Meta Expunges Multiple APT, Cybercrime Groups From Facebook, Instagram

The company has removed three APTs and six potentially criminal networks from its platforms who leveraged elaborate campaigns of fake personas and profiles to lure and compromise users. [TechWeb]( Follow Dark Reading: [RSS]( May 04, 2023 LATEST SECURITY NEWS & COMMENTARY [Meta Expunges Multiple APT, Cybercrime Groups From Facebook, Instagram]( The company has removed three APTs and six potentially criminal networks from its platforms who leveraged elaborate campaigns of fake personas and profiles to lure and compromise users. [Hotels at Risk From Bug in Oracle Property Management Software]( Oracle's characterization of the vulnerability in its Opera software as complex and hard to exploit is incorrect, researchers who found the flaw and reported it say. [DNA Sequencing Equipment Vulnerability Adds New Twist to Medical Device Cyber Threats]( A vulnerability in a DNA sequencer highlights the expanded attack surface area of healthcare organizations but also shows that reporting of medical device vulnerabilities works. [Google Chrome Drops Browser Lock Icon]( Chrome 117 will retire the lock icon and replace it with a "tune" icon, reflecting evolving cybersecurity standards. [Court Rejects Merck Insurers' Attempt to Refuse Coverage for NotPetya Damages]( Insurers unsuccessfully argued Merck's $1.4B in losses following NotPetya cyberattack fell under wartime exclusion. [Legitimate Software Abuse: A Disturbing Trend in Ransomware Attacks]( Build a culture of security so that everyone is on the lookout for suspect behavior. Implement least privilege, improve visibility. [Anatomy of a Malicious Package Attack]( Malicious packages are hard to avoid and hard to detect — unless you know what to look for. [(Sponsored Article) The New Frontier in Email Security: Goodbye, Gateways; Hello, Behavioral AI]( As email attackers move to more targeted and sophisticated attacks, email security needs to understand the organization, not past attacks, to keep up with attacker innovation and stop novel threats on the first encounter. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [PrivateGPT Tackles Sensitive Info in ChatGPT Prompts]( In an effort to curb employees from entering private data into the AI, ChatGPT is blocked from ingesting more than 50+ types of PII and other sensitive information. [4 Principles for Creating a New Blueprint for Secure Software Development]( Improving the security of the software development process is key to thwarting bad actors. [North Korean APT Gets Around Macro-Blocking With LNK Switch-Up]( APT37 is among a growing list of threat actors that have switched to Windows shortcut files after Microsoft blocked macros last year. [MORE]( EDITORS' CHOICE [China 'Innovated' Its Cyberattack Tradecraft, Mandia Says]( Mandiant CEO Kevin Mandia explains why a recently revealed targeted attack by a cyber-espionage group out of China rivals the SolarWinds attack in its complexity, and weighs in on how defenders can best leverage generative AI. LATEST FROM THE EDGE [What's the Secret to Finding the Next Big Thing in Cybersecurity?]( Varun Badhwar, who has brought each of the three startups he founded to the finals of the RSAC Innovation Sandbox, talks about how to see around the corner. LATEST FROM DR TECHNOLOGY [Bot Management Aims to Tame Attacker Automation]( Websites, cloud services, and API servers are seeing ever more automated traffic — aka bots — forcing companies to find ways to separate the digital wheat from the chaff. WEBINARS - [Unleashing AI to Assess Cybersecurity Risk]( Advancements in artificial intelligence technology and machine learning and deep learning algorithms can also transform enterprise risk management by giving security teams greater visibility and insights to assess the organization's cyber risk and overall security posture. In this webinar, experts ... - [Puzzled by Patching: Solve Endpoint Pains]( In this webinar, you'll learn critical steps to improve your security posture and reduce patching complexity so that your IT team can do more with less while keeping security at the forefront. Now is the time to slay the time-consuming ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [The Ultimate Guide to the CISSP]( - [Welcome to Modern Web App Security]( - [A Security Leader's Guide to Leveraging MDR for Security Maturity and Development]( - [The State of Cybersecurity: 2023 Trends Report]( - [The Big Business Of Cybercrime: A Deep Dive Guide]( - [Cymulate Named Innovation Leader, Frost & Sullivan's - Frost Radar BAS, 2022]( - [2023 Cloud Threat Report]( [View More White Papers >>]( FEATURED REPORTS - [Shoring Up the Software Supply Chain Across Enterprise Applications]( Supply chain security attacks are growing at an alarming pace, and things are going to keep getting worse until DevSecOps teams get on the same page. A little help from the feds could also be welcome Modern-day software development depends ... - [The Promise and Reality of Cloud Security]( Cloud security has been part of the cybersecurity conversation for years but has been on the sidelines for most enterprises. The shift to remote work during the COVID-19 pandemic and digital transformation projects have moved cloud infrastructure front-and-center as enterprises ... - [10 Hot Talks From Black Hat USA 2022]( Black Hat USA brings together cutting-edge research, new security tools, and sophisticated defensive techniques over the course of two days. There were some recurring themes across the sessions, and many of these topics are going to be important issues to ... [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [Moonsense Raises $4.2M in Seed Funding and Introduces Next-Gen User Behavior and Network Intelligence Solution]( [Threat Spotlight: Proportion of Malicious HTML Attachments Doubles Within a Year]( [The Daily Number of Human-Driven Cyber Incidents Increased by 1.5 Times in 2022]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [The 10 Most Impactful Types of Vulnerabilities for Enterprises Today]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)