Vulnerabilities & Threats

More Topics
Statue of Prometheus, viewed from the back
Сloud Security
336K Prometheus Instances Exposed to DoS, 'Repojacking'336K Prometheus Instances Exposed to DoS, 'Repojacking'

Open source Prometheus servers and exporters are leaking plaintext passwords and tokens, along with API addresses of internal locations.

byNate Nelson, Contributing Writer
Dec 12, 2024
|
1 Min Read
Salt shakers with a blue and while background
Vulnerabilities & Threats
Efforts to Secure US Telcos Beset by Salt Typhoon Might Fall FlatEfforts to Secure US Telcos Beset by Salt Typhoon Might Fall Flat
byNate Nelson, Contributing Writer
Dec 12, 2024
1 Min Read
A stop sign that misspells it SOTP. To err is human.
Cyberattacks & Data Breaches
Cybersecurity Lessons From 3 Public BreachesCybersecurity Lessons From 3 Public Breaches
byDmytro Tereshchenko
Dec 11, 2024
1 Min Read
Hand reaching into a screen of 1s and 0s
Cyberattacks & Data Breaches
Tips for Preventing Breaches in 2025Tips for Preventing Breaches in 2025
byPukar C. Hamal
Dec 11, 2024
1 Min Read
The words "Zero-day exploit" on a computer keyboard.
Cyberattacks & Data Breaches
'Termite' Ransomware Likely Behind Cleo Zero-Day Attacks'Termite' Ransomware Likely Behind Cleo Zero-Day Attacks
byJai Vijayan, Contributing Writer
Dec 10, 2024
1 Min Read
The Debating Chamber of the Scottish Parliament in Holyrood, Edinburgh, Scotland
Cyberattacks & Data Breaches
Scottish Parliament TV at Risk From DeepfakesScottish Parliament TV at Risk From Deepfakes
byKristina Beek, Associate Editor, Dark Reading
Dec 10, 2024
1 Min Read
Metal chain with a broken link
Vulnerabilities & Threats
Lessons From the Largest Software Supply Chain Incidents
Lessons From the Largest Software Supply Chain Incidents
Dec 10, 2024
|
1 Min Read
byEldan Ben-Haim, Chief Architect Officer, Apiiro
The words "zero-day" written in a line of code on a computer screen
Application Security
Microsoft NTLM Zero-Day to Remain Unpatched Until April
Microsoft NTLM Zero-Day to Remain Unpatched Until April
Dec 9, 2024
|
1 Min Read
byJai Vijayan, Contributing Writer
Gloved hand stealing money out of man's shirt pocket
Cyberattacks & Data Breaches
Millionaire Airbnb Phishing Ring Busted Up by Police
Millionaire Airbnb Phishing Ring Busted Up by Police
Dec 9, 2024
|
1 Min Read
byBecky Bracken, Senior Editor, Dark Reading
QR code displayed on a mobile device next to lines of code with the outline of a shield with a padlock in the middle on top
Endpoint Security
Attackers Can Use QR Codes to Bypass Browser Isolation
Attackers Can Use QR Codes to Bypass Browser Isolation
Dec 9, 2024
|
1 Min Read
byElizabeth Montalbano, Contributing Writer
a patchwork quilt
Vulnerabilities & Threats
Google Launches Open Source Patch Validation Tool
Google Launches Open Source Patch Validation Tool
Dec 9, 2024
|
1 Min Read
byJennifer Lawinski, Contributing Writer
Globe with cybersecurity symbols circling it
Vulnerabilities & Threats
Large-Scale Incidents & the Art of Vulnerability Prioritization
Large-Scale Incidents & the Art of Vulnerability Prioritization
Dec 9, 2024
|
1 Min Read
byAudra Streetman, Senior Threat Intelligence Analyst, Splunk
software components connected development
Application Security
Open Source Security Priorities Get a Reshuffle
Open Source Security Priorities Get a Reshuffle
Dec 6, 2024
|
1 Min Read
byRobert Lemos, Contributing Writer
DMCA logo and gavel sitting on a computer keyboard
Cyber Risk
