Newsletter Subject

Microsoft, Late to the Game on Dangerous DNSSEC Zero-Day Flaw | Scattered Spider Pivots to SaaS Application Attack

From

ubm.com

Email Address

darkreading@am.amtechwebresources.com

Sent On

Thu, Jun 20, 2024 03:12 PM

Email Preheader Text

Why the company took so long to address the issue is not known given that most other stakeholders ha

Why the company took so long to address the issue is not known given that most other stakeholders had a fix out for the issue months ago. [TechWeb]( Follow Dark Reading: [RSS]( June 20, 2024 LATEST SECURITY NEWS & COMMENTARY [Microsoft, Late to the Game on Dangerous DNSSEC Zero-Day Flaw]( Why the company took so long to address the issue is not known given that most other stakeholders had a fix out for the issue months ago. [Scattered Spider Pivots to SaaS Application Attacks]( Microsoft last year described the threat actor — known as UNC3944, Scattered Spider, Scatter Swine, Octo Tempest, and 0ktapus — as one of the most dangerous current adversaries. ['ONNX' MFA Bypass Targets Microsoft 365 Accounts]( The service, likely a rebrand of a previous operation called "Caffeine," mainly targets financial institutions in the Americas and EMEA and uses malicious QR codes and other advanced evasion tactics. [Emojis Control the Malware in Discord Spy Campaign]( Pakistani hackers are spying (▀̿Ĺ̯▀̿ Ì¿) on the highly sensitive organizations in India by using emojis (Ô¾_Ô¾) as malicious commands (⚆ᗝ⚆) and the old Dirty Pipe Linux flaw. [Apple Intelligence Could Introduce Device Security Risks]( The company focused heavily on data and system security in the announcement of its generative AI platform, Apple Intelligence, but experts worry that companies will have little visibility into data security. [PoC Exploit Emerges for Critical RCE Bug in Ivanti Endpoint Manager]( A new month, a new high-risk Ivanti bug for attackers to exploit — this time, an SQL injection issue in its centralized endpoint manager. [Hamas Hackers Sling Stealthy Spyware Across Egypt, Palestine]( The Arid Viper APT group is deploying AridSpy malware with Trojanized messaging applications and second-stage data exfiltration. [Space: The Final Frontier for Cyberattacks]( A failure to imagine — and prepare for — threats to outer-space related assets could be a huge mistake at a time when nation-states and private companies are rushing to deploy devices in a frantic new space race. [North Korea's Moonstone Sleet Widens Distribution of Malicious Code]( The recently identified threat actor uses public registries for distribution and has expanded capabilities to disrupt the software supply chain. ['Sleepy Pickle' Exploit Subtly Poisons ML Models]( A model can be perfectly innocent, yet still dangerous if the means by which it's packed and unpacked are tainted. [Name That Toon: Future Shock]( Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. [The Software Licensing Disease Infecting Our Nation's Cybersecurity]( Forcing Microsoft to compete fairly is the most important next step in building a better defense against foreign actors. [Addressing Misinformation in Critical Infrastructure Security]( As the lines between the physical and digital realms blur, widespread understanding of cyber threats to critical infrastructure is of paramount importance. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Why Trading Privacy for 'Free' Web Services Must End]( Meta's new subscription model points out the need for clearer and stricter regulations — ones that prioritize consumer privacy and control of personal data. [How Cybercrime Empires Are Built]( Strong partnerships and collaborations between industry and law enforcement are the most critical ways to take down cybercrime groups before they grow. [Understanding Security's New Blind Spot: Shadow Engineering]( In the rush to digital transformation, many organizations are exposed to security risks associated with citizen developer applications without even knowing it. [MORE]( PRODUCTS & RELEASES [DataBee Launches Innovations for Enhanced Threat Monitoring and Zero Trust Implementation]( [KnowBe4 Launches PhishER Plus Threat Intel Feature]( [Aim Security Closes $18M Series A to Secure Generative AI Enterprise Adoption]( [KnowBe4 Launches Risk & Insurance Partner Program]( [NetSPI Acquires Hubble, Adds CAASM to Complement its IEASM]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [Critical VMware Bugs Open Swaths of VMs to RCE, Data Theft]( A trio of bugs could allow hackers to escalate privileges and remotely execute code on virtual machines deployed across cloud environments. LATEST FROM THE EDGE [How Cybersecurity Can Steer Organizations Toward Sustainability]( By integrating environmental initiatives, social responsibility, and governance into their strategies, security helps advance ESG goals. LATEST FROM DR TECHNOLOGY [CHERI Alliance Aims to Secure Hardware Memory]( The consortium of private companies and academia will focus on ways to protect hardware memory from attacks. LATEST FROM DR GLOBAL [Singapore Extradites Suspected Cybercrime Scammers from Malaysia]( Cops decimate cybercrime infrastructure used to steal data from nearly 2,000 people in Singapore last year. WEBINARS - [Empowering Developers, Automating Security: The Future of AppSec]( - [Preventing Attackers From Wandering Through Your Enterprise Infrastructure]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [Google Threat Intelligence]( - [How Cyber Threat Intelligence Empowers the C-Suite]( - [2024 InformationWeek US IT Salary Report]( - [Purple AI Datasheet]( - [Shining a light in the dark: observability and security, a SANS profile]( - [EMA: AI at your fingertips: How Elastic AI Assistant simplifies cybersecurity]( - [The Cloud Threat Landscape: Security learnings from analyzing 500+ cloud environments]( [View More White Papers >>]( FEATURED REPORTS - [2024 InformationWeek US IT Salary Report]( - [Elastic named a Leader in The Forrester Wave™: Security Analytics Platforms, Q4 2022]( - [Industrial Networks in the Age of Digitalization]( [View More Dark Reading Reports >>]( Dark Reading Weekly -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Weekly Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=124124&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Weekly_06.20.24&sp_cid=54002&utm_content=DR_NL_Dark%20Reading%20Weekly_06.20.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#9a If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)

