Novel Google Cloud RAT Uses Calendar Events for C2

Cybercriminals are abusing legitimate functions within cloud services, and providers can't totally stop them, especially when it comes to innovative approaches like this. [TechWeb]( Follow Dark Reading: [RSS]( November 07, 2023 LATEST SECURITY NEWS & COMMENTARY [Novel Google Cloud RAT Uses Calendar Events for C2]( Cybercriminals are abusing legitimate functions within cloud services, and providers can't totally stop them, especially when it comes to innovative approaches like this. [Kinsing Cyberattackers Debut 'Looney Tunables' Cloud Exploits]( Admins need to patch immediately, as the prolific cybercrime group pivots from cryptomining to going after cloud secrets and credentials. [Virtual Kidnapping: AI Tools Are Enabling IRL Extortion Scams]( With AI and publicly available data, cybercriminals have the resources they need to fake a real-life kidnapping and make you believe it. [US Sanctions Ryuk Ransomware’s Russian Money Launderer]( Woman is accused of assisting Russian oligarchs and ransomware affiliates with schemes to evade sanctions. [Gootloader Aims Malicious, Custom Bot Army at Enterprise Networks]( Previously limited to initial access brokering, the Gootloader group has pivoted to a nasty post-compromise "GootBot" attack, each implant with its own C2. [Meet Your New