‘Operation Sugarush’ Mounts Concerning Spy Effort on Shipping, Healthcare Industries
A Persian-speaking threat group has been discovered targeting industries ranging from healthcare to energy, with a particular focus on the shipping sector.
According to a report
from Mandiant, which named the...
When Countries Are Attacked: Making the Case for More Private-Public Cooperation
The Russian-supported Conti group's recent attack against Costa Rica led the country to declare a national emergency. The attack
impacted the country's Ministry of Finance and many other government institutions,...
‘DarkTortilla’ Malware Wraps in Sophistication for High-Volume RAT Infections
Researchers this week warned of a sophisticated, evasive crypter that several threat actors are using to distribute a range of information stealers and remote-access Trojans (RATs).
The crypter, dubbed "DarkTortilla,"...
Google Chrome Zero-Day Found Exploited in the Wild
A zero-day security vulnerability in Google's Chrome browser is being actively exploited in the wild.
The Internet behemoth released 11 security patches for Chrome this week, which are now being...
Whack-a-Mole: More Malicious PyPI Packages Spring Up Targeting Discord, Roblox
Just a week after 10 malicious software packages were found nesting in the Python Package Index (PyPI) repository, several more have come to light, uncovered by different firms. It's...
Microsoft Disrupts Russian Group’s Multiyear Cyber-Espionage Campaign
Microsoft's Threat Intelligence Center (MSTIC) has taken steps to disrupt the operations of "Seaborgium," a Russia-based threat actor that has been involved in persistent spear-phishing and credential-theft campaigns aimed...
Lessons From the Cybersecurity Trenches
Growing up in the Pacific Northwest, I was fascinated by treasure hunting. I love the idea of finding something valuable or important. I had an arsenal of tools even...
Windows Vulnerability Could Crack DC Server Credentials Open
Researchers have discovered a vulnerability
in the remote procedure calls (RPC) for the Windows Server service, which could
allow an attacker to gain control over the domain controller (DC) in a...
With Plunge in Value, Cryptocurrency Crimes Decline in 2022
The dramatic decline in cryptocurrency has dampened activity around specific types of financial crimes — most significantly, investment scams and illegal Dark Web transactions — leading to a drop...
Name That Toon: Vicious Circle
Come up with a cybersecurity-themed caption for the cartoon above, and you could win a $25 Amazon gift card if it's chosen as Dark Reading editors' favorite. Here are four convenient ways to...