Library of Congress Offers AI Legal Guidance to Researchers
Library of Congress Offers AI Legal Guidance to Researchers
Dec 5, 2024
|
1 Min Read
byRobert Lemos, Contributing Writer
Mitel's corporate logo on an office building
Vulnerabilities & Threats
Bypass Bug Revives Critical N-Day in Mitel MiCollab
Bypass Bug Revives Critical N-Day in Mitel MiCollab
Dec 5, 2024
|
1 Min Read
byNate Nelson, Contributing Writer
Abstract image of red human figure surrounded by black human figures
Threat Intelligence
Trojan-as-a-Service Hits Euro Banks, Crypto Exchanges
Trojan-as-a-Service Hits Euro Banks, Crypto Exchanges
Dec 5, 2024
|
1 Min Read
byBecky Bracken, Senior Editor, Dark Reading
Bar graph that asks, Benefits of GenAI/LLM: What are the benefits of using GenAI and/or LLMs in a cybersecurity program?
Vulnerabilities & Threats
LLMs Raise Efficiency, Productivity of Cybersecurity Teams
LLMs Raise Efficiency, Productivity of Cybersecurity Teams
Dec 5, 2024
|
1 Min Read
byKaren Spiegelman, Features Editor
Yellow robot arm in factor setting
Vulnerabilities & Threats
Vulnerability Management Challenges in IoT & OT Environments
Vulnerability Management Challenges in IoT & OT Environments
Dec 5, 2024
|
1 Min Read
byMalleswar Reddy Yerabolu, Senior Security Engineer, North Carolina Department of Health and Human Services
American and Chinese flags on computer keyboard keys
Cyberattacks & Data Breaches
CISA Issues Guidance to Telecom Sector on Salt Typhoon Threat
CISA Issues Guidance to Telecom Sector on Salt Typhoon Threat
Dec 4, 2024
|
1 Min Read
byJai Vijayan, Contributing Writer
A magnifying glass hovering over the Veeam logo on its webpage
Vulnerabilities & Threats
Veeam Urges Updates After Discovering Critical Vulnerability
Veeam Urges Updates After Discovering Critical Vulnerability
Dec 4, 2024
|
1 Min Read
byKristina Beek, Associate Editor, Dark Reading
Rubber stamped labeled REGULATIONS, with a binder filled with paper behind it
Vulnerabilities & Threats
Navigating the Changing Landscape of Cybersecurity Regulations
Navigating the Changing Landscape of Cybersecurity Regulations
Dec 4, 2024
|
1 Min Read
byMichael McLaughlin, Co-Leader, Cybersecurity and Data Privacy Practice Group, Buchanan Ingersoll & Rooney
Hypertext Transfer Protocol Secure Concept, with representations of tools and documents and certificates
Vulnerabilities & Threats
Digital Certificates With Shorter Lifespans Reduce Security Vulnerabilities
Digital Certificates With Shorter Lifespans Reduce Vulnerabilities
Dec 4, 2024
|
1 Min Read
byStephen Lawton, Contributing Writer
Concept illustration of a content delivery network on a world map
Application Security
Misconfigured WAFs Heighten DoS, Breach Risks
Misconfigured WAFs Heighten DoS, Breach Risks
Dec 3, 2024
|
1 Min Read
byJai Vijayan, Contributing Writer
PR Logo
Vulnerabilities & Threats
KnowBe4 Releases the Latest Phishing Trends in Q3 2024 Phishing Report
KnowBe4 Releases the Latest Phishing Trends in Q3 2024 Phishing Report
Dec 3, 2024
|
1 Min Read
Words "accelerating growth" appear in white text on blue background of wave-like designs, accompanied by the Informa TechTarget logo and company name.
Cybersecurity Operations
Note From the Editor-in-Chief
Note From the Editor-in-Chief
Dec 3, 2024
|
1 Min Read
byKelly Jackson Higgins, Editor-in-Chief, Dark Reading
Cisco logo sign outside of a building
Vulnerabilities & Threats
Decade-Old Cisco Vulnerability Under Active Exploit
Decade-Old Cisco Vulnerability Under Active Exploit
