Phishing Campaign Targets 200M Microsoft 365 Accounts

[TechWeb]( Follow Dark Reading: [RSS]( December 08, 2020 LATEST SECURITY NEWS & COMMENTARY [Phishing Campaign Targets 200M Microsoft 365 Accounts]( A well-organized email spoofing campaign has been seen targeting financial services, insurance, healthcare, manufacturing, utilities, and telecom. [As DNA Synthesis Evolves, Cyber-Physical Attack Worries Grow]( Israeli scientists warn that cybersecurity around DNA synthesis devices needs improvement -- or else the industry risks harmful DNA produced through cyber means. [NSA Warns of Exploits Targeting Recently Disclosed VMware Vulnerability]( Agency urges organizations to deploy patch as soon as possible since exploit activity is hard to detect. [(Sponsored Article) Top Third-Party Data Breaches of 2020: Lessons Learned to Make 2021 More Secure]( Learn from 2020's top third-party data breaches to make 2021 more secure by increasing and improving on your Third-Party Risk Management program. [Trump Signs IoT Security Bill into Law]( The Internet of Things Cybersecurity Improvement Act of 2020 is now official. [Avoiding a 1984-Like Future]( We must not simply trust technology to be safe. Technology providers and users should agree on severe security practices, and these standards must be implemented wherever data goes. [NortonLifeLock Acquires Avira for $360M]( The all-cash transaction is expected to broaden NortonLifeLock's international presence and bring a freemium business model into its portfolio. [MORE NEWS & COMMENTARY]( HOT TOPICS [Potential Nation-State Actor Targets COVID-19 Vaccine Supply Chain]( Companies involved in technologies for keeping vaccines cold enough for safe storage and transportation are being targeted in a sophisticated spear-phishing campaign, IBM says. [Malicious or Vulnerable Docker Images Widespread, Firm Says]( A dynamic analysis of the publicly available images on Docker Hub found that 51% had critical vulnerabilities and about 6,500 of the 4 million latest images could be considered malicious. [Why I'd Take Good IT Hygiene Over Security's Latest Silver Bullet]( Bells and whistles are great, but you can stay safer by focusing on correct configurations, posture management, visibility, and patching. [MORE]( EDITORS CHOICE [7 Cool Cyberattack and Audit Tools to be Highlighted at Black Hat Europe]( Platforms, open source tools, and other toolkits for penetration testers and other security practitioners will be showcased at this week's virtual event. [Cloud Security Threats for 2021]( Most of these issues can be remediated, but many users and administrators don't find out about them until it's too late. LATEST FROM THE EDGE [Chart: Cyberthreats Follow Workers Home]( The COVID-19 crisis has raised the level of cyber-risk significantly over previous Dark Reading Strategic Security surveys. Tech Resources - [The Convergence of Infrastructure and Security]( - [Crisis as an Opportunity for Reinvention]( - [The $500,000 Cost of Not Detecting Good vs. Bad Bot Behavior]( - [A Step-by-Step Guide to Shifting Left and Embracing a True DevSecOps Mentality]( - [The Malware Threat Landscape]( - [Reducing Data Breach Risk From Your Remote Workforce]( - [Exclusive IT Trend Report: Chatbots]( [ACCESS TECH LIBRARY NOW]( - [Data Protection 101 - 12/10 @ 11am EST]( This virtual event spotlights expert insights for ensuring that data is available and secured wherever and whenever a business needs it most--whether in the cloud, across corporate endpoints, or on unmanaged devices--and that its policies align with a fast-changing regulatory ... - [[Now On-Demand] Using AI, Deep Learning and Machine Learning for Cyber Defense]( In this webinar, experts will discuss the ways AI, DL and ML can help in security operations, how they can speed threat analysis, and how to evaluate and choose technologies that will work in your organization. [MORE WEBINARS]( FEATURED REPORTS - [How Data Breaches Affect the Enterprise (2020)]( - [IDC MarketScape: Worldwide Managed Security Services 2020 Vendor Assessment]( [MORE REPORTS]( CURRENT ISSUE [2021 Top Enterprise IT Trends]( [DOWNLOAD THIS ISSUE]( [SUBSCRIBE NOW]( [BACK ISSUES]( | [MUST READS]( | [TECH DIGEST]( PRODUCTS & RELEASES [Cofense Introduces Phishing Detection and Response (PDR) Platform]( [Infamous Hacker-for-Hire Group DeathStalker Hits the Americas & Europe With New PowerPepper Malware]( [Netenrich Serves A La Carte SOC for Midmarket IT]( [MORE PRODUCTS & RELEASES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech 303 Second St., Suite 900 South Tower, San Francisco, CA 94107 To update your profile, change your e-mail address, or unsubscribe, [click here.]( To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:customerservice_informationhub@techweb.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2020]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:customerservice_informationhub@techweb.com)