MOVEit Flaw Leads to 900 University Data Breaches

National Student Clearinghouse, a nonprofit serving thousands of universities with enrollment services, exposes more than 900 schools within its MOVEit environment. [TechWeb]( Follow Dark Reading: [RSS]( September 26, 2023 LATEST SECURITY NEWS & COMMENTARY [MOVEit Flaw Leads to 900 University Data Breaches]( National Student Clearinghouse, a nonprofit serving thousands of universities with enrollment services, exposes more than 900 schools within its MOVEit environment. [Xenomorph Android Malware Targets Customers of 30 US Banks]( The Trojan had mainly been infecting banks in Europe since it first surfaced more than one year ago. [UAE-Linked 'Stealth Falcon' APT Mimics Microsoft in Homoglyph Attack]( The cyberattackers are using the "Deadglyph" custom spyware, whose full capabilities have not yet been uncovered. [The Hot Seat: CISO Accountability in a New Era of SEC Regulation]( Updated cybersecurity regulations herald a new era of transparency and accountability in the face of escalating industry vulnerabilities. [MGM, Caesars Cyberattack Responses Required Brutal Choices]( Tens of millions in losses later, the MGM and Caesars systems are back online following dual cyberattacks by the same threat actor — here's what experts say about their incident responses. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS ['Gold Melody' Access Broker Plays on Unpatched Servers' Strings]( A financially motivated threat actor uses known vulnerabilities, ordinary TTPs, and off-the-shelf tools to exploit the unprepared, highlighting the fact that many organizations still don't focus on the security basics. [Guardians of the Cyberverse: Building a Resilient Security Culture]( Whether achieved through AI-enabled automation, proactive identification and resolution of issues, or the equitable distribution of risk management responsibilities, the goal must be resilience. [Changing Role of the CISO: A Holistic Approach Drives the Future]( The CISO's role has grown far beyond supervising Patch Tuesday to focus on prevention and response and to cover people, processes, and technology. [Name That Toon: Somewhere in Sleepy Hollow]( Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. [MORE]( EDITORS' CHOICE [NFL, CISA Look to Intercept Cyber Threats to Super Bowl LVIII]( The league is working with more than 100 partners to workshop responses to a host of hypothetical cyberattacks on the upcoming Big Game in Las Vegas. LATEST FROM THE EDGE [What Does Socrates Have to Do With CPM?]( It's time to focus on the "P" in cybersecurity performance management. LATEST FROM DR TECHNOLOGY [When It Comes to Email Security, the Cloud You Pick Matters]( While cloud-based email offers more security than on-premises, insurance firms say it matters whether you use Microsoft 365 or Google Workspace. LATEST FROM DR GLOBAL [Bot Swarm: Attacks From Middle East & Africa Are Notably Up]( Most automated attacks from the regions were against e-commerce and telecommunications organizations. WEBINARS - [Using AI in Application Security Tooling]( As AI continues to improve, security vendors are considering how they can use AI to protect applications. In web application and API security tooling used to protect production environments, AI/ML can be used to enhance and complement existing tactics ... - [Cyber Risk Assessment Secrets From the Pros]( Executives want to know whether they should worry about an attack that hit another organization. They worry how safe they are from a breach. But it can be difficult for security teams to quantitatively measure risk, or even say with ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [The Forrester Wave: External Threat Intelligence Service Providers, Q3 2023]( - [Global Perspectives on Threat Intelligence]( - [Evaluating SASE for the Work-From-Anywhere Era]( - [The Ultimate Guide to the CISSP]( - [Rediscovering Your Identity]( - [2023 Global Future of Cyber Report]( - [Cybersecurity in 2023 and beyond: 12 leaders share their forecasts]( [View More White Papers >>]( FEATURED REPORTS - [How to Deploy Zero Trust for Remote Workforce Security]( - [What Ransomware Groups Look for in Enterprise Victims]( Ransomware attackers cast a wide net -- they just care about causing damage, making money, and gaining new victims. That means no organization is automatically immune to attack just because of its size or industry. Organizations need to take steps ... - [Successfully Managing Identity in Modern Cloud and Hybrid Environments]( Cloud promised to simplify the security and management of enterprise systems. In many ways it has, but when it comes to identity management it's as complicated as ever. This report details how to get identity programs on track -- and ... [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [Recast Software Acquires Liquit, Consolidating the Endpoint and Application Management Markets]( [ClassLink Provides Cybersecurity Training Course to Help Schools Protect Public Directory Data]( [Wing Security Launches Compliance-Grade SaaS Security Solution for Just $1.5K]( [Latest Acquisition Powers AI-based Network Detection and Response and Open XDR Capabilities for WatchGuard]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [The State of Supply Chain Threats]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=118389&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_09.26.23&sp_cid=49933&utm_content=DR_NL_Dark%20Reading%20Daily_09.26.23&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#97 If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)