FIN8 Threat Group Resurfaces With Dangerous New Backdoor

[TechWeb]( Follow Dark Reading: [RSS]( August 26, 2021 LATEST SECURITY NEWS & COMMENTARY [FIN8 Threat Group Resurfaces With Dangerous New Backdoor]( "Sardonic" malware allows attackers to expand its functionality without having to update components. [BreachQuest Emerges from Stealth to Fill Incident Response Gaps]( The company received $4.4 million in seed funding from Slow Ventures, the founder of Lookout, and co-founders of Tinder. [Making Sure Spyware Is Used Only for Good]( Spyware and other cyber-offensive solutions will only become more prevalent. It's up to every constituency to ensure that the technology isn't abused. [10 Questions to Navigate the Security Industry’s Marketing Madness]( How to cut through the marketing hype and really understand what to buy and from whom. [New Hampshire Town Loses $2.3 Million in BEC Scam]( The town of Peterborough, N.H., does not believe the funds can be recovered and does not know whether insurance will cover the losses. [MORE NEWS & COMMENTARY]( HOT TOPICS [4 Steps Organizations Can Take to Increase Diversity in Cybersecurity]( Cultivating a diverse cybersecurity workforce requires a multipronged approach. Here are key steps organizations can take to increase diversity and grow the cybersecurity talent pipeline. [CISA Warns of Ongoing Attacks Targeting ProxyShell Vulnerabilities]( Cybercriminals are actively exploiting ProxyShell vulnerabilities CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207. Here's what to do about this. [FBI Issues Advisory on 'OnePercent' Ransomware Group]( The threat actor has been targeting US companies in dual extortion attacks since fall of last year. [MORE]( EDITORS' CHOICE [7 Tips for Securing the Software Development Environment]( Recent attacks have highlighted the need for organizations to pay closer attention to the hardware, software, and networks used in software development. [The New Secret Weapon in Breach Detection: Math and Data Science]( It's time for organizations across industries to use math and data science to assess the probabilities of a breach. Here's how. LATEST FROM THE EDGE [DMARC 101: How to Keep Phishing Attacks Out of Your Inbox]( Used together, DMARC and security awareness training will help give your employees comprehensive protection against phishing attacks. Tech Resources - [Guide to Enabling a Work from Anywhere Organization]( - [The 7 Deadly Sins of Access Control, and How to Avoid Them]( - [Five Reasons to Protect your VPN with Multi-Factor Authentication]( - [Passwordless: The Future of Authentication]( - [The Essential Guide to Securing Remote Access]( - [Zero Trust Evaluation Guide]( - [Cloud Cyber Resilience Report]( [ACCESS TECH LIBRARY NOW]( - ["The New Normal" of Supply Chain Security]( In this webinar, experts discuss potential vulnerabilities in the new supply chain, and potential threats from online attackers. They also discuss the impact of these changes on compliance with industry and regulatory rules that govern the supply chain. You'll learn ... - [WATCH NOW>>Outsource Security Without Inviting Risk and Wasting Money]( In this webinar, experts offer advice on how to effectively use third-party service providers, how to choose a provider that fits your requirements, and how to ensure the third-party provider is meeting your security requirements. [MORE WEBINARS]( FEATURED REPORTS - [Enterprise Cybersecurity Plans in a Post-Pandemic World]( As the COVID-19 pandemic eases, IT security threats and the challenges involved in responding to them are trending upward. Security leaders expect that cyberattacks like ransomware, phishing, and malware will increase even as the pandemic eventually recedes. Download the Dark ... - [How Enterprises Are Developing Secure Applications]( [MORE REPORTS]( CURRENT ISSUE [Enterprise Cybersecurity Plans in a Post-Pandemic World]( [DOWNLOAD THIS ISSUE]( [SUBSCRIBE NOW]( [BACK ISSUES]( | [MUST READS]( | [TECH DIGEST]( PRODUCTS & RELEASES [FusionAuth Introduces Advanced Threat Detection to Help Safeguard User Identity]( [New Data-Driven Study Reveals 40% of SaaS Data Access Is Unmanaged, Creating Significant Insider and External Threats to Global Organizations]( [Upstream Security Raises $62M in Series C Financing Round]( [Cameyo Introduces Secure Cloud Tunneling to Further Reduce the Attack Surface for Remote & Hybrid Work]( [MORE PRODUCTS & RELEASES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech 303 Second St., Suite 900 South Tower, San Francisco, CA 94107 To update your profile, change your e-mail address, or unsubscribe, [click here.]( To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:customerservice_informationhub@techweb.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2021]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:customerservice_informationhub@techweb.com)