Dark Reading

A security researcher explains the dangers of poor visibility in the cloud and a new strategy to evaluate IAM exposure in Google Cloud Platform.

Don't ignore cyber operations outside US and European interests, researcher says. We can learn a lot from methods used by attackers that aren't among the usual suspects.

The "OODA loop" shows us how to secure cloud-native deployments and prevent breaches before they occur.

Cybersecurity training needs an overhaul, though the training itself is only one small part of how security teams can influence user behavior.

The malware takes advantage of how the Windows command line interpreter works to try and slip past anti-detection tools, Huntress Labs says.

Several apps available on the Google Play Store, including two made by Chinese Internet giant Baidu, leaked information about the phone's hardware and location without the user's knowledge, research finds.

As data exfiltration threats and bigger ransom requests become the norm, security professionals are advancing from the basic "keep good backups" advice.

The agency urges shoppers to be cautious of fraudulent websites, unsolicited emails, and unencrypted financial transactions.

Researchers who last year hacked popular voice assistants with laser pointers take their work to the next level.

The startup, founded by former white-hat hackers, has secured a $4 million seed round to close security gaps in cloud environments.

Leveraging the right response strategy, following the regulations, and understanding the ransom entity are the fundamentals in any ransomware outbreak.

Changes are coming to the privacy landscape, including more regulations and technologies.

Remote workforce heightens the need to protect printing systems against intrusion and compromise.

A new analysis of 11 relatively inexpensive video doorbells uncovered high-risk vulnerabilities in all of them.

Companies should plan their future workforce model now, so they have time to implement the necessary tools, including cybersecurity and seamless remote access, a Forrester report says.

Researchers illustrate the evolution toward more complete and effective ransomware attacks designed to cripple target organizations.

An FPGA-based system could change the balance of power between hardware attackers and defenders within IT security.

Premier League soccer club says the attack didn't affect its website and app, and it doesn't appears to have exposed any fan or customer data either.

APT group TA416 reemerges with new changes to its documented tool sets so it can continue launching espionage campaigns.

Answering these questions will help CISOs define a plan and take the organization in a positive direction.