Mac Attack: North Korea's Lazarus APT Targets Apple's M1 Chip

Lazarus continues to expand an aggressive, ongoing spy campaign, using fake Coinbase job openings to lure in victims. [TechWeb]( Follow Dark Reading: [RSS]( August 19, 2022 LATEST SECURITY NEWS & COMMENTARY [Mac Attack: North Korea's Lazarus APT Targets Apple's M1 Chip]( Lazarus continues to expand an aggressive, ongoing spy campaign, using fake Coinbase job openings to lure in victims. [5 Russia-Linked Groups Target Ukraine in Cyberwar]( Information on the attributed cyberattacks conducted since the beginning of the Russia-Ukraine war shows that a handful of groups conducted more than two dozen attacks. [Which Security Bugs Will Be Exploited? Researchers Create an ML Model to Find Out]( How critical is that vulnerability? University researchers are improving predictions of which software flaws will end up with an exploit, a boon for prioritizing patches and estimating risk. [China's APT41 Embraces Baffling Approach for Dropping Cobalt Strike Payload]( The state-sponsored threat actor has switched up its tactics, also adding an automated SQL-injection tool to its bag of tricks for initial access. [Summertime Blues: TA558 Ramps Up Attacks on Hospitality, Travel Sectors]( The cybercriminal crew has used 15 malware families to target travel and hospitality companies globally, constantly changing tactics over the course of its four-year history. [How to Upskill Tech Staff to Meet Cybersecurity Needs]( Cybersecurity is the largest current tech skills gap; closing it requires a concerted effort to upskill existing staff. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [China-Backed RedAlpha APT Builds Sprawling Cyber-Espionage Infrastructure]( The state-sponsored group particularly targets organizations working on behalf of the Uyghurs, Tibet, and Taiwan, looking to gather intel that could lead to human-rights abuses, researchers say. [When Countries Are Attacked: Making the Case for More Private-Public Cooperation]( The increased sophistication of cyberattacks makes them more widely damaging and difficult to prevent. [How and Why to Apply OSINT to Protect the Enterprise]( Here's how to flip the tide and tap open source intelligence to protect your users. [MORE]( EDITORS' CHOICE [Microsoft Disrupts Russian Group's Multiyear Cyber-Espionage Campaign]( "Seaborgium" is a highly persistent threat actor that has been targeting organizations and individuals of likely interest to the Russian government since at least 2017, company says. LATEST FROM THE EDGE [Thoma Bravo Closes $6.9B Acquisition of Identity-Security Vendor SailPoint]( All-cash transaction deal that was first announced in April means SailPoint is no longer a publicly traded company. LATEST FROM DR TECH [New Open Source Tools Launched for Adversary Simulation]( The new open source tools are designed to help defense, identity and access management, and security operations center teams discover vulnerable network shares. WEBINARS - [Using Identity & Access Management to Improve Cyber Defense]( End user credentials have become a central target for online attackers, enabling them to navigate your enterprise systems as trusted users. As online attackers target these credentials and end users seek to gain access to a wider variety of applications ... - [Malicious Bots: What Enterprises Need to Know]( Bots are launching more complex and targeted attacks such as price scraping, credential stuffing, scalping, and credit card fraud, but many security defenders are still focused on only the most obvious attacks. Automated bot attacks are on the rise, but ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [Implementing Zero Trust In Your Enterprise: How to Get Started]( - [6 Elements of a Solid IoT Security Strategy]( - [Eight Best Practices for a Data-Driven Approach to Cloud Migration]( - [Sumo Logic for Continuous Intelligence]( - [Understanding DNS Threats and How to Use DNS to Expand Your Cybersecurity Arsenal]( - [AppSec Considerations For Modern Application Development]( - [Endpoint Detection Net Suite Use Cases]( [View More White Papers >>]( FEATURED REPORTS - [Practical Network Security Approaches for a Multicloud, Hybrid IT World]( The report covers areas enterprises should focus on for their multicloud/hybrid cloud security strategy: -increase visibility over the environment -learning cloud-specific skills -relying on established security frameworks -re-architecting the network - [Understanding DNS Threats and How to Use DNS to Expand Your Cybersecurity Arsenal]( With attacks and breaches on the rise, enterprise security teams need full visibility over what they have in their network. DNS is a key tool for visibility and asset discovery. Proactive DNS-layer security - such as using DNS data to ... - [Rethinking Endpoint Security in a Pandemic and Beyond]( IT security teams are expending the concept of "endpoint security" as companies adjust to a distributed workforce. How much responsibility will enterprise IT take for the security of personal devices such as printers. How will they manage identities across multiple ... [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [OpenSSF Announces 13 New Members Committed to Strengthening the Security of the Open Source Software Supply Chain]( [ThreatX Raises $30 Million in Series B Funding to Accelerate Growth in Global API Protection Market]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [Living on the Edge: Building and Maintaining Security at the Network Edge]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2022]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)