5 Years That Altered the Ransomware Landscape

WannaCry continues to be a reminder of the challenges that organizations face dealing with the ransomware threat. [TechWeb]( Follow Dark Reading: [RSS]( May 13, 2022 LATEST SECURITY NEWS & COMMENTARY [5 Years That Altered the Ransomware Landscape]( WannaCry continues to be a reminder of the challenges that organizations face dealing with the ransomware threat. [Transforming SQL Queries Bypasses WAF Security]( A team of university researchers finds a machine learning-based approach to generating HTTP requests that slip past Web application firewalls. [Black Hat Asia: Firmware Supply Chain Woes Plague Device Security]( The supply chain for firmware development is vast, convoluted, and growing out of control: patching security vulnerabilities can take up to two years. For cybercriminals, it's a veritable playground. [Known macOS Vulnerabilities Led Researcher to Root Out New Flaws]( Researcher shares how he unearthed newer bugs in Apple's operating system by closer scrutiny of previous research, including vulnerabilities that came out of the Pwn2Own competition. [Needs Improvement: Scoring Biden's Cyber Executive Order]( One year after it was issued, has President Biden's Cyber Executive Order had an impact? [How Can Your Business Defend Itself Against Fraud-as-a-Service?]( By understanding how FaaS works and following best practices to prevent it, your business can protect its customers, revenue, and brand reputation. [Cloud Firm Appian Awarded $2B in Trade Secret Cyber-Theft Lawsuit]( Cloud competitor found liable for breaking into Appian back-end systems to steal company secrets. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [On the Air With Dark Reading News Desk at Black Hat Asia 2022]( This year's Black Hat Asia is hybrid, with some sessions broadcast on the virtual platform and others live on stage in Singapore. News Desk is available on-demand with prerecorded interviews. [Vanity URLs Could Be Spoofed for Social Engineering Attacks]( Attackers could abuse the vanity subdomains of popular cloud services such as Box.com, Google, and Zoom to mask attacks in phishing campaigns. [The Danger of Online Data Brokers]( Enterprises should consider online data brokers as part of their risk exposure analysis if they don't already do so. [MORE]( EDITORS' CHOICE [Top 6 Security Threats Targeting Remote Workers]( Remote work is here to stay, which means security teams must ensure that security extends beyond corporate devices and protects employees wherever they are. LATEST FROM THE EDGE [3 Predictors of Cybersecurity Startup Success]( Before investing, venture capitalists should consider a trio of business characteristics that seem to correlate with commercial success, based on meetings with over 2,000 cybersecurity startups. LATEST FROM DR TECHNOLOGY [Google Will Use Mobile Devices to Thwart Phishing Attacks]( In an effort to combat phishing, Google will allow Android phones and iPhones to be used as security keys. Tech Resources - [Maximize the Human Potential of Your SOC]( - [Modernize your Security Operations with Human-Machine Intelligence]( - [AI in Cybersecurity: Using artificial intelligence to mitigate emerging security risks]( - [Build a Case for a Password Manager]( - [Avoid Unplanned Downtime From Ransomware]( - [Endpoint Strategies to Address Ransomware]( - [Real-time Endpoint Security with Automated Incident Response]( [ACCESS TECH LIBRARY NOW]( - [Implementing Zero Trust in Your Enterprise]( Attackers have shown time and again that perimeter security is no longer enough to keep them out. The concept of internal users and outsiders doesn't work in network defense when attackers use credential theft and lateral movement to pretend they ... - [Building and Maintaining an Effective IoT Cybersecurity Strategy]( The Internet of Things (IoT) is much bigger than appliances in business contexts, as tools and non-computer devices are increasingly connected to the Internet. And attackers are taking advantage of these Internet-enabled technologies to target corporate data and systems. How ... [MORE WEBINARS]( FEATURED REPORTS - [State of the Cloud: A Security Perspective]( Cloud computing has evolved over the years from a nice-to-have item on the IT wish list to a core technology driving business initiatives. But despite widespread adoption, cloud-based IT systems continue to be saddled with issues related to data security, ... - [Rethinking Endpoint Security in a Pandemic and Beyond]( IT security teams are expending the concept of "endpoint security" as companies adjust to a distributed workforce. How much responsibility will enterprise IT take for the security of personal devices such as printers. How will they manage identities across multiple ... [MORE REPORTS]( CURRENT ISSUE [Incorporating a Prevention Mindset into Threat Detection and Response]( [DOWNLOAD THIS ISSUE]( [SUBSCRIBE NOW]( [BACK ISSUES]( | [MUST READS]( | [TECH DIGEST]( PRODUCTS & RELEASES [PlainID Debuts Authorization-as-a-Service Platform]( [Orca Security Unveils Context-Aware Shift Left Security to Identify and Prevent Cloud Application Security Issues Earlier]( [Man Sentenced for Stealing from PayPal Accounts in Wire Fraud Scheme]( [MORE PRODUCTS & RELEASES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To update your profile, change your e-mail address, or unsubscribe, [click here.]( To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:customerservice_informationhub@techweb.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2022]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:customerservice_informationhub@techweb.com)