Dark Reading

Those 'Summarize With AI' Buttons May Be Lying to You Microsoft uncovered AI recommendation poisoning in 31 companies across 14 industries, and turnkey tools make it trivially easy to pull off.

Those 'Summarize With AI' Buttons May Be Lying to You: https://bit.ly/3MojnnK by Jai Vijayan

Top Cyber Industry Defenses Spike CO2 Emissions Organizations can improve their climate footprints by optimizing two specific cybersecurity protections, without incurring added risks.

Top Cyber Industry Defenses Spike CO2 Emissions: https://bit.ly/4bPxahu by Nate Nelson #RSAC

Senegalese Data Breaches Expose Lack of 'Security Maturity': https://bit.ly/4crLvkn by Nate Nelson #DRGlobal

Asia Fumbles With Throttling Back Telnet Traffic in Region Only Taiwan made the top 10 list of governments, effectively blocking the threat-ridden protocol, but overall, the region lagged in curbing Telnet traffic.

Asia Fumbles With Throttling Back Telnet Traffic in Region: https://bit.ly/4aPCrDJ by Rob Lemos #DRGlobal

1Password Addresses Critical AI Browser Agent Security Gap The security company looks to tackle new authentication challenges that could lead to credential leakage, as enterprises increasingly leverage AI browser agents.

Latest on @darkreading.bsky.social
#DRTechnology: 1Password Addresses Critical AI Browser Agent Security Gap https://zpr.io/8mSsG9eVGhtA #darkreading #cybersecurity

1Password Addresses Critical AI Browser Agent Security Gap The security company looks to tackle new authentication challenges that could lead to credential leakage, as enterprises increasingly leverage AI browser agents.

Latest on @darkreading.bsky.social DR Technology: 1Password Addresses Critical AI Browser Agent Security Gap https://zpr.io/8mSsG9eVGhtA #DRTechnology #darkreading #cybersecurity

Automaker Secures the Supply Chain With Developer-Friendly Platform How a platform engineering team embeds supply chain security into infrastructure without slowing developers.

Latest on @darkreading.bsky.social DR Technology: Automaker Secures the Supply Chain With Developer-Friendly Platform https://zpr.io/ashTv9nKfbWG #DRTechnology #darkreading #cybersecurity

Automaker Secures the Supply Chain With Developer-Friendly Platform How a platform engineering team embeds supply chain security into infrastructure without slowing developers.

Latest on @darkreading.bsky.social
#DRTechnology: Automaker Secures the Supply Chain With Developer-Friendly Platform https://zpr.io/ashTv9nKfbWG #darkreading #cybersecurity

How to Stay on Top of Future Threats With a Cutting-Edge SOC CISOs should focus on harnessing and securing AI and building new skills among their people. Vision and change management can transform security.

Latest on @darkreading.bsky.social
#DRTheEdge: How to Stay on Top of Future Threats With a Cutting-Edge SOC https://zpr.io/SXbbUgr2USwH #darkreading #cybersecurity

SolarWinds WHD Attacks Highlight Dangers of Exposed Apps Organizations that have exposed their instances of Web Help Desk to the public Internet have inadvertently made them prime targets for attackers.

SolarWinds WHD Attacks Highlight Risks of Exposed Apps: https://bit.ly/4tBl2an by Rob Wright

In Bypassing MFA, ZeroDayRAT Is 'Textbook Stalkerware' With access to SIM, location data, and a preview of recent SMSes, attackers have everything they need for account takeover or targeted social engineering.

In Bypassing MFA, ZeroDayRAT Is 'Textbook Stalkerware': https://bit.ly/4qpFhot by Alexander Culafi

OT Attacks Get Scary With 'Living-off-the-Plant' Techniques Ironically, security by obscurity has helped prevent dangerous OT attacks in recent years. It won't be that way forever.

OT Attacks Get Scary With 'Living-off-the-Plant' Techniques: https://bit.ly/4traPgm by Nate Nelson #RSAC

Microsoft Patches 6 Actively Exploited Zero-Days Three of those zero-days are security feature bypass flaws, which give attackers a way to slip past built-in protections in multiple Microsoft products.

Microsoft Patches 6 Actively Exploited Zero-Days: https://bit.ly/4aupizz by Jai Vijayan

TransUnion's Real Networks Deal Focuses on Robocall Blocking The acquisition allows the credit reporting agency to add SMS spam and scam prevention to its robocall blocking capabilities.

Latest on @darkreading.bsky.social
#DRTechnology: TransUnion's Real Networks Deal Focuses on Robocall Blocking https://zpr.io/PL9MWy23EJ6D #darkreading #cybersecurity

TeamPCP Turns Cloud Infrastructure into Crime Bots The threat actor has been compromising cloud environments at scale with automated worm-like attacks on exposed services and interfaces.

TeamPCP Turns Cloud Infrastructure into Crime Bots: https://bit.ly/3ZX5VKz by Jai Vijayan

Black Basta Bundles BYOVD With Ransomware Payload Researchers discovered a vulnerable driver embedded in Black Basta's ransomware, illustrating the increasing popularity of the defense evasion technique.

Black Basta Bundles BYOVD With Ransomware Payload: https://bit.ly/3MukIcC by Rob Wright

Shai-hulud: The Hidden Cost of Supply Chain Attacks Recent supply chain attacks involving self-propagating worms have spread far, but the damage and long-term impact is hard to quantify.

