FEATURES EDITION | Meet the Finalists for the 2023 Pwnie Awards

Hosts Sophia d'Antoine and Ian Roos presented the list at Summercon in Brooklyn, where they also handed out a surprise Lifetime Achievement Award. [TechWeb]( Follow Dark Reading: [RSS]( July 22, 2023 LATEST SECURITY FEATURES & COMMENTARY [Meet the Finalists for the 2023 Pwnie Awards]( Hosts Sophia d'Antoine and Ian Roos presented the list at Summercon in Brooklyn, where they also handed out a surprise Lifetime Achievement Award. [Microsoft Takes Security Copilot AI Assistant to the Next Level]( The company's AI for security operations centers continues to add integrations, as the industry looks to large language models for progress. [Startup Spotlight: Binarly Hardens Firmware Security]( The company, one of four finalists in this year's Black Hat USA Startup Spotlight competition, uses AI/ML to find firmware vulnerabilities. [Infosec Doesn't Know What AI Tools Orgs Are Using]( Hint: Organizations are already using a range of AI tools, with ChatGPT and Jasper.ai leading the way. [Black Hat Offers Pen-Testing Certification Exam]( The new independent exam track at Black Hat USA will feature an opportunity for attendees to take a practical exam to be certified in penetration testing. [Kevin Mandia Brings the HammerCon]( US Air Force veteran and Mandiant CEO discussed dwell time and state-sponsored attacks at the Military Cyber Professionals Association's HammerCon conference. [MORE FROM THE EDGE]( / [MORE FROM DR TECHNOLOGY]( HOT TOPICS [Linux Ransomware Poses Significant Threat to Critical Infrastructure]( Organizations running Linux distributions need to prepare to defend their systems against ransomware attacks. Steps to ensure resiliency and basics such as access control reduce major disruptions. [Google Cloud Build Flaw Enables Privilege Escalation, Code Tampering]( Google's fix to the Bad.Build flaw only partially addresses the issue, say security researchers who discovered it. [Attackers Exploit Citrix Zero-Day Bug to Pwn NetScaler ADC, Gateway]( Citrix is urging organizations to immediately patch the unauthenticated RCE vulnerability. [MORE]( EDITORS' CHOICE [How the EU AI Act Will Affect Businesses, Cybersecurity]( Recognizing the need to address potential risks and ethical concerns, the draft AI Act represents a significant step in regulating AI technologies. [ITDR Combines and Refines Familiar Cybersecurity Approaches]( Identity threat detection and response adds user entity behavioral analytics to fraud detection, creating a powerful tool for real-time protection. [Name That Edge Toon: Three-Ring Circus]( Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card. WEBINARS - [Best Practices and Tools for OT and IT Security]( For years, information technology and operations technology systems have existed in parallel, but that is no longer the case. As the attack against Colonial Pipeline illustrated, attacks against IT can potentially impact OT, and vice versa. OT environments have their ... - [Finding a Backup Strategy That Works For You]( You've been hit with a ransomware, DDoS, natural disaster, or destructive cyberattack. One of the first questions: can we get our data back? Good back-ups are key to business continuity and disaster recovery, but backing up your data in preparation ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [9 Traits You Need to Succeed as a Cybersecurity Leader]( - [The Ultimate Guide to the CISSP]( - [Rediscovering Your Identity]( - [2023 Global Future of Cyber Report]( - [Cybersecurity in a post pandemic world: A focus on financial services]( - [Cybersecurity in 2023 and beyond: 12 leaders share their forecasts]( - [Know your customer: Enable a 360-degree view with customer identity & access management]( [View More White Papers >>]( FEATURED REPORTS - [Securing the Remote Worker: How to Mitigate Off-Site Cyberattacks]( The most profound change to enterprise security with the rise of remote work is the way endpoint security has moved from last line of defense to being on the frontline. The user's endpoint is the first device attackers encounter, making ... - [Successfully Managing Identity in Modern Cloud and Hybrid Environments]( Cloud promised to simplify the security and management of enterprise systems. In many ways it has, but when it comes to identity management it's as complicated as ever. This report details how to get identity programs on track -- and ... - [Shoring Up the Software Supply Chain Across Enterprise Applications]( Supply chain security attacks are growing at an alarming pace, and things are going to keep getting worse until DevSecOps teams get on the same page. A little help from the feds could also be welcome Modern-day software development depends ... [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [TrustArc Announces TRUSTe EU-US Data Privacy Framework Verification]( [Plurilock Announces Generative AI 'Guardrails' Product, PromptGuard]( [Deloitte Global Expands MXDR Cybersecurity SaaS Solution With Operational Technology and Identity Modules]( [Graylog Acquires Resurface.io's API Security Solution]( [Checkmarx Announces CheckAI Plugin for ChatGPT to Detect and Prevent Attacks Against ChatGPT-Generated Code]( [Netskope Launches Managed Service Provider Program]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [How to Use Threat Intelligence to Mitigate Third-Party Risk]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=117458&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_07.22.23&sp_cid=49271&utm_content=DR_NL_Dark%20Reading%20Daily_07.22.23&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#43 If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)