Russia's Sandworm APT Launches Swarm of Wiper Attacks in Ukraine

The incidents are the latest indication of the growing popularity of dangerous disk wipers, created to disrupt and degrade critical infrastructure and other organizations. [TechWeb]( Follow Dark Reading: [RSS]( January 31, 2023 LATEST SECURITY NEWS & COMMENTARY [Russia's Sandworm APT Launches Swarm of Wiper Attacks in Ukraine]( The incidents are the latest indication of the growing popularity of dangerous disk wipers, created to disrupt and degrade critical infrastructure and other organizations. [Cybercrime Ecosystem Spawns Lucrative Underground Gig Economy]( The complex nature of cyberattacks has increased demand for software developers, reverse engineers, and offensive specialists — attracting workers facing financial insecurity. [Long Con Impersonates Financial Advisers to Target Victims]( Cybercriminals are co-opting the identities of legitimate US financial advisers to use them as fodder for relationship scams (aka "pig butchering"), which end with the theft of investments. [Convincing, Malicious Google Ads Look to Lift Password Manager Logins]( Users searching for Bitwarden and 1Password's Web vaults on Google have recently reported seeing paid ads with links to cleverly spoofed sites for stealing credentials to their password vaults. [10M JD Sports Customers' Info Exposed in Data Breach]( UK sportswear retailer asks exposed customers to stay "vigilant" against phishing attempts following cyberattack. [Spotlight on 2023 DevSecOps Trends]( Solutions that provide more actionable results — remediation that frees up engineers, processes which integrate security into software development from its design, along with automation, IAC, and tool consolidation — are among the DevSecOps strategies that will prevail this year. [(Sponsored Article) SaaS Rootkit Exploits Hidden Rules in Microsoft 365]( A vulnerability within Microsoft's OAuth application registration allows an attacker to create hidden forwarding rules that act as a malicious SaaS rootkit. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [How Noob Website Hackers Can Become Persistent Threats]( An academic analysis of website defacement behavior by 241 new hackers shows there are four clear trajectories they can take in the future, researchers say. [Riot Games Latest Video-Game Maker to Suffer Breach]( Highlighting continued attacks on game developers, attackers stole source code from and issued a ransom demand to the maker of League of Legends. [Organizations Must Brace for Privacy Impacts This Year]( Expect more regulatory and enforcement action in the US and around the world. [MORE]( EDITORS' CHOICE [3 Ways ChatGPT Will Change Infosec in 2023]( OpenAI's chatbot has the promise to revolutionize how security practitioners work. LATEST FROM THE EDGE [Make Developers the Driver of Software Security Excellence]( Those who are wrangling code every day could fuel a genuinely transformational approach to security — if they are adequately upskilled. LATEST FROM DR TECHNOLOGY [Snyk Gets Nod of Approval With ServiceNow Strategic Investment]( One of the most closely watched security startups continues to build bank because its platform appeals to both developers and security pros. WEBINARS - [The Ransomware Evolution: Protecting Against Professionalized Cybercriminal Operations]( Ransomware gangs are highly professional operations, with teams dedicated for customer service, help-desk, software development, distribution, and even marketing. There are marketplaces where attackers can easily pick up ransomware and attack infrastructure. Does your organization understand what kind of cybercriminal ... - [Every DDoS Resilience and Response Playbook Should Include These Things]( Cyber attackers can level organizations with a distributed denial-of-service (DDoS) attack. How do security teams keep stakeholders informed when services are down? Who do they call to remediate the incident and make sure the attackers don't knock everything down again? ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [How Machine Learning, AI & Deep Learning Improve Cybersecurity]( - [State of Email Security]( - [Ransomware Resilience and Response: The Next-Generation]( - [Ransomware Is On The Rise]( - [State of Ransomware Readiness: Facing the Reality Gap]( - [How Hybrid Work Fuels Ransomware Attacks]( [View More White Papers >>]( FEATURED REPORTS - [The Promise and Reality of Cloud Security]( Cloud security has been part of the cybersecurity conversation for years but has been on the sidelines for most enterprises. The shift to remote work during the COVID-19 pandemic and digital transformation projects have moved cloud infrastructure front-and-center as enterprises ... - [10 Hot Talks From Black Hat USA 2022]( Black Hat USA brings together cutting-edge research, new security tools, and sophisticated defensive techniques over the course of two days. There were some recurring themes across the sessions, and many of these topics are going to be important issues to ... - [How Machine Learning, AI & Deep Learning Improve Cybersecurity]( [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [SentinelOne and KPMG Announce Alliance To Accelerate Cyber Investigations and Response]( [IT and Security Professionals Spend an Average of 4,300 Hours Annually Achieving or Maintaining Compliance]( [The Threat from Within: 71% of Business Leaders Surveyed Think Next Cybersecurity Breach Will Come from the Inside]( [How $6 Can Buy Hacked Social Media & Streaming Accounts From the Dark Web, Whizcase Study Reveals]( [The Journal, Artificial Intelligence in the Life Sciences, Highlights the Contributions of Women in Artificial Intelligence in the Life Sciences]( [Fake Texts From the Boss, Bogus Job Postings and Frankenstein Shoppers — Oh My!]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [The Promise and Reality of Cloud Security]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)