Dark Reading

Empty Attestations: OT Lacks the Tools for Cryptographic Readiness

OT asset owners are being asked by regulators to attest to their post-quantum cryptographic readiness without the appropriate ...
Dark Reading

Adobe Patches Actively Exploited Zero-Day That Lingered for Months

An attacker has been using maliciously crafted PDF files to exploit a zero-day in Adobe Acrobat and Reader for at least four ...
Dark Reading

CSA: CISOs Should Prepare for Post-Mythos Exploit Storm

A Cloud Security Alliance (CSA) paper warns of an "AI vulnerability storm" triggered by the introduction of Anthropic's ...
Dark Reading

APT41 Delivers 'Zero-Detection' Backdoor to Harvest Cloud Credentials

The China-backed threat group is targeting AWS, Google, Azure, and Alibaba cloud environments and using typosquatting to ...
Dark Reading

Beyond the Perimeter: Accelerating Lateral Segmentation Journey for Zero Trust Private Cloud

How lateral segmentation helps contain breaches in private cloud environments and limit attacker movement after the perimeter ...
Dark Reading

Russia's Forest Blizzard Nabs Rafts of Logins via SOHO Routers

Russia's APT28 is spying on global organizations by modifying just one DNS setting in vulnerable routers. A Russian espionage ...
Dark Reading

Your Next Breach Will Look Like Business as Usual

These are the fundamental detection model shifts cybersecurity teams need to make to keep up with the rising number of ...
Dark Reading

Grafana Patches AI Bug That Could Have Leaked User Data

By hiding malicious instructions on an attacker-controlled Web page, AI could ingest orders as benign and return sensitive ...
Dark Reading

'BlueHammer' Windows Zero-Day Exploit Signals Microsoft Bug Disclosure Issues

Chaotic Eclipse' released a PoC exploit for a zero-day flaw that allows for system takeover by a local user, citing an ...
Dark Reading

Can Anthropic Keep Its Exploit-Writing AI Out of the Wrong Hands?

Its Mythos Preview model, which can allegedly find and exploit critical zero-days, also comes with certain controls, the ...
Dark Reading

AI-Led Remediation Crisis Prompts HackerOne to Pause Bug Bounties

Discovery used to be the bottleneck for open source bugs, but with automated discovery, remediation's the bottleneck, which ...
Dark Reading

FINRA Launches Financial Intelligence Fusion Center to Combat Cybersecurity and Fraud Threats

WASHINGTON — FINRA announced today the launch of the Financial Intelligence Fusion Center (FIFC), a secure portal for FINRA ...