Vulnerable Historian Servers Imperil OT Networks

These specialized database servers, which collect and archive information on device operation, often connect IT and OT networks. [TechWeb]( Follow Dark Reading: [RSS]( January 19, 2023 LATEST SECURITY NEWS & COMMENTARY [Vulnerable Historian Servers Imperil OT Networks]( These specialized database servers, which collect and archive information on device operation, often connect IT and OT networks. [ICS Confronted by Attackers Armed With New Motives, Tactics, and Malware]( Threat actors are diversifying across all aspects to attack critical infrastructure, muddying the threat landscape, and forcing industrial organizations to rethink their security. [ChatGPT Opens New Opportunities for Cybercriminals: 5 Ways for Organizations to Get Ready]( From updating employee education and implementing stronger authentication protocols to monitoring corporate accounts and adopting a zero-trust model, companies can better prepare defenses against chatbot-augmented attacks. [Cybersecurity and the Myth of Quiet Quitting]( People are working harder than ever, but they're not happy about it — and the insider threat is all too real. [Sophos Cuts Jobs to Focus on Cybersecurity Services]( Layoffs intended to cut costs, help company shift its focus on cybersecurity services, Sophos says. [ChatGPT Could Create Polymorphic Malware Wave, Researchers Warn]( The powerful AI bot can produce malware without malicious code, making it tough to mitigate. [(Sponsored Article) A New Era Is Dawning in Cybersecurity, but Only the Best Algorithms Will Win]( Open source AI is lowering the barrier of entry for cybercriminals. Security teams must consider the right way to apply defensive AI to counter this threat. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Microsoft Patches 4 SSRF Flaws in Separate Azure Cloud Services]( Two of the vulnerabilities — in Azure Functions and Azure Digital Twins — required no account authentication for an attacker to exploit them. [Java, .NET Developers Prone to More Frequent Vulnerabilities]( About three-quarters of Java and .NET applications have vulnerabilities from the OWASP Top 10 list, while only 55% of JavaScript codebases have such flaws, according to testing data. [5 Cybersecurity Tips for Higher Education Institutions]( Following these basic cybersecurity hygiene policies can help make data more secure and protect colleges and universities from becoming the next ransomware headline. The steps aren't complicated, and they won't break the bank. [MORE]( EDITORS' CHOICE [Initial Access Broker Market Booms, Posing Growing Threat to Enterprises]( A rapid increase in the number of operators in the space — the "locksmiths" of the cyber underground — has made it substantially cheaper for cybercriminals to buy access to target networks. LATEST FROM THE EDGE [How Would the FTC Rule on Noncompetes Affect Data Security?]( Without noncompetes, how do organizations make sure employees aren't taking intellectual property when they go work to work for a competitor? LATEST FROM DR TECHNOLOGY [Data Security in Multicloud: Limit Access, Increase Visibility]( Ensuring that data can be easily discovered, classified, and secured is a crucial cornerstone of a data security strategy. WEBINARS - [Detecting, Analyzing, and Mitigating Targeted Attacks]( For many security professionals, the nightmare scenario keeping them awake at night is a sophisticated, targeted attack aimed directly at their own organization and its specific defenses. In this webinar, experts describe the type of tools and processes necessary to ... - [The Craziest Cyberattacks Seen In the Wild and How You Can Avoid Them]( It feels like we hear about a new devastating cyberattack in the news every day. And attack methods seem to be proliferating at an exponential rate. So, which tactics should you be aware of beyond standard "click and infect" attack ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [How Machine Learning, AI & Deep Learning Improve Cybersecurity]( - [State of Email Security]( - [Ransomware Resilience and Response: The Next-Generation]( - [Ransomware Is On The Rise]( - [State of Ransomware Readiness: Facing the Reality Gap]( - [How Hybrid Work Fuels Ransomware Attacks]( [View More White Papers >>]( FEATURED REPORTS - [10 Hot Talks From Black Hat USA 2022]( Black Hat USA brings together cutting-edge research, new security tools, and sophisticated defensive techniques over the course of two days. There were some recurring themes across the sessions, and many of these topics are going to be important issues to ... - [The Promise and Reality of Cloud Security]( Cloud security has been part of the cybersecurity conversation for years but has been on the sidelines for most enterprises. The shift to remote work during the COVID-19 pandemic and digital transformation projects have moved cloud infrastructure front-and-center as enterprises ... - [How Machine Learning, AI & Deep Learning Improve Cybersecurity]( [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [Founder and Majority Owner of Cryptocurrency Exchange Charged With Processing Over $700 Million of Illicit Funds]( [DoControl Announces SaaS Security Platform Expansion With Shadow Apps Module Launch]( [KnowBe4 2022 Phishing Test Report Confirms Business-Related Emails Trend]( [New Coalfire Report Reveals CISOs Rising Influence]( [Abacus Group Acquires Gotham Security and GoVanguard to Expand Cybersecurity Service Offerings]( [Perception Point Launches Advanced Threat Protection and Rapid Remediation for Zendesk Customers]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [The Promise and Reality of Cloud Security]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)