Dec 3, 2024
|
1 Min Read
byKristina Beek, Associate Editor, Dark Reading
Group of co-workers talking together while sitting in a circle in an office
Vulnerabilities & Threats
Cyber-Unsafe Employees Increasingly Put Orgs at Risk
Cyber-Unsafe Employees Increasingly Put Orgs at Risk
Dec 3, 2024
|
1 Min Read
byKristina Beek, Associate Editor, Dark Reading
Gold and black spider sitting on a web
Cyberattacks & Data Breaches
Venom Spider Spins Web of New Malware for MaaS Platform
Venom Spider Spins Web of Malware for MaaS Platform
Dec 3, 2024
|
1 Min Read
byElizabeth Montalbano, Contributing Writer
A gray wolf standing in the snow
Cyber Risk
'White FAANG' Data Export Attack: A Gold Mine for PII Threats
'White FAANG' Data Export Attack: A Gold Mine for PII Threats
Dec 3, 2024
|
1 Min Read
byNate Nelson, Contributing Writer
Form reading "Do you have a cyber incident response plan?" with "yes" box checked
Cyberattacks & Data Breaches
Incident Response Playbooks: Are You Prepared?
Incident Response Playbooks: Are You Prepared?
Dec 2, 2024
|
1 Min Read
byJames Bruhl, Director of Cyber Threat Intelligence, DefenseStorm
Lyft Signage Logo on Top of Glass Building. Workplace Transport Company Office lit by pink sunset.
Vulnerabilities & Threats
How AI Is Enhancing Security in Ridesharing
How AI Is Enhancing Security in Ridesharing
Nov 29, 2024
|
1 Min Read
byRachita Naik, Machine Learning Engineer
A blue credit card on a fish hook being dangled above a computer keyboard
Application Security
Sneaky Skimmer Malware Targets Magento Sites Ahead of Black Friday
Sneaky Skimmer Malware Targets Magento Sites Ahead of Black Friday
Nov 27, 2024
|
1 Min Read
byElizabeth Montalbano, Contributing Writer
A still from the famous orgasm scene in "When Harry Met Sally"
Application Security
'RomCom' APT Mounts Zero-Day, Zero-Click Browser Escapes in Firefox, Tor
'RomCom' APT Mounts Zero-Day, Zero-Click Browser Escapes
Nov 26, 2024
|
1 Min Read
byNate Nelson, Contributing Writer
Male hand holding a tablet, with a car floating above it; black background
Vulnerabilities & Threats
My Car Knows My Secrets, and I'm (Mostly) OK With That
My Car Knows My Secrets, and I'm (Mostly) OK With That
Nov 26, 2024
|
1 Min Read
byKyle Hanslovan, CEO & Co-Founder, Huntress
phishing login credentials financial services FS-ISAC
Cybersecurity Operations
Phishing Prevention Framework Reduces Incidents by Half
Phishing Prevention Framework Cuts Abuse Incidents in Half
Nov 25, 2024
|
1 Min Read
byRobert Lemos, Contributing Writer

Editor's Choice

A woman sitting at a laptop and holding a mobile device, the screens of both displaying a green check mark in a circle
Cyberattacks & Data Breaches
Researchers Crack Microsoft Azure MFA in an HourResearchers Crack Microsoft Azure MFA in an Hour
byElizabeth Montalbano, Contributing Writer
Dec 11, 2024
4 Min Read
The words "zero-day" written in a line of code on a computer screen
Application Security
Microsoft NTLM Zero-Day to Remain Unpatched Until AprilMicrosoft NTLM Zero-Day to Remain Unpatched Until April
byJai Vijayan, Contributing Writer
Dec 9, 2024
3 Min Read
A patchwork quilt
Application Security
Actively Exploited Zero-Day, Critical RCEs Lead Microsoft Patch TuesdayMicrosoft Fixes Active Zero-Day, Critical RCEs on Patch Tuesday
byTara Seals, Managing Editor, News, Dark Reading
Dec 10, 2024
5 Min Read
Reports
More Reports
Webinars
More Webinars
White Papers
More Whitepapers
Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Subscribe