The flaw was nearly identical to last year's CitrixBleed flaw, though not as severe. [TechWeb]( Follow Dark Reading:
[RSS](
May 07, 2024 LATEST SECURITY NEWS & COMMENTARY [Citrix Addresses High-Severity Flaw in NetScaler ADC and Gateway](
The flaw was nearly identical to last year's CitrixBleed flaw, though not as severe.
[Supply Chain Breaches Up 68% Year Over Year, According to DBIR](
As Verizon Business redefines "supply chain breach," it could either help organizations address third-party risk holistically or just conflate and confuse.
[The Psychological Underpinnings of Modern Hacking Techniques](
The tactics employed by hackers today aren't new; they're simply adapted for the digital age, exploiting the same human weaknesses that have always existed.
[LLMs & Malicious Code Injections: 'We Have to Assume It's Coming'](
Large language models promise to enhance secure software development life cycles, but there are unintended risks as well, CISO warns at RSAC.
[Microsoft Previews Feature to Block Malicious OAuth Apps](
Microsoft is previewing new AI and machine learning capabilities in Defender XDR that will help detect and block malicious OAuth applications. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [CISO Corner: Verizon DBIR Lessons; Workplace Microaggression; Shadow APIs]( Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps. Also included: a Tech Tip on setting up DMARC, a DNS mystery from Muddling Meerkat, and a cybersecurity checklist for M&A transitions.
[Minimum Viable Compliance: What You Should Care About and Why]( Understand what security measures you have in place, what you need to keep secure, and what rules you have to show compliance with.
[Innovation, Not Regulation, Will Protect Corporations From Deepfakes]( If CEOs want to prevent their firm from being the next victim of a high-profile deepfake scam, they need to double cybersecurity funding immediately.
[Paris Olympics Cybersecurity at Risk via Attack Surface Gaps]( Though Olympics officials appear to have better secured their digital footprint than other major sporting events have, significant risks remain for the Paris Games. [MORE]( PRODUCTS & RELEASES [AttackIQ Partners With Cyber Poverty Line Institute to Provide Academy Courses to Underserved Communities]( [BigID Launches Industry-First Hybrid Scanning for Cloud Native Workloads]( [AXA XL Introduces Endorsement to Help Public Companies Address SEC Cyber Reporting Costs]( [Introducing the NetBeacon Institute: Empowering a Safer Web](
[MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [Critical GitLab Bug Under Exploit Enables Account Takeover, CISA Warns](
Patch now: Cyberattackers are exploiting CVE-2023-7028 (CVSS 10) to take over and lock users out of GitLab accounts, steal source code, and more. LATEST FROM THE EDGE [Blinken: Digital Solidarity Is 'North Star' for US Policy](
The four goals of the US International Cyberspace and Digital Policy Strategy are to advance economic prosperity; enhance security and combat cybercrime; promote human rights, democracy, and the rule of law; and address other transnational challenges. LATEST FROM DR TECHNOLOGY [AT&T Splits Cybersecurity Services Business, Launches LevelBlue](
The new company will focus on cybersecurity services as a top 10 managed security service provider, but must expand outside the low-margin management of security into detection and response. LATEST FROM DR GLOBAL ['DuneQuixote' Shows Stealth Cyberattack Methods Are Evolving. Can Defenders Keep Up?](
A recent campaign targeting Middle Eastern government organizations plays standard detection tools like a fiddle. With cyberattackers getting more creative, defenders must start keeping pace. WEBINARS - [Â Key Findings from the State of AppSec Report 2024](
- [Securing Code in the Age of AI]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [Shining a light in the dark: observability and security, a SANS profile](
- [2023 Global Threat Report](
- [A Short Primer on Container Scanning](
- [ESG E-Book: Taking a Holistic Approach to Securing Cloud-Native Application Development](
- [Application Security's New Mandate in a DevOps World](
- [Making Sense of Your Security Data: The 6 Hardest Problems](
- [Use the 2023 MITRE ATT&CK Evaluation Results for Turla to Inform EDR Buying Decisions]( [View More White Papers >>]( FEATURED REPORTS - [Elastic named a Leader in The Forrester Waveâ¢: Security Analytics Platforms, Q4 2022](
- [2023 Global Threat Report](
- [EMA: AI at your fingertips: How Elastic AI Assistant simplifies cybersecurity]( [View More Dark Reading Reports >>]( Dark Reading Daily
-- Published By [Dark Reading](
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.](
Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com)
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=123301&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_05.07.24&sp_cid=53357&utm_content=DR_NL_Dark%20Reading%20Daily_05.07.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#42
If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.
We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)