Most cybersecurity vendors at risk due to internet-exposed IT assets.

Views expressed in this cybersecurity-cyber crime update are those of the reporters and correspondents.

Accessed on 06 March 2022, 1334 UTC.

Content supplied by “DarkReading.com.”

Source:  https://www.darkreading.com/

Please click link or scroll down to read your selections.

Latest News

More Than 70% of SOC Analysts Experiencing Burnout

Nearly 65% of security operations center (SOC) analysts are likely to change jobs in the next year, survey shows.

by Dark Reading Staff, Dark Reading

Mar 04, 2022

THREAT INTELLIGENCE
2 MIN READ

ARTICLE

Most Cybersecurity Vendors at Risk Due to Internet-Exposed IT Assets

Study shows more than 97% have exposed assets on AWS — among a wide range of other issues.

by Jai Vijayan, Contributing Writer

Mar 04, 2022

APPLICATION SECURITY
4 MIN READ

ARTICLE

Accelerated Ransomware Attacks Pressure Targeted Companies to Speed Response

Threat actors have focused on two ends of the spectrum — quick, impactful attacks or stealthy intrusions — making strong prevention and faster response more important for enterprises.

by Robert Lemos, Contributing Writer

Mar 03, 2022

RISK
5 MIN READ

ARTICLE

8-Character Passwords Can Be Cracked in Less than 60 Minutes

Researchers say passwords with less than seven characters can be hacked “instantly.”

by Dark Reading Staff, Dark Reading

Mar 03, 2022

ATTACKS/BREACHES
1 MIN READ

ARTICLE

Hundreds of Open Source Components Could Undermine Security, Census Finds

The Linux Foundation and Harvard University create lists of the top 500 most popular open source projects, highlighting critical software that needs to be secured.

by Robert Lemos, Contributing Writer

Mar 02, 2022

APPLICATION SECURITY
5 MIN READ

ARTICLE

7 Ways to Secure Collaboration Tools in Your Organization

The push to embrace Slack, Teams, and Zoom at work comes with new security risks for organizations.

by Steve Zurier, Contributing Writer

Mar 02, 2022

CLOUD
1 MIN READ

SLIDESHOW

Researchers Devise Attack for Stealing Data During Homomorphic Encryption

A vulnerability in a Microsoft crypto library gives attackers a way to figure out what data is being encrypted in lockpicker-like fashion.

by Jai Vijayan, Contributing Writer

Mar 02, 2022

APPLICATION SECURITY
4 MIN READ

ARTICLE

Companies’ Code Leaking More Passwords and Secrets

Software code pushed to online code repositories exposed twice as many secrets compared to last year, putting organizations’ security at risk.

by Robert Lemos, Contributing Writer

Mar 02, 2022

APPLICATION SECURITY
4 MIN READ

ARTICLE

MORE NEWS

Latest Commentary

DORA’s Global Reach and Why Enterprises Need to Prepare

The new EU regulation is a response to the rise of ransomware attacks and other new cyberthreats that have proliferated in the wake of the global pandemic.

by Ilias Chantzos, Global Privacy Officer and Head of EMEA Government Affairs, Broadcom

Mar 04, 2022

How to Get One Step Ahead of Mobile Attacks

The advent of so-called “dropper” apps, which deliver and install malware that can also be later updated, is an emerging threat vector for mobile users.

by Ralitsa Miteva, Manager of Digital Identity and Mobile Security, OneSpan

Mar 03, 2022

3 Ways to Expand Gender Diversity in Cybersecurity

Why this is important: A business that surrounds itself with the same kind of people who work on the same projects will not generate new or original ideas.

by Paulina Cakalli, Senior Data Analyst, Netacea

Mar 02, 2022

Reduce Risk With Better Cyber Due Diligence

Done incorrectly, due diligence can result in slower integration of assets, which increases acquisition costs associated and could reduce expected gains.

by Luke Tenery & Ross Rustici, Partner, StoneTurn / Managing Director, StoneTurn

Mar 02, 2022

Beyond the Hype: AI’s Future in Defensive Cybersecurity

Hybridizing signatures with artificial intelligence is making a significant difference in our ability to detect cyberattacks, including ransomware.

by Joshua Saxe, Chief Scientist, Sophos

Mar 01, 2022

MORE COMMENTARY
Cybersecurity In-Depth

Go to The Edge

How Retailers Can Address ‘Buy Now, Pay Later’ Fraud
As BNPL platforms grow in popularity, experts warn that cybercriminals could target them using synthetic identity fraud and first-party fraud.
CISO Checklist for Offboarding Security Staff
The Great Resignation strikes cybersecurity teams, too. Here’s a checklist for CISOs to ensure security is retained even when security staff is not.
Top 5 Interview Questions to Ask DevOps Candidates in 2022
It’s worthwhile to find candidates who have experience with models that embed security into their processes.
Tech News and Analysis

Go to DR Tech

Cybersecurity Mesh Architecture: Hope or Hype?
Gartner has touted CSMA as one of the top technology trends for this year. But what is it really?
Protecting Field Programmable Gate Arrays From Attacks
FPGAs can be part of physical systems in the aerospace, medical, or industrial fields, so a security compromise can be potentially serious.
Insider Threats Are More Than Just Malicious Employees
Humans are unpredictable and may make mistakes that could result in a security incident.

PARTNER PERSPECTIVES

Putting the X Factor in XDRWhile extended detection and response (XDR) is effectively considered an upgrade from endpoint detection and response, enterprises must still begin with a strong EDR foundation.
Feb 25, 2022

READ MORE FROM CROWDSTRIKE

Connect with us

Register for a
Subscribe to the
Follow us

Dark Reading Account

Dark Reading newsletter

@DarkReading

  • Gain full access to resources (events, white paper, webinars, reports, etc.)
  • Single sign-on to all Informa products

REGISTER

Get daily Dark Reading top stories every morning straight into your inbox

For the latest cybersecurity news and information, please check the blog sidebar, links, and twitter posts.

Russ Roberts

https://cyber-security-intelligence.org

https://paper.li/RussellRoberts (machine learning, artificial intelligence, IoT, information security)