Attackers Abuse Google Ad Feature to Target Slack, Notion Users

Campaign distributes malware disguised as legitimate installers for popular workplace collaboration apps by abusing a traffic-tracking feature. [TechWeb]( Follow Dark Reading: [RSS]( April 03, 2024 LATEST SECURITY NEWS & COMMENTARY [Attackers Abuse Google Ad Feature to Target Slack, Notion Users]( Campaign distributes malware disguised as legitimate installers for popular workplace collaboration apps by abusing a traffic-tracking feature. ['Unfaking' News: How to Counter Disinformation Campaigns in Global Elections]( What cybersecurity professionals around the world can do to defend against the scourge of online disinformation in this year's election cycle. [NIST Wants Help Digging Out of Its NVD Backlog]( The National Vulnerability Database can't keep up, and the agency is calling for a public-private partnership to manage it going forward. [China-Linked Threat Actor Taps 'Peculiar' Malware to Evade Detection]( UNAPIMON works by meticulously disabling hooks in Windows APIs for detecting malicious processes. [Instilling the Hacker Mindset Organizationwide]( It's critical for security teams to stay vigilant not only when it comes to major security issues, but also with minor lags in security best practice. [HHS Plans for Cyber 'One-Stop Shop' After United Healthcare Attack]( The initiative is meant to provide more resources and better strategies for healthcare entities that face an increasing amount of cybersecurity challenges. [(Sponsored Article) Device Diversity: Don't Be in the Dark]( A comprehensive approach to device security preserves employee privacy while providing complete visibility into your total attack surface. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Are You Affected by the Backdoor in XZ Utils?]( In this Tech Tip, we outline how to check whether a system is impacted by the newly discovered backdoor in the open source xz compression utility. [AT&T Confirms 73M Customers Affected in Data Leak]( AT&T denies any evidence of unauthorized access but admits that a data set released on the Dark Web including Social Security numbers and other sensitive information on tens of millions of customers is genuine. [Collaboration Needed to Fight Ransomware]( A global proactive and collaborative approach to cybersecurity, not just in public/private partnerships, is key to fighting back against increasingly professional ransomware gangs. [Microsoft Beefs Up Defenses in Azure AI]( Microsoft adds tools to protect Azure AI from threats such as prompt injection, as well as to give developers the capabilities to ensure generative AI apps are more resilient to model and content manipulation attacks. [MORE]( PRODUCTS & RELEASES [New Cyber Threats to Challenge Financial Services Sector in 2024]( [Akamai Research Finds 29% of Web Attacks Target APIs]( [Kaspersky Identifies Three New Android Malware Threats]( [Pathlock Introduces Continuous Controls Monitoring to Reduce Time and Costs]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [XZ Utils Backdoor Implanted in Carefully Executed, Multiyear Supply Chain Attack]( Had a Microsoft developer not spotted the malware when he did, the outcome could have been much worse. LATEST FROM THE EDGE [Name That Edge Toon: Defying Gravity]( Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. LATEST FROM DR TECHNOLOGY [Fortanix Builds Private Search for AI]( Fortanix is working on technologies to build a security wall around AI search. LATEST FROM DR GLOBAL [Ransomware, Junk Bank Accounts: Cyber Threats Proliferate in Vietnam]( An economic success story in Asia, Vietnam is seeing more manufacturing and more business investment. But with that comes a significant uptick in cybercrime as well. WEBINARS - [Securing Code in the Age of AI]( - [Guarding the Cloud: Top 5 Cloud Security Hacks and How You Can Avoid Them]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [Making Sense of Your Security Data: The 6 Hardest Problems]( - [Use the 2023 MITRE ATT&CK Evaluation Results for Turla to Inform EDR Buying Decisions]( - [A Solution Guide to Operational Technology Cybersecurity]( - [Causes and Consequences of IT and OT Convergence]( - [2023 Gartner Magic Quadrant for Single-Vendor SASE]( - [Zero Trust Access For Dummies, 2nd Fortinet Special Edition]( - [2023 Work-from-Anywhere Global Study]( [View More White Papers >>]( FEATURED REPORTS - [Industrial Networks in the Age of Digitalization]( - [Zero-Trust Adoption Driven by Data Protection]( - [How Enterprises Assess Their Cyber-Risk]( [View More Dark Reading Reports >>]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=122532&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_04.03.24&sp_cid=52827&utm_content=DR_NL_Dark%20Reading%20Daily_04.03.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#7a If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)