Oreo Giant Mondelez Settles NotPetya 'Act of War' Insurance Suit

The settlement muddies the waters even further for the viability of war exclusion clauses when it comes to cyber insurance. [TechWeb]( Follow Dark Reading: [RSS]( November 04, 2022 LATEST SECURITY NEWS & COMMENTARY [Oreo Giant Mondelez Settles NotPetya 'Act of War' Insurance Suit]( The settlement muddies the waters even further for the viability of war exclusion clauses when it comes to cyber insurance. [Supply Chain Attack Pushes Out Malware to More than 250 Media Websites]( TA569 has modified the JavaScript of a legitimate content and advertising engine used by news affiliates, in order to spread the FakeUpdates initial access framework. [FIN7 Cybercrime Group Likely Behind Black Basta Ransomware Campaign]( Several artifacts from recent attacks strongly suggest a connection between the two operations, researchers say. [Economic Uncertainty Isn't Stopping Cybercrime Recruitment — It's Fueling It]( Confused economies and rising unemployment rates foster a rich opportunity for cybercrime recruitment. [DDoS Cyberscore: US Treasury: 1, Killnet: 0]( An official just revealed the US Department of Treasury was able to fend off a Killnet DDoS attack last month. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Vitali Kremez Found Dead After Apparent Scuba Diving Accident]( The renowned security researcher, ethical hacker, and cybersecurity phenom was found Wednesday by the US Coast Guard. [Layoffs Mount as Cybersecurity Vendors Hunker Down]( With the vast majority of business leaders expecting a recession in 2023, cybersecurity firms are bolstering their operations and cash flow by laying off workers. [Everything You Need to Know About LockBit]( While the ransomware-for-hire group works to create ever more efficient exploits, companies can protect themselves with structured vulnerability management processes. Prioritize threats based on severity and risk. [How to Narrow the Talent Gap in Cybersecurity]( We can bridge that gap by spreading the word about the opportunities, the requirements, and the many tools available to help applicants break into the field. [MORE]( EDITORS' CHOICE [Dropbox Code Repositories Stolen in Cyberattack on GitHub-Based Developers]( An attack campaign using phishing attacks gives threat actors access to internal Dropbox code repositories, the latest in a series of attacks targeting developers through their GitHub accounts. LATEST FROM THE EDGE [Wanted: Cybersecurity Training That Breaks Down Silos]( The next generation of cybersecurity pros will need to participate frequently in relevant training to expand their skills and stay engaged. LATEST FROM DR TECHNOLOGY [Now That EDR Is Obvious, What Comes Next?]( First in our series addressing the top 10 unanswered questions in security: What's going to replace EDR? WEBINARS - [Cybersecurity: What You Don't Know Can Hurt You]( Do your attackers have a better view of your risks in your environment than you? With the aggressive move to the cloud comes an expanding and complex attack surface that adversaries are waiting to exploit. As a result, organizations are ... - [Building & Maintaining an Effective Incident Readiness and Response Plan]( The cyber attackers hit their mark: now what do you do? Whom do you call first? Do you have a plan to contain the damage, eliminate the threat, avoid destruction of forensic evidence, and keep the business The attackers have ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [Ransomware Resilience and Response: The Next-Generation]( - [Ransomware Is On The Rise]( - [How Hybrid Work Fuels Ransomware Attacks]( - [Your Digital Transformation Is Being Sabotaged - The Surprising Impact of Sophisticated Bots]( - [Why Email Security Is So Valuable For Protecting Against Ransomware]( - [The Ultimate Buyer's Guide: SASE Security]( - [2022 Unit 42 Ransomware Threat Report]( [View More White Papers >>]( FEATURED REPORTS - [Breaches Prompt Changes to Enterprise IR Plans and Processes]( - [Implementing Zero Trust In Your Enterprise: How to Get Started]( - [6 Elements of a Solid IoT Security Strategy]( [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [Senhasegura Introduces MySafe for Managing Personal Passwords]( [FS-ISAC and Cyberbit Announce Winner of the First Financial Cyber League]( [Optiv Helps Safeguard Critical Industries with Cyber Advisory and Protection Offerings]( [Apiiro Raises $100M Series B Funding Round to Solidify Position as the Cloud-Native Application Security Leader]( [Iris® Powered by Generali Reports Four in Five Americans Less Willing to Shop at Stores With Data Breaches in 2022 Holiday Survey]( [Alethea Closes $10M Series A Financing Led by Ballistic Ventures]( [Certificate-Based Authentication With YubiKeys for Microsoft, Third-Party, and Web Applications Now Available on iOS and Android]( [Mimecast Unveils Email Security, Cloud Integrated for Optimized Flexibility and Speed]( [Qualys Announces Third Quarter 2022 Financial Results]( [1Password Acquires Passage Identity to Power a Passwordless Future]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [How Enterprises Are Attacking the Cybersecurity Problem]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2022]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)