Shai-hulud: The Hidden Cost of Supply Chain Attacks: https://bit.ly/3NZ4itf by Alex Culafi

OpenClaw's Gregarious Insecurities Make Safe Usage Difficult Malicious "skills" and persnickety configuration are just a few issues that security researchers have found when installing the OpenClaw AI assistant.

OpenClaw's Gregarious Insecurities Make Safe Usage Difficult: https://bit.ly/3M83iT5 by Robert Lemos

"Encrypt It Already" Campaign Pushes Big Tech to Prioritize E2E Encryption The Electronic Frontier Foundation is urging major technology companies to follow through on their promises to implement end-to-end encryption by default across their services, as privacy concerns mount amid increased AI use.

Latest on @darkreading.bsky.social
#DRTheEdge: "Encrypt It Already" Campaign Pushes Big Tech to Prioritize E2E Encryption https://zpr.io/cttbj2iWHKrJ #darkreading #cybersecurity

Data Tool to Triage Exploited Vulnerabilities Can Make KEV More Useful A disconnect exists between the organization's cybersecurity needs and lists like CISA's KEV Catalog. KEV Collider combines data from multiple open-source vulnerability frameworks to help security teams quickly assess which are important, based on their priorities.

Latest on @darkreading.bsky.social
#DRTechnology: Data Tool to Triage Exploited Vulnerabilities Can Make KEV More Useful https://zpr.io/GzDPPq8L59Dc #darkreading #cybersecurity

Data Tool to Triage Exploited Vulnerabilities Can Make KEV More Useful A disconnect exists between the organization's cybersecurity needs and lists like CISA's KEV Catalog. KEV Collider combines data from multiple open-source vulnerability frameworks to help security teams quickly assess which are important, based on their priorities.

Latest on @darkreading.bsky.social DR Technology: Data Tool to Triage Exploited Vulnerabilities Can Make KEV More Useful https://zpr.io/GzDPPq8L59Dc #DRTechnology #darkreading #cybersecurity

Cyber Success Trifecta: Education, Certifications & Experience Colonel Georgeo Xavier Pulikkathara, CISO at iMerit discusses the importance of fundamentals, continuous learning, and human ingenuity.

Cyber Success Trifecta: Education, Certifications & Experience: https://bit.ly/4r6DZ2U by Kristina Beek #DRTheEdge

Protests Don't Impede Iranian Spying on Expats, Syrians, Israelis Iranian threat actors have been stealing credentials from people of interest across the Middle East, using spear-phishing and social engineering.

Protests Don't Impede Iranian Spying on Expats, Syrians, Israelis: https://bit.ly/4a26QiU by Nate Nelson #DRGlobal

Extra! Extra! Announcing DR Global Latin America Dark Reading has something new hitting newsstands: a content section purpose-built for LatAm readers, featuring news, analysis, features, and multimedia.

Extra Extra! Announcing DR Global Latin America: https://bit.ly/4axpeAb by Tara Seals

Attackers Use Windows Screensavers to Drop Malware, RMM Tools By tapping the unusual .scr file type, attackers leverage "executables that don't always receive executable-level controls," one researcher noted.

Attackers Use Windows Screensavers to Drop Malware, RMM Tools: https://bit.ly/4cc7Lyt by Alexander Culafi

Big Breach or Smooth Sailing? Mexican Govt Faces Leak Allegations Hacktivist group claims a 2.3-terabyte data breach exposes information of 36 million Mexicans, but no sensitive accounts are at risk, the government says.

Big Breach or Smooth Sailing? Mexican Gov't Faces Leak Allegations: https://bit.ly/4awohIp by Rob Lemos #DRGlobal

Google Looker Bugs Allow Cross-Tenant RCE, Data Exfil Attackers could even have used one vulnerable Lookout user to gain access to other Google Cloud tenants' environments.

Google Looker Bugs Allow Cross-Tenant RCE, Data Exfil: https://bit.ly/4cb7Y55 by Nate Nelson

AI May Supplant Pen Testers, But Oversight & Trust Is Not There Yet Crowd-sourced bug bounties and pentesting firms see AI agents stealing the low-hanging vulnerabilities from their human counterparts, but oversight remains key.

Latest on @darkreading.bsky.social
#DRTechnology: AI May Supplant Pen Testers, But Oversight & Trust Is Not There Yet https://zpr.io/S6WG9cS8Yc2R #darkreading #cybersecurity

AI May Supplant Pen Testers, But Oversight & Trust Is Not There Yet Crowd-sourced bug bounties and pentesting firms see AI agents stealing the low-hanging vulnerabilities from their human counterparts, but oversight remains key.

Latest on @darkreading.bsky.social DR Technology: AI May Supplant Pen Testers, But Oversight & Trust Is Not There Yet https://zpr.io/S6WG9cS8Yc2R #DRTechnology #darkreading #cybersecurity

Russian Hackers Weaponize Microsoft Office Bug in Just 3 Days APT28's attacks use specially crafted Microsoft Rich Text Format (RTF) documents to kick off a multistage infection chain to deliver malicious payloads.

Russian Hackers Weaponize Microsoft Office Bug in Just 3 Days: https://bit.ly/3NXMqPm by Jai Vijayan