- COVID-19: Latest Security News & Commentary
Check out Dark Reading's updated, exclusive news and commentary surrounding the coronavirus pandemic.
- 6 Tips for Getting the Most From Nessus
Books have been written on using the powerful network-discovery and vulnerability-scanning tool. These tips will help you get started.
- Pen Testing ROI: How to Communicate the Value of Security Testing
There are many reasons to pen test, but the financial reasons tend to get ignored.
- Study Finds 15 Billion Stolen, Exposed Credentials in Criminal Markets
Data is fueling account takeover attacks in a big way, Digital Shadows says.
- New Fraud Ring "Bargain Bear" Brings Sophistication to Online Crime
The ring tests the validity of stolen credentials to be used in fraud through an online marketplace.
- More Malware Found Preinstalled on Government Smartphones
Researchers report the American Network Solutions UL40 smartphone comes with compromised apps.
- As More People Return to Travel Sites, So Do Malicious Bots
Attacks against travel-related websites are on the rise as the industry begins to slowly recover from COVID-19, new data shows.
- US Charges Kazakhstani Citizen With Hacking Into More Than 300 Orgs
The accused man, and members of his cybercriminal group, allegedly made at least $1.5 million hacking into companies and selling access to systems over the past three years.
- How Advanced Attackers Take Aim at Office 365
Researchers discuss how adversaries use components of Office 365 that are poorly understood and not closely monitored.
- Fresh Options for Fighting Fraud in Financial Services
Fraud prevention requires a consumer-centric, data sharing approach.
- Why Cybersecurity's Silence Matters to Black Lives
The industry is missing an opportunity to educate the public about bad actors who capitalize off of protest, voting rights education and police brutality petitions through social engineering and phish …
- A Most Personal Threat: Implantable Devices in Secure Spaces
Do implantable medical devices pose a threat to secure communication facilities? A Virginia Tech researcher says they do, and the problem is growing.
- EDP Renewables Confirms Ransomware Attack
Its North American branch was notified of the attack because intruders reportedly gained access to 'at least some information' stored in its systems.
- Treasury Releases Fraud and Money Mule ID Tips
A new advisory from FinCEN helps financial institutions spot illicit activities and actors.
- Microsoft Seizes Domains Used in COVID-19-Themed Attacks
Court grants company's bid to shut down infrastructure used in recent campaigns against Office 365 users.
- Drone Path Often Reveals Operator's Location
The threat posed by drones to critical infrastructure and other operational technology is made more serious by the inability of law enforcement to locate operators, researchers say.
- Russian Cyber Gang 'Cosmic Lynx' Focuses on Email Fraud
Cosmic Lynx takes a sophisticated approach to business email compromise and represents a shift in tactics for Russian cybercriminals.
- Framing the Security Story: The Simplest Threats Are the Most Dangerous
Don't be distracted by flashy advanced attacks and ignore the more mundane ones.
- Applying the 80-20 Rule to Cybersecurity
How security teams can achieve 80% of the benefit for 20% of the work.
- BEC Busts Take Down Multimillion-Dollar Operations
The two extraditions of business email compromise attackers indicate a step forward for international law enforcement collaboration.