Verizon DBIR: Basic Security Gaffes Underpin Bumper Crop of Breaches | UnitedHealth Testimony Reveals Security Fails

MOVEit drove a big chunk of the increase, but human vulnerability to social engineering and failure to patch known bugs led to a doubling of breaches since 2023, said Verizon Business. [TechWeb]( Follow Dark Reading: [RSS]( May 02, 2024 LATEST SECURITY NEWS & COMMENTARY [Verizon DBIR: Basic Security Gaffes Underpin Bumper Crop of Breaches]( MOVEit drove a big chunk of the increase, but human vulnerability to social engineering and failure to patch known bugs led to a doubling of breaches since 2023, said Verizon Business. [UnitedHealth Congressional Testimony Reveals Rampant Security Fails]( The breach was carried out with stolen Citrix credentials for an account that lacked multifactor authentication. Attackers went undetected for days, and Change Healthcare's backup strategy failed. [Microsoft Graph API Emerges as a Top Attacker Tool to Plot Data Theft]( Weaponizing Microsoft's own services for command-and-control is simple and costless, and it helps attackers better avoid detection. [R Programming Bug Exposes Orgs to Vast Supply Chain Risk]( The CVE-2024-27322 security vulnerability in R's deserialization process gives attackers a way to execute arbitrary code in target environments via specially crafted files. [Attackers Planted Millions of Imageless Repositories on Docker Hub]( The purported metadata for each these containers had embedded links to malicious files. [Licensed to Bill? Nations Mandate Certification & Licensure of Cybersecurity Pros]( Malaysia, Singapore, and Ghana are among the first countries to pass laws that require cybersecurity firms — and in some cases, individual consultants — to obtain licenses to do business, but concerns remain. [Cyberattack Gold: SBOMs Offer an Easy Census of Vulnerable Software]( Attackers will likely use software bills-of-material (SBOMs) for searching for software potentially vulnerable to specific software flaws. [CISO Corner: Evil SBOMs; Zero-Trust Pioneer Slams Cloud Security; MITRE's Ivanti Issue]( Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps. Also included: security license mandates; a move to four-day remediation requirements; lessons on OWASP for LLMs. ['Muddling Meerkat' Poses Nation-State DNS Mystery]( Likely China-linked adversary has blanketed the Internet with DNS mail requests over the past five years via open resolvers, furthering Great Firewall of China ambitions. But the exact nature of its activity is unclear. [Cisco Zero-Days Anchor 'ArcaneDoor' Cyber-Espionage Campaign]( Attacks by a previously unknown threat actor leveraged two bugs in firewall devices to install custom backdoors on several government networks globally. [The 6 Data Security Sessions You Shouldn't Miss at RSAC 2024]( Themed "The Art of Possible," this year's conference celebrates new challenges and opportunities in the age of AI. [The Cybersecurity Checklist That Could Save Your M&A Deal]( With mergers and acquisitions making a comeback, organizations need to be sure they safeguard their digital assets before, during, and after. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Addressing Risk Caused by Innovation]( By embracing a proactive approach to cyber-risk management, companies can better detect, prevent, and mitigate cyber threats while integrating the latest state-of-the-art technology. [Minimum Viable Compliance: What You Should Care About and Why]( Understand what security measures you have in place, what you need to keep secure, and what rules you have to show compliance with. [Name That Toon: Last Line of Defense]( Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. [Digital Blitzkrieg: Unveiling Cyber-Logistics Warfare]( Cyberattacks on logistics are becoming increasingly common, and the potential impact is enormous. [MORE]( PRODUCTS & RELEASES [ESET PROTECT Portfolio Now Includes New MDR Tiers and Features]( [New Research Suggests Africa Is Being Used As a 'Testing Ground' for Nation State Cyber Warfare]( [MITRE's Cyber Resiliency Engineering Framework Aligns With DoD Cyber Maturity Model Cert]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [Palo Alto Updates Remediation for Max-Critical Firewall Bug]( Though PAN originally described the attacks exploiting the vulnerability as being limited, they are increasingly growing in volume, with more exploits disclosed by outside parties. LATEST FROM THE EDGE [Held Back: What Exclusion Looks Like in Cybersecurity]( You can't think about inclusion in the workplace without first understanding what kinds of exclusive behaviors prevent people from advancing in their careers. LATEST FROM DR TECHNOLOGY [Why Haven't You Set Up DMARC Yet?]( DMARC adoption is more important than ever following Google's and Yahoo's latest mandates for large email senders. This Tech Tip outlines what needs to be done to enable DMARC on your domain. LATEST FROM DR GLOBAL [Philippines Pummeled by Assortment of Cyberattacks & Misinformation Tied to China]( The volume of malicious cyber activity against the Philippines quadrupled in the first quarter of 2024 compared to the same period in 2023. WEBINARS - [Assessing Software Supply Chain Risk]( - [Is AI Identifying Threats to Your Network?]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [Cisco Panoptica for Simplified Cloud-Native Application Security]( - [The Cloud Threat Landscape: Security learnings from analyzing 500+ cloud environments]( - [Cisco Panoptica for Simplified Cloud-Native Application Security]( - [A Short Primer on Container Scanning]( - [ESG E-Book: Taking a Holistic Approach to Securing Cloud-Native Application Development]( - [The Cloud Threat Landscape: Security learnings from analyzing 500+ cloud environments]( - [Use the 2023 MITRE ATT&CK Evaluation Results for Turla to Inform EDR Buying Decisions]( [View More White Papers >>]( FEATURED REPORTS - [Industrial Networks in the Age of Digitalization]( - [Zero-Trust Adoption Driven by Data Protection]( - [How Enterprises Assess Their Cyber-Risk]( [View More Dark Reading Reports >>]( Dark Reading Weekly -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Weekly Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=123244&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Weekly_05.02.24&sp_cid=53304&utm_content=DR_NL_Dark%20Reading%20Weekly_05.02.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#d0 If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)