Attackers Use Unicode & HTML to Bypass Email Security Tools

[TechWeb]( Follow Dark Reading: [RSS]( August 25, 2020 LATEST SECURITY NEWS & COMMENTARY [Attackers Use Unicode & HTML to Bypass Email Security Tools]( Researchers spot cybercriminals using new techniques to help malicious phishing emails slip past detection tools. [Large Ad Network Collects Private Activity Data, Reroutes Clicks]( A Chinese mobile advertising firm has modified code in the software development kit included in more than 1,200 apps, maliciously collecting user activity and performing ad fraud, says Snyk, a software security firm. [MITRE Releases 'Shield' Active Defense Framework]( Free knowledge base offers techniques and tactics for engaging with and better defending against network intruders. [Average Cost of a Data Breach in 2020: $3.86M]( When companies defend themselves against cyberattacks, time is money. [Huawei Role in UK 5G Network Set to Be Removed]( The Digital Secretary for the UK, Oliver Dowden, has told the House of Commons that Huawei is set to be stripped of its role in the county's 5G network due to security concerns. [CISA Releases 5G Security Guidelines]( The new document defines lines of effort for developing security for the growing 5G network. [New Cybersecurity Code of Practice for Installers Unveiled by BSIA]( The British Security Industry Association's (BSIA) cybersecurity group has released a new code of practice for installers responsible for safety and security systems. [DeathStalker APT Targets SMBs with Cyber Espionage]( The hacker-for-hire group, operating since at least 2012, primarily targets financial firms. [MORE NEWS & COMMENTARY]( HOT TOPICS [Cryptominer Found Embedded in AWS Community AMI]( Researchers advise Amazon Web Services users running Community Amazon Machine Images to verify them for potentially malicious code. [MFA Mistakes: 6 Ways to Screw Up Multifactor Authentication]( Fearful of messing up its implementation, many enterprises are still holding out on MFA. Here's what they need to know. [10 Resume and Interview Tips from Security Pros]( Experts from the DEF CON Career Hacking Village explain how job seekers can build a resume and rock an interview. [MORE]( EDITORS' CHOICE [Dark Reading Launches New Section on Physical Security]( Partnership with IFSEC enables Dark Reading to cover new areas of security and expand its audience. [Why Should Physical Security Professionals Learn Cybersecurity Skills?]( In the first of a series of columns set to be hosted exclusively on IFSEC Global, Sarb Sembhi, CISM, CTO & CISO, Virtually Informed outlines why physical security professionals should be investing in their cyber security skillset. LATEST FROM THE EDGE [Poll: Endpoint Extravaganza]( What shape do you expect remote endpoints to be in when they start winging their way back to the office? Tech Resources - [7 New Cybersecurity Vulnerabilities That Could Put Your Enterprise at Risk]( - [The Benefits of Automation: Do More with Less]( - [[eBook] 6 Easy Steps to Better Risk Management]( - [Vulnerability Management for Dummies, 2nd Edition]( - [Unify, Analyze, Act: Go Beyond Real-Time Analytics]( - [Multicloud Data Security: Cloud Security Landscape]( - [The Malware Threats Capitalizing on COVID-19]( [ACCESS TECH LIBRARY NOW]( - [How Cyber Attackers Will Use & Abuse AI, ML Against the Enterprise]( In this webinar, get a picture of the actual threat landscape today, realistic predictions of how it will evolve, and what businesses can do now to prepare for the future. - [Shifting Security from Speedbump to Digital Accelerator]( When you attend this webinar, you will learn about three practices that can help your businesses balance security and agility, without compromise. [MORE WEBINARS]( FEATURED REPORTS - [We Want to Know Your Thoughts on RPA - Get a Chance to Win a $100 Amazon.com Gift Card]( - [The Definitive Guide to Managed Detection and Response (MDR)]( [MORE REPORTS]( CURRENT ISSUE [7 New Cybersecurity Vulnerabilities That Could Put Your Enterprise at Risk]( [DOWNLOAD THIS ISSUE]( [SUBSCRIBE NOW]( [BACK ISSUES]( | [MUST READS]( | [TECH DIGEST]( PRODUCTS & RELEASES [Yellowbrick and Sotero Partner on Enterprise Data Security and Compliance]( [CyberRisk Alliance Launches Benchmark Industry Index]( [NeuVector Releases New Version of its Cloud-Native Kubernetes Security Platform]( [MORE PRODUCTS & RELEASES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech 303 Second St., Suite 900 South Tower, San Francisco, CA 94107 To update your profile, change your e-mail address, or unsubscribe, [click here.]( To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:customerservice_informationhub@techweb.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2020]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:customerservice_informationhub@techweb.com)