stack.Microsoft today patched a Windows zero-day vulnerability as a part...
Florida Water Utility Hack Highlights Risks to Critical Infrastructure
The intrusion also shows how redundancy and detection can minimize damage and reduce impact to the population.For a few minutes on Friday, an operator at the Water Division for...
Android App Infects Millions of Devices With a Single Update
The popular Barcode Scanner app, which as been available on Google Play for years, turned malicious with one software update.A popular Android app called Barcode Scanner was turned into...
Malicious Code Injected via Google Chrome Extension Highlights App Risks
An open source plug-in purportedly introduced tracking and malicious download code to infect nearly 2 million users, reports say.Google has removed a Chrome plugin used by approximately 2 million...
Spotify Hit With Another Credential-Stuffing Attack
This marks the second credential-stuffing attack to hit the streaming platform in the last few months.Spotify suffered a credential-stuffing attack that used stolen credentials from some 100,000 user accounts,...
