Microsoft Patch Tuesday Puts Spotlight on Windows Print Spooler

[TechWeb]( Follow Dark Reading: [RSS]( August 11, 2021 LATEST SECURITY NEWS & COMMENTARY [Microsoft Patch Tuesday Puts Spotlight on Windows Print Spooler]( Three of the 44 vulnerabilities patched today exist in Windows Print Spooler, a primary focus of security fixes over the past few months. [Misconfigured Salesforce Communities Place Orgs at Risk of Data Theft, Adversary Recon]( Organizations often inadvertently let unauthenticated guests have access to a lot more data within these communities than they should, security vendor says. [Which Organizations Use & Abuse Personal Data Most, and How?]( Researchers at the Virginia Tech Hume Center investigate the ripple effects of sharing personal data just one time with just one organization. What interactions cause the widest ripples (and the most destructive waves)? [Exploiting the Industry 4.0 Supply Chain]( The OPC unified architecture is growing in popularity as a platform-independent industrial communications architecture for connecting industrial systems to IT and the cloud. However, a chain of customizations and complexities in OPC-UA implementations has generated vulnerabilities in the software supply chain. [Mind Over Matter: Revamping Security Awareness With Psychology]( Despite the prevalence of employee-centric attacks, most organizations spend less than 5% of their security budgets on people. [Why It's Time for Cybersecurity to Go Mainstream]( Improving cybersecurity must be a collective effort. Here are three achievable steps the government, private sector, and broader public can take to make a difference now. [NortonLifeLock and Avast Merge in $8B Deal]( NortonLifeLock acquires Avast in a major consumer cybersecurity merger. [BlackMatter Ransomware Claims to Follow REvil & DarkSide]( A new ransomware-as-a-service appears with tools and techniques from DarkSide, REvil, and LockBit 2.0. [Researchers Examine Active Market for Stolen Network Access]( Intsights researchers finds one instance of data for sale at a price tag of 66,0000 worth of Bitcoin. [(Sponsored Video) Dark Reading News Desk Talks to Fortinet]( Spurred in large part by a global cybercrime ecosystem, individuals and organizations are up against unrelenting attacks. [MORE NEWS & COMMENTARY]( HOT TOPICS [Incident Responders Explore Microsoft 365 Attacks in the Wild]( Mandiant experts discuss the novel techniques used to evade detection, automate data theft, and achieve persistent access. [Top 5 Techniques Attackers Use to Bypass MFA]( Like other protective measures, multifactor authentication isn't failsafe or foolproof. [HTTP/2 Implementation Errors Exposing Websites to Serious Risks]( Organizations that don't implement end-to-end HTTP/2 are vulnerable to attacks that redirect users to malicious sites and other threats, security researcher reveals at Black Hat USA. [MORE]( EDITORS' CHOICE [14 Vulnerabilities Found in Widely Used TCP/IP Stack]( "Infra:Halt" flaws in NicheStack impact potentially millions of devices used in OT and industrial control system environments, analysts say. [The Misunderstood Security Risks of Behavior Analytics, AI & ML]( By separating the hype from reality, the risks of relying on AI and ML to identify security threats become clear. LATEST FROM THE EDGE [Presenting the 2021 PWNIE Award Winners]( The list of 2021 PWNIE Award winners includes security researchers behind some of the biggest vulnerabilities discoveries over the past year. Tech Resources - [The Top 10 Threats of Data Sprawl and How to Mitigate Them]( - [Passwordless: The Future of Authentication]( - [Policy as Code Guide - Design, Build, & Runtime]( - [4 Steps to Achieving Comprehensive Kubernetes Security]( - [Cloud Cyber Resilience Report]( - [Integration Platform as a Service for Order Management Systems: Why Should You Care?]( - [Accelerate Network Operations Efficiency with AIOps]( [ACCESS TECH LIBRARY NOW]( - [Learn To Mitigate Risk with Zero Trust - Aug 11 Free Webinar]( - [Two Sides of the PAM Coin - August 11 - Register Now]( There are two sides of the PAM (Privileged Access Management) Coin. Password vaulting is one. Privilege Elevation is the other. A vault is a great first step in protecting your company from identity-related data breaches, but don't stop there! We ... [MORE WEBINARS]( FEATURED REPORTS - [How Enterprises Are Developing Secure Applications]( - [Tech Insights: Detecting and Preventing Insider Data Leaks]( [MORE REPORTS]( CURRENT ISSUE [The State of Cybersecurity Incident Response]( [DOWNLOAD THIS ISSUE]( [SUBSCRIBE NOW]( [BACK ISSUES]( | [MUST READS]( | [TECH DIGEST]( PRODUCTS & RELEASES [ProtectedBy.AI Is Awarded DoD Contract to Develop Innovative Tools to Combat Criminal Cryptocurrency Transactions]( [Morphisec Announces New Incident Response Services as Enterprise Attacks Escalate]( [Palo Alto Networks Announces Expansion of Management Team]( [MORE PRODUCTS & RELEASES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech 303 Second St., Suite 900 South Tower, San Francisco, CA 94107 To update your profile, change your e-mail address, or unsubscribe, [click here.]( To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:customerservice_informationhub@techweb.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2021]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:customerservice_informationhub@techweb.com)