Vulnerabilities & Threats

More Topics

Insider Threats

phishing login credentials financial services FS-ISAC

Cybersecurity Operations

Phishing Prevention Framework Reduces Incidents by Half Phishing Prevention Framework Cuts Abuse Incidents in Half

The anti-fraud plan calls for companies to create a pipeline for compiling attack information, along with formal processes to disseminate that intelligence across business groups.

byRobert Lemos, Contributing Writer

Nov 25, 2024

|

1 Min Read

Water treatment plant viewed from above

Vulnerabilities & Threats

Leaky Cybersecurity Holes Put Water Systems at Risk Leaky Cybersecurity Holes Put Water Systems at Risk

byRobert Lemos, Contributing Writer

Nov 22, 2024

1 Min Read

Red padlock on top of a shield shape, with circuit board imagery superimposed; background is orange-yellow

Vulnerabilities & Threats

Going Beyond Secure by Demand Going Beyond Secure by Demand

bySaša Zdjelar

Nov 22, 2024

1 Min Read

Outlines of two figures facing each other, one with the US flag and one with the Chinese flagged superimposed; the figures have circuits for heads

China's Cyber Offensives Built in Lockstep With Private Firms, Academia China's Cyber Offensives Built in Lockstep With Private Firms, Academia

byJai Vijayan, Contributing Writer

Nov 22, 2024

1 Min Read

puzzle pieces with combination lock to represent secure coding practices

Application Security

MITRE: Cross-Site Scripting Is 2024's Most Dangerous Software Weakness MITRE: Cross-Site Scripting Is 2024's Most Dangerous Software Weakness

byBecky Bracken, Senior Editor, Dark Reading

Nov 21, 2024

1 Min Read

Microsoft logo on the side of a building

Cybersecurity Operations

Microsoft Takes Action Against Phishing-as-a-Service Platform Microsoft Takes Action Against Phishing-as-a-Service Platform

byDark Reading Staff

Nov 21, 2024

1 Min Read

Hand reaching from bottom of image, disturbing 1s and 0s

Cyberattacks & Data Breaches

Cybersecurity Is Critical, but Breaches Don't Have to Be Disasters

Cybersecurity Is Critical, but Breaches Don't Have to Be Disasters

Flat layout of different Apple products on a gray background

Cyberattacks & Data Breaches

Apple Urgently Patches Actively Exploited Zero-Days

Apple Urgently Patches Actively Exploited Zero-Days

byDark Reading Staff

Earth, viewed from space, with cybersecurity symbols floating around it

Vulnerabilities & Threats

Small US Cyber Agencies Are Underfunded & That's a Problem

Small US Cyber Agencies Are Underfunded & That's a Problem

byMichael Daniel

An artistic portrayal of hell featuring mountains and lakes of fire

Cyberattacks & Data Breaches

Linux Variant of Helldown Ransomware Targets VMware ESXi Systems

Linux Variant of Helldown Ransomware Targets VMware ESXi Systems

byJai Vijayan, Contributing Writer

Screwdrivers on a white keyboard with an orange key reading "Penetration test"; a red pen is also on the keyboard

Vulnerabilities & Threats

Russian Ransomware Gangs on the Hunt for Pen Testers

Russian Ransomware Gangs on the Hunt for Pen Testers

byDark Reading Staff

Vulnerabilities & Threats

Security Industry Association Announces SIA RISE Scholarship Awardees

Security Industry Association Announces SIA RISE Scholarship Awardees

Vulnerabilities & Threats

Bugcrowd Names Trey Ford as CISO

Bugcrowd Names Trey Ford as CISO

Jen Easterly testifies before committee on Homeland Security during a hearing about evolving the US approach to cybersecurity

Vulnerabilities & Threats

Jen Easterly, CISA Director, to Step Down on Inauguration Day

Jen Easterly, CISA Director, to Step Down on Inauguration Day

byDark Reading Staff

Сloud Security

Critical WordPress Plug-in Flaw Exposes 4M Sites to Takeover

Critical WordPress Plug-in Flaw Exposes 4M Sites to Takeover

byElizabeth Montalbano, Contributing Writer

A group of people holding devices sitting around a bed.

