Cyberattack Gold: SBOMs Offer an Easy Census of Vulnerable Software

Attackers will likely use software bills-of-material (SBOMs) for searching for software potentially vulnerable to specific software flaws. [TechWeb]( Follow Dark Reading: [RSS]( April 29, 2024 LATEST SECURITY NEWS & COMMENTARY [Cyberattack Gold: SBOMs Offer an Easy Census of Vulnerable Software]( Attackers will likely use software bills-of-material (SBOMs) for searching for software potentially vulnerable to specific software flaws. [Palo Alto Updates Remediation for Max-Critical Firewall Bug]( Though PAN originally described the attacks exploiting the vulnerability as being limited, they are increasingly growing in volume, with more exploits disclosed by outside parties. [CISO Corner: Evil SBOMs; Zero-Trust Pioneer Slams Cloud Security; MITRE's Ivanti Issue]( Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps. Also included: security license mandates; a move to four-day remediation requirements; lessons on OWASP for LLMs. [Thousands of Qlik Sense Servers Open to Cactus Ransomware]( The business intelligence servers contain vulnerabilities that Qlik patched last year, but which Cactus actors have been exploiting since November. Swathes of organizations have not yet been patched. [Minimum Viable Compliance: What You Should Care About and Why]( Understand what security measures you have in place, what you need to keep secure, and what rules you have to show compliance with. [Military Tank Manual, 2017 Zero-Day Anchor Latest Ukraine Cyberattack]( The targeted operation utilized CVE-2017-8570 as the initial vector and employed a notable custom loader for Cobalt Strike, yet attribution to any known threat actor remains elusive. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Attacker Social-Engineered Backdoor Code Into XZ Utils]( Unlike the SolarWinds and CodeCov incidents, all that it took for an adversary to nearly pull off a massive supply chain attack was some slick social engineering and a string of pressure emails. [The Biggest 2024 Elections Threat: Kitchen-Sink Attack Chains]( Hackers can influence voters with media and breach campaigns, or try tampering with votes. Or they can combine these tactics to even greater effect. [SolarWinds 2024: Where Do Cyber Disclosures Go From Here?]( Get updated advice on how, when, and where we should disclose cybersecurity incidents under the SEC's four-day rule after SolarWinds, and join the call to revamp the rule to remediate first. [Digital Blitzkrieg: Unveiling Cyber-Logistics Warfare]( Cyberattacks on logistics are becoming increasingly common, and the potential impact is enormous. [MORE]( PRODUCTS & RELEASES [Jason Haddix Joins Flare As Field CISO]( [MITRE's Cyber Resiliency Engineering Framework Aligns With DoD Cyber Maturity Model Cert]( [New Research Suggests Africa Is Being Used As a 'Testing Ground' for Nation State Cyber Warfare]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [Cisco Zero-Days Anchor 'ArcaneDoor' Cyber-Espionage Campaign]( Attacks by a previously unknown threat actor leveraged two bugs in firewall devices to install custom backdoors on several government networks globally. LATEST FROM THE EDGE [Held Back: What Exclusion Looks Like in Cybersecurity]( You can't thinking about inclusion in the workplace without first understanding what kinds of exclusive behaviors prevent people from advancing in their careers. LATEST FROM DR TECHNOLOGY [J&J Spin-Off CISO on Maximizing Cybersecurity]( How the CISO of Kenvue, a consumer healthcare company spun out from Johnson & Johnson, combined tools and new ideas to build out the security program. LATEST FROM DR GLOBAL [Philippines Pummeled by Assortment of Cyberattacks & Misinformation Tied to China]( The volume of malicious cyber activity against the Philippines quadrupled in the first quarter of 2024 compared to the same period in 2023. WEBINARS - [Why Effective Asset Management is Critical to Enterprise Cybersecurity]( - [Is AI Identifying Threats to Your Network?]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [ESG E-Book: Taking a Holistic Approach to Securing Cloud-Native Application Development]( - [The Cloud Threat Landscape: Security learnings from analyzing 500+ cloud environments]( - [The Future of Cloud Security: Attack Paths & Graph-based Technology]( - [Application Security's New Mandate in a DevOps World]( - [Understanding Today's Threat Actors]( - [Use the 2023 MITRE ATT&CK Evaluation Results for Turla to Inform EDR Buying Decisions]( - [Secure Access for Operational Technology at Scale]( [View More White Papers >>]( FEATURED REPORTS - [Industrial Networks in the Age of Digitalization]( - [Zero-Trust Adoption Driven by Data Protection]( - [How Enterprises Assess Their Cyber-Risk]( [View More Dark Reading Reports >>]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=123105&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_04.29.24&sp_cid=53233&utm_content=DR_NL_Dark%20Reading%20Daily_04.29.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#bd If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)