Marketing emails from ubm.com

View More
Sent On

06/12/2024

Sent On

05/12/2024

Sent On

05/12/2024

Sent On

09/11/2024

Sent On

08/11/2024

Sent On

07/11/2024

Email Content Statistics

Subscribe Now

Subject Line Length

Data shows that subject lines with 6 to 10 words generated 21 percent higher open rate.

Subscribe Now

Average in this category

Subscribe Now

Number of Words

The more words in the content, the more time the user will need to spend reading. Get straight to the point with catchy short phrases and interesting photos and graphics.

Subscribe Now

Average in this category

Subscribe Now

Number of Images

More images or large images might cause the email to load slower. Aim for a balance of words and images.

Subscribe Now

Average in this category

Subscribe Now

Time to Read

Longer reading time requires more attention and patience from users. Aim for short phrases and catchy keywords.

Subscribe Now

Average in this category

Subscribe Now

Predicted open rate

Subscribe Now

Spam Score

Spam score is determined by a large number of checks performed on the content of the email. For the best delivery results, it is advised to lower your spam score as much as possible.

Subscribe Now

Flesch reading score

Flesch reading score measures how complex a text is. The lower the score, the more difficult the text is to read. The Flesch readability score uses the average length of your sentences (measured by the number of words) and the average number of syllables per word in an equation to calculate the reading ease. Text with a very high Flesch reading ease score (about 100) is straightforward and easy to read, with short sentences and no words of more than two syllables. Usually, a reading ease score of 60-70 is considered acceptable/normal for web copy.

Subscribe Now

Technologies

What powers this email? Every email we receive is parsed to determine the sending ESP and any additional email technologies used.

Subscribe Now

Email Size (not include images)

Font Used

No. Font Name
Subscribe Now

Copyright © 2019–2025 SimilarMail.