China 'Innovated' Its Cyberattack Tradecraft, Mandia Says

Mandiant CEO Kevin Mandia explains why a recently revealed targeted attack by a cyber-espionage group out of China rivals the SolarWinds attack in its complexity, and weighs in on how defenders can best leverage generative AI. [TechWeb]( Follow Dark Reading: [RSS]( May 03, 2023 LATEST SECURITY NEWS & COMMENTARY [China 'Innovated' Its Cyberattack Tradecraft, Mandia Says]( Mandiant CEO Kevin Mandia explains why a recently revealed targeted attack by a cyber-espionage group out of China rivals the SolarWinds attack in its complexity, and weighs in on how defenders can best leverage generative AI. [APT41 Subgroup Plows Through Asia-Pacific, Utilizing Layered Stealth Tactics]( The notorious Chinese APT is spreading cyber maliciousness around Southeast Asia, and its next targets are already in sight. [North Korean APT Gets Around Macro-Blocking With LNK Switch-Up]( APT37 is among a growing list of threat actors that have switched to Windows shortcut files after Microsoft blocked macros last year. [PrivateGPT Tackles Sensitive Info in ChatGPT Prompts]( In an effort to curb employees from entering private data into the AI, ChatGPT is blocked from ingesting more than 50+ types of PII and other sensitive information. [Google Ads Abused to Lure Corporate Workers to LOBSHOT Backdoor]( The cyberattack campaign, similar to one to spread the Rhadamanthys Stealer, is part of a larger trend by attackers to use malvertising as initial access for ransomware and other threat activity. [Apple Debuts Its Rapid Response Security Update Approach]( Smaller fixes deliver quick improvements for iPhones, iPads, and iMacs between software updates. [4 Principles for Creating a New Blueprint for Secure Software Development]( Improving the security of the software development process is key to thwarting bad actors. [T-Mobile Experiences Yet Another Data Breach]( Hundreds of customers are at risk of identity theft after the mobile communication company faces its second breach of the year. [(Sponsored Article) Continuous Scanning Is Imperative for Effective Web Application Security]( New research from Invicti shows that an increase in security scanning cadence contributes to improved security posture over time. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [SANS Reveals Top 5 Most Dangerous Cyberattacks for 2023]( SEO-aided attacks, developer targeting, and malicious use of AI top the list for 2023. [The White House National Cybersecurity Strategy Has a Fatal Flaw]( The government needs to shift focus and reconsider how it thinks about securing our nation's digital and physical assets. [Combating Kubernetes — the Newest IAM Challenge]( IT leaders need to ensure Kubernetes clusters don't become a gateway for cybercriminals. [MORE]( EDITORS' CHOICE [FBI Focuses on Cybersecurity With $90M Budget Request]( Never before has cyber been higher on the FBI's list of priorities. Will more money allow the feds to make a greater impact? LATEST FROM THE EDGE [AppSec Making Progress or Spinning Its Wheels?]( Software developers and application security specialists estimate they are catching only 60% of vulnerabilities, but other measures indicate better results. LATEST FROM DR TECHNOLOGY [Palo Alto Networks Unveils New Cloud Firewall for Azure]( The next-generation cloud firewall is a fully managed Azure-native ISV service. WEBINARS - [Unleashing AI to Assess Cybersecurity Risk]( Advancements in artificial intelligence technology and machine learning and deep learning algorithms can also transform enterprise risk management by giving security teams greater visibility and insights to assess the organization's cyber risk and overall security posture. In this webinar, experts ... - [What's "CNAPP-ening"? Bring Your Cloud Security into Focus!]( What's CNAPP-ening is your organization is churning out code every day to make your business more money, but traditional security approaches fail to provide adequate controls for cloud-native applications. Modernize your perspective by embracing an application-centric view of security in ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [Invicti AppSec Indicator: Tuning Out the AppSec Noise is All About DAST]( - [Welcome to Modern Web App Security]( - [Top 5 Reasons to Prioritize Privileged Access Management]( - [Cybersecurity Maturity Model Certification (CMMC) Version 1.02]( - [The 3 Approaches to Breach & Attack Simulation Technologies]( - [What Are the Top and Niche Use Cases for Breach and Attack Simulation Technology?]( - [The Cloud Security Workflow Handbook]( [View More White Papers >>]( FEATURED REPORTS - [Successfully Managing Identity in Modern Cloud and Hybrid Environments]( Cloud promised to simplify the security and management of enterprise systems. In many ways it has, but when it comes to identity management it's as complicated as ever. This report details how to get identity programs on track -- and ... - [The Promise and Reality of Cloud Security]( Cloud security has been part of the cybersecurity conversation for years but has been on the sidelines for most enterprises. The shift to remote work during the COVID-19 pandemic and digital transformation projects have moved cloud infrastructure front-and-center as enterprises ... - [10 Hot Talks From Black Hat USA 2022]( Black Hat USA brings together cutting-edge research, new security tools, and sophisticated defensive techniques over the course of two days. There were some recurring themes across the sessions, and many of these topics are going to be important issues to ... [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [US Wellness Provides Notification of Data Security Incident]( [Enterprise Strategy Group Research Reveals 75% of Organizations Change or Update APIs on a Daily or Weekly Basis]( [Uptycs Launches Cloud Security Early Warning System]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [The 10 Most Impactful Types of Vulnerabilities for Enterprises Today]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)