Remote Workforce

Name That Toon: Meeting of Minds

Name That Toon: Meeting of Minds

byJohn Klossner, Cartoonist

Shadow of hot-air balloon over the Namib desert. Namib-Naukluft Park, Namibia

To Map Shadow IT, Follow Citizen Developers

To Map Shadow IT, Follow Citizen Developers

byMichael Bargury

Cyberattacks & Data Breaches

Palo Alto Networks Patches Critical Zero-Day Firewall Bug

Palo Alto Networks Patches Critical Zero-Day Firewall Bug

byBecky Bracken, Senior Editor, Dark Reading

Сloud Security

DHS Releases Secure AI Framework for Critical Infrastructure

DHS Releases Secure AI Framework for Critical Infrastructure

byDark Reading Staff

Сloud Security

Microsoft Pulls Exchange Patches Amid Mail Flow Issues

Microsoft Pulls Exchange Patches Amid Mail Flow Issues

byDark Reading Staff

Signpost reading "THREATS" with a read background

Vulnerabilities & Threats

Combating the Rise of Federally Aimed Malicious Intent

Combating the Rise of Federally Aimed Malicious Intent

Vulnerabilities & Threats

Varonis Warns of Bug Discovered in PostgreSQL PL/Perl

Varonis Warns of Bug Discovered in PostgreSQL PL/Perl

byDark Reading Staff

The words SECURITY ALERT in red on a black screen otherwise filled with blue letters and numbers

Vulnerabilities & Threats

The Vendor's Role in Combating Alert Fatigue

The Vendor's Role in Combating Alert Fatigue

bySupradeep Bokkasam

Capitol Building in Washington, DC, against a blue sky

Vulnerabilities & Threats

Washington's Cybersecurity Storm of Complacency

Washington's Cybersecurity Storm of Complacency

byJeffrey Wells

A submarine underwater

Cyberattacks & Data Breaches

Toolkit Vastly Expands APT41's Surveillance Powers

Toolkit Vastly Expands APT41's Surveillance Powers

byJai Vijayan, Contributing Writer

Red ZERO-DAY text amid yellow binary code

Cyberattacks & Data Breaches

Zero-Days Win the Prize for Most Exploited Vulns

Zero-Days Wins the Prize for Most Exploited Vulns

byDark Reading Staff

A person's finger about to click on the LinkedIn app on a phone

Cyberattacks & Data Breaches

Iranian Cybercriminals Target Aerospace Workers via LinkedIn

Iranian Cybercriminals Target Aerospace Workers via LinkedIn

byDark Reading Staff

The letters "LLM" in grey and purple 3D text on top of a computer component with the words "large language model" underneath in white

Сloud Security

Google AI Platform Bugs Leak Proprietary Enterprise LLMs

Google AI Platform Bugs Leak Proprietary Enterprise LLMs

byElizabeth Montalbano, Contributing Writer

Computer chip labeled AI, on top of circuit boards

Vulnerabilities & Threats

How CISOs Can Lead the Responsible AI Charge

How CISOs Can Lead the Responsible AI Charge

A laptop screen showing a blue screen of death

Сloud Security

2 Zero-Day Bugs in Microsoft's Nov. Update Under Active Exploit

2 Zero-Day Bugs in Microsoft's Nov. Update Under Active Exploit

byJai Vijayan, Contributing Writer

Amazon.com website viewed on an iPad

Сloud Security

Amazon Employee Data Compromised in MOVEit Breach

Amazon Employee Data Compromised in MOVEit Breach

byDark Reading Staff

Mobile device with the GitHub app displayed on the screen

Сloud Security

'GoIssue' Cybercrime Tool Targets GitHub Developers En Masse

'GoIssue' Cybercrime Tool Targets GitHub Developers En Masse

byElizabeth Montalbano, Contributing Writer

Thief in ski mask running away with laptop

Сloud Security

Citrix 'Recording Manager' Zero-Day Bug Allows Unauthenticated RCE

Citrix 'Recording Manager' Zero-Day Allows Unauthenticated RCE

byTara Seals, Managing Editor, News, Dark Reading

The words SECURITY BY DESIGN in green, in front of a man in a suit pointing at them; transparent padlocks over the image

Vulnerabilities & Threats

The Power of the Purse: How to Ensure Security by Design

Power of the Purse: How to Ensure Security by Design

$Halliburton hydraulic fracturing sand plant in Richardson, North Dakota$

Cybersecurity Operations

Halliburton Optimistic Amid $35M Data Breach Loss

Halliburton Optimistic Amid $35M Data Breach Loss

byDark Reading Staff

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.