Dark Reading: Attacks/Breaches
Defense Evasion Dominated 2019 Attack Tactics
Researchers mapped tactics and techniques to the MITRE ATT&CK framework to determine which were most popular last year.
Researchers Uncover Unsophisticated - But Creative - Watering-Hole Attack
Holy Water campaign is targeting users of a specific religious and ethnic group in Asia, Kaspersky says.
Data from 5.2M Marriott Loyalty Program Members Hit by Breach
The data was breached through the credentials of two franchisee employees.
Why Third-Party Risk Management Has Never Been More Important
Given today's coronavirus pandemic, the need for companies to collect cybersecurity data about their business partners is more critical than ever. Here's how to start.
How Much Downtime Can Your Company Handle?
Why every business needs cyber resilience and quick recovery times.
Researchers Spot Sharp Increase in Zoom-Themed Domain Registrations
Attackers are attempting to take advantage of the surge in teleworking prompted by COVID-19, Check Point says.
Untangling Third-Party Risk (and Fourth, and Fifth...)
Third parties bring critical products and services to your organization. They also bring risk that must be understood and managed.
Securing Your Remote Workforce: A Coronavirus Guide for Businesses
Often the hardest part in creating an effective awareness program is deciding what NOT to teach.
Malicious USB Drive Hides Behind Gift Card Lure
Victims are being enticed to insert an unknown USB drive into their computers.
Purported Brute-Force Attack Aims at Linksys Routers as More People Work Remotely
The attack takes control of poorly secured network devices, redirecting Web addresses to a COVID-themed landing page that attempts to fool victims into downloading malware.
Cyber Version of 'Justice League' Launches to Fight COVID-19 Related Hacks
Goal is to help organizations - especially healthcare entities - protect against cybercriminals trying to take advantage of the pandemic.
Insurance Giant Chubb Might Be Ransomware Victim
A ransomware operator claims to have successfully attacked Chubb Insurance databases.
China-Based Threat Group Launches Widespread Malicious Campaign
The motives behind the attacks remain unclear, but likely triggers include the ongoing trade war between the US and China and the unfolding COVID-19 pandemic.
Tupperware Hit by Card Skimmer Attack
Malicious code was found hidden inside graphics files on the storage container maker's e-commerce website.
Do DevOps Teams Need a Company Attorney on Speed Dial?
In today's regulatory and legislative environment, companies and individuals are exposed to lawsuits over security breaches, resulting in significant fines and ending careers.
How Attackers Could Use Azure Apps to Sneak into Microsoft 365
Researchers warn Microsoft 365 account holders to pay attention to unknown applications that request permissions.
New APT Targets Middle Eastern Victims
The new malware, dubbed "Milum," can take control of industrial devices.
Cybercriminals' Promises to Pause During Pandemic Amount to Little
As pandemic worsens, online profiteering -- from fraudsters to ransomware operators to cybercriminal hacking -- continues unabated, despite some promises from the underground.
Automated Tools Make Cyberattacks Easier to Pull Off
Gone are the days when threat actors had to actually spend time and effort planning and developing an attack on their own, Recorded Future says.
Vulnerability Management Isn't Just a Numbers Game
Attackers work 24/7, so you have to be vigilant around the clock. Time for some game theory.
Feed Fetched by RSS Dog.