Src |
Date (GMT) |
Titre |
Description |
Tags |
Stories |
Notes |
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-22 20:30:00 |
Entitle Brings Fine-Grained Cloud Permissions Management Out of Stealth (lien direct) |
The platform uses no-code policy workflows to automate the provisioning and revoking of permissions. |
General Information
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-22 19:59:11 |
1 in 4 CISOs Wants to Say Sayonara to Security (lien direct) |
Thanks to burnout and stress, Gartner predicts churn and even departure from profession among half of today's security leaders by 2025. |
Studies
Guideline
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-22 19:25:00 |
US Military Emails Exposed via Cloud Account (lien direct) |
A DoD email server hosted in the cloud (and now secured) had no password protection in place for at least two weeks. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-22 18:00:00 |
Headwinds Don\'t Have to Be a Drag on Your Security Effectiveness (lien direct) |
Despite increased threats, an uncertain economy, and increasing automation, your organization can still thrive. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-22 17:55:45 |
Phishing Fears Ramp Up on Email, Collaboration Platforms (lien direct) |
It's a banner year for attacks coming through traditional email as well as newer collaboration technologies, such as Slack and Microsoft Teams. What's next? |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-22 17:50:00 |
Google Delivers Record-Breaking $12M in Bug Bounties (lien direct) |
Google's Android and Chrome Vulnerability Reward Programs (VRPs) in particular saw hundreds of valid reports and payouts for security vulnerabilities discovered by ethical hackers. |
Vulnerability
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-22 17:16:00 |
Xcitium Brings \'Zero Dwell\' Capability to Legacy EDR Platforms (lien direct) |
Pas de details / No more details |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-22 16:25:00 |
Trend Micro Acquires SOC Technology Expert Anlyz (lien direct) |
Technology tuck-in enhances industry's broadest XDR security platform. |
Prediction
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-22 15:42:00 |
Exploit Code Released for Critical Fortinet RCE Bug (lien direct) |
Organizations are urged to update to the latest versions of FortiNAC to patch a flaw that allows unauthenticated attackers to write arbitrary files on the system. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-22 15:00:00 |
7 Tips for Mitigating Cyber-Risks to Your Corporate Social Media (lien direct) |
How to stay safe, even when tech-savvy admins can't tell the difference between a scam and the truth. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-22 15:00:00 |
4 Tips to Guard Against DDoS Attacks (lien direct) |
Attackers are now using multiple types of distributed denial-of-service (DDoS) attacks to take down sites. Here are some ways to defend and protect. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-22 03:30:00 |
How to Stop Attackers That Target Healthcare Imaging Data (lien direct) |
Attribute-based encryption could help keep sensitive metadata off of the Dark Web. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-22 00:07:00 |
Scrut Automation Raises Funding of $7.5M, Led by MassMutual Ventures, Lightspeed, and Endiya Partners (lien direct) |
With the fresh capital, Scrut aims to focus on simplifying risk management and infosec compliance for cloud-native SaaS, Fintech, and Healthtech companies |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-21 23:57:00 |
Black Hat to Launch Official Certification Program (lien direct) |
Pas de details / No more details |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-21 23:34:00 |
(Déjà vu) CREST Calls for Greater Equity, Inclusion and Diversity As Part of National Cyber Security Strategy (lien direct) |
Pas de details / No more details |
|
|
★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-21 23:20:00 |
Malwarebytes Expands Platform With New Application Block Capabilities (lien direct) |
Latest threat prevention module helps resource-strapped security teams block unsafe, untrusted or vulnerable applications. |
Threat
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-21 23:00:00 |
Analysts Slam Twitter\'s Decision to Disable SMS-Based 2FA (lien direct) |
Making the option available only to paid subscribers - while also claiming SMS authentication is broken - doesn't make sense, some say. Is it a cash grab? |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-21 18:45:13 |
Cyberthreats, Regulations Mount for Financial Industry (lien direct) |
Nation-state adversaries, new reporting regulations, and a fast-paced threat landscape mean that financial services and technology firms need to bolster their security posture. |
Threat
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-21 18:45:00 |
(Déjà vu) Name That Toon: Join the Club (lien direct) |
Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-21 18:40:00 |
Coinbase Crypto Exchange Ensnared in \'Oktapus\'-Related Smishing Attack (lien direct) |
Some employees' personal data was leaked, but the company responded swiftly to a socially engineered incident that gained access to legitimate employee login credentials. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-21 18:35:00 |
Third-Party Providers Create Identity and Access Control Challenges for Fintech Apps (lien direct) |
Fintech has drastically shifted the financial services industry toward digital technologies and, in so doing, has introduced a variety of new risks. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-21 18:08:30 |
Israel\'s Top Tech University Targeted by DarkBit Ransomware (lien direct) |
An Israeli university is being blackmailed by hackers. However, they aren't just after money but are looking to send a political message - and maybe something more. |
Ransomware
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-21 15:00:00 |
Insider Threats Don\'t Mean Insiders Are Threatening (lien direct) |
By implementing tools that enable internal users to do their jobs efficiently and securely, companies reduce insider threat risk by building insider trust. |
Threat
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-20 15:00:00 |
Modern Software: What\'s Really Inside? (lien direct) |
Open source has changed the software game from build or buy to assemble with care. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-20 14:01:00 |
Despite Breach, LastPass Demonstrates the Power of Password Management (lien direct) |
What's scarier than keeping all of your passwords in one place and having that place raided by hackers? Maybe reusing insecure passwords. |
|
LastPass
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-20 14:00:03 |
Researchers Create an AI Cyber Defender That Reacts to Attackers (lien direct) |
