New Malware Tools Pose ‘Clear and Present Threat’ to ICS Environments
The US Cybersecurity and Infrastructure Security Agency (CISA), along with the NSA, FBI, and others, this week urged critical infrastructure organizations — especially in the energy sector — to...
Kaspersky Relocates Cyberthreat-Related Data Processing for Users in Latin America and Middle East to...
Woburn, MA – April 14, 2022 - Kaspersky has expanded the scope of its cyberthreat-related data relocation, which now covers users in Latin America and the Middle East. The...
Lazarus Targets Chemical Sector With ‘Dream Jobs,’ Then Trojans
The North Korean-linked Lazarus group sent fake job offers to targets in the chemical sector and information technology firms, which — when opened — install Trojan horse programs to...
Name That Toon: Helping Hands
The above cartoon is in a need of a caption, and we're depending on you, dear Dark Reading readers, to come up with something that tickles our collective funny...
More Than Half of Initial Infections in Cyberattacks Come Via Exploits, Supply Chain Compromises
The length of time attackers remained undetected on a victim's network decreased for the fourth year in a row, sinking to 21 days in 2021, down from 24 days...
Millions of Lenovo Laptops Contain Firmware-Level Vulnerabilities
More than 100 different Lenovo consumer laptop computers, used by millions of people worldwide, contain firmware-level vulnerabilities that give attackers a way to drop malware that can persist on...
From Passive Recovery to Active Readiness
My team recently received a call from a company in Europe that had received warnings from law enforcement that it might be targeted by hackers. We found evidence through...
CISA, Australia, Canada, New Zealand, & UK Issue Joint Advisory on Russian Cyber Threats
The US, Australia, Canada, New Zealand, and the UK today issued a detailed joint advisory on the increased risk of cyberattacks out of Russia — both nation-state espionage and cybercriminal activity.
The...
Okta Wraps Up Lapsus$ Investigation, Pledges More Third-Party Controls
Identity cloud provider Okta concluded its investigation into a recent breach of its systems by the Lapsus$ extortion group, which gained access to some of company's systems through a...