FEATURES EDITION | MOVEit Breach Shows us SQL Injections Are Still Our Achilles' Heel

Dark Reading Daily [TechWeb]( Follow Dark Reading: [RSS]( September 16, 2023 LATEST SECURITY FEATURES & COMMENTARY [MOVEit Breach Shows Us SQL Injections Are Still Our Achilles' Heel]( SQL injection and its ilk will stop being "a thing" only after organizations focus on security by construction. [Rail Cybersecurity Is a Complex Environment]( CISOs in the rail industry must protect an older, more complex infrastructure than most industries. Here are some of the unique, high-stakes challenges. [Being Flexible Can Improve Your Security Posture]( Changing your approach when you realize you could be more efficient pays dividends, especially in six areas of your cybersecurity program. [Why Identity Management Is the Key to Stopping APT Cyberattacks]( Dark Reading News Desk: CrowdStrike's Adam Meyers talks China, Iran, Russia, and more in this expert dive into the current APT threat actor landscape. [IBM Adds Data Security Broker to Encrypt Data in Multiclouds]( The data security broker from Baffle brings field- and file-level encryption of sensitive data to new IBM Cloud Security Compliance Center. [Vendors Training AI With Customer Data Is an Enterprise Risk]( While Zoom has scrapped plans to harvest customer content for use in its AI and ML models, the incident should raise concerns for enterprises and consumers alike. [MORE FROM THE EDGE]( / [MORE FROM DR TECHNOLOGY]( HOT TOPICS ['Scattered Spider' Behind MGM Cyberattack, Targets Casinos]( The ransomware group is a collection of young adults who also recently breached Caesars Entertainment and made a ransom score in the tens of millions. [Microsoft Azure HDInsight Plagued With XSS Vulnerabilities]( To boot, the technology could be riddled with other flaws via its Apache services components, a security vendor says. [Attackers Abuse Google Looker Studio to Evade DMARC, Email Security]( Cyberattackers are tapping the legitimacy of the Web-based data-visualization tool in a campaign aimed at stealing credentials and defrauding hundreds of business users. [MORE]( EDITORS' CHOICE [Name That Edge Toon: Prized Possessions]( Come up with a clever caption, and our panel of experts will reward the winner with a $25 Amazon gift card. [3 Ways to Expand the Cyber Talent Pool From Splash Pad to Watering Hole]( Why — and how — "unqualified" candidates will fill the reservoir with the security workers America is thirsty for. [Microsoft, Google Take on Obsolete TLS Protocols]( Google shortened the lifetime of Transport Layer Security (TLS) certificates, and Microsoft plans to downgrade support for older versions, giving companies more data security but also removing visibility into their own traffic. WEBINARS - [Tips for A Streamlined Transition to Zero Trust]( From identifying the potential attack surface to determining policy, there is a clear path to zero trust and best practices to make the transition as smooth as possible - both for your organization and your customers. Zero trust is more ... - [How Businesses Can Counterpunch against Generative AI-Powered Ransomware]( Join industry experts in AI and cybersecurity as they examine how ChatGPT and other generative AI tools are currently being used to improve the efficacy of ransomware attacks, how that will affect the cyber risk posture of most businesses, and ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [The Forrester Wave: External Threat Intelligence Service Providers, Q3 2023]( - [Building Cyber Resiliency: Key Strategies for Proactive Security Operations]( - [Mandiant Threat Intelligence at Penn State Health]( - [Causes and Consequences of IT and OT Convergence]( - [2023 Work-From-Anywhere Global Study]( - [Cybersecurity in a post pandemic world: A focus on financial services]( - [Cybersecurity in 2023 and beyond: 12 leaders share their forecasts]( [View More White Papers >>]( FEATURED REPORTS - [The State of Supply Chain Threats]( - [How to Deploy Zero Trust for Remote Workforce Security]( - [Successfully Managing Identity in Modern Cloud and Hybrid Environments]( Cloud promised to simplify the security and management of enterprise systems. In many ways it has, but when it comes to identity management it's as complicated as ever. This report details how to get identity programs on track -- and ... [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [NordVPN Launches Sonar to Prevent Phishing Attacks]( [World Security Report Finds Physical Security Incidents Cost Companies USD $1T in 2022]( [Google and Acalvio Partner to Deliver Active Defense to Protect Customers From Advanced Threats]( [Claroty Unveils Vulnerability & Risk Management Capabilities to Elevate Risk Reduction for Cyber-Physical Systems]( [IBM Addresses Data Incident for Janssen CarePath Database]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [Passwords Are Passe: Next Gen Authentication Addresses Today's Threats]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=118258&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_09.16.23&sp_cid=49851&utm_content=DR_NL_Dark%20Reading%20Daily_09.16.23&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#cd If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)