The system based on deep reinforcement learning can adapt to defenders' tactics and stop 95% of simulated attacks, according to its developers. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-20 14:00:00 |
Majority of Ransomware Attacks Last Year Exploited Old Bugs (lien direct) |
New research shows that 57 vulnerabilities that threat actors are currently using in ransomware attacks enable everything from initial access to data theft. |
Ransomware
Threat
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-17 23:05:00 |
Is OWASP at Risk of Irrelevance? (lien direct) |
A growing group of OWASP members and board leaders are calling for the AppSec group to make big changes to stay apace with modern development. |
Guideline
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-17 21:49:00 |
Check Point Boosts AppSec Focus With CNAPP Enhancements (lien direct) |
Established network security players like Check Point are responding to the shift to cloud-native applications, which have exposed more vulnerabilities in open source software supply chains. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-17 21:34:51 |
Novel Spy Group Targets Telecoms in \'Precision-Targeted\' Cyberattacks (lien direct) |
The primary victims so far have been employees of telcos in the Middle East, who were hit with custom backdoors via the cloud, in a likely precursor to a broader attack. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-17 21:00:00 |
Google Translate Helps BEC Groups Scam Companies in Any Language (lien direct) |
BEC gangs Midnight Hedgehog and Mandarin Capybara show how online marketing and translation tools are making it easy for these threat groups to scale internationally. |
Threat
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-17 19:00:40 |
Inglis Retires as National Cyber Director Ahead of Biden\'s Cybersecurity EO (lien direct) |
The long-time NSA and cyber specialist says he's exiting the public sector. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-17 18:20:00 |
Not Stoked: Burton Snowboards\' Online Orders Disrupted After Cyberattack (lien direct) |
The snow sports specialist is investigating to see what caused the operations-disrupting "cyber incident." |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-17 17:35:00 |
Massive GoAnywhere RCE Exploit: Everything You Need to Know (lien direct) |
Weeks after an exploit was first announced in a popular cloud-based file transfer service, could some organizations still be vulnerable? The answer is yes. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-17 15:00:00 |
AppSec Threats Deserve Their Own Incident Response Plan (lien direct) |
With a rearranging of priorities and good incident response plans, organizations can be ready to face the future of software attacks. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 22:34:00 |
ESXi Ransomware Update Outfoxes CISA Recovery Script (lien direct) |
New ESXiArgs-ransomware attacks include a workaround for CISA's decryptor, researchers find. |
Ransomware
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 22:10:00 |
Atlassian: Leaked Data Stolen via Third-Party App (lien direct) |
SiegedSec threat group leaked data that Atlassian says was taken from app used to coordinate in-office resources. |
Threat
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 21:10:00 |
SASE Market to Exceed Over $60B Between 2022 and 2027, According to Dell\'Oro Group (lien direct) |
Pas de details / No more details |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 21:00:00 |
MVP Vibe Fest Bridges Gap Between Athletics and Cybersecurity (lien direct) |
Top athletes compete both on and off the track in a mix of track and field events and cyber games. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 19:34:32 |
Cybersecurity Jobs Remain Secure Despite Recession Fears (lien direct) |
Only 10% of corporate executives expect to lay off members of cybersecurity teams in 2023, much lower than other areas, as companies protect hard-to-find skill sets. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 16:41:00 |
SideWinder APT Spotted Stealing Crypto (lien direct) |
The nation-state threat group has been attacking a wider range of victims and regions than previously thought. |
Threat
|
APT-C-17
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 15:35:00 |
Window Snyder\'s Start-up Launches Security Platform for IoT Device Makers (lien direct) |
Thistle's technology will give device makers a way to easily integrate features for secure updates, memory management, and communications into their products, Snyder says. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 15:00:00 |
Simplify to Survive: How Organizations Can Navigate Cyber-Risk (lien direct) |
Simplification can result in efficiencies, reduced overhead, and the ability to respond to cyber threats more quickly. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 08:00:00 |
Encrypted Traffic, Once Thought Safe, Now Responsible For Most Cyberthreats (lien direct) |
It's a classic attacker move: Use security protections against those who deploy them. But organizations can still defuse and prevent these encrypted attacks. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 02:00:00 |
Descope Handles Authentication So Developers Don\'t Have To (lien direct) |
Developers don't have to build authentication and user management from scratch, and can devote their energies to the core functions of the application, instead. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-16 01:00:00 |
Oligo Security Takes Aim at Open Source Vulnerabilities (lien direct) |
The startup's software helps organizations secure their containers in the cloud by teasing out which packages are running and which are vulnerable. |
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 22:50:00 |
ChatGPT Subs In as Security Analyst, Hallucinates Only Occasionally (lien direct) |
Incident response triage and software vulnerability discovery are two areas where the large language model has demonstrated success, although false positives are common. |
Vulnerability
|
ChatGPT
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 20:47:00 |
(Déjà vu) Brivo Reveals Top Security Trends for 2023: Convenience Is King in Securing the Hybrid Workplaces of the Future (lien direct) |
Factoring user experience and convenience into how employees and tenants access buildings is top concern for security professionals says benchmark industry survey. |
|
|
★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 20:45:00 |
Call for Speakers Now Open for the RH-ISAC Cyber Intelligence Summit (lien direct) |
Retail & Hospitality ISAC invites industry leaders, experts, and innovators to submit proposals for presentations and panel discussions. |
Guideline
|
|
★★★
|
![DarkReading.webp](./Ressources/img/DarkReading.webp) |
2023-02-15 20:18:00 |
GAO Calls for Improved Data Privacy Protections (lien direct) |
US federal watchdog agency outlines key measures for better protecting sensitive data under the federal government's control. |
|
|
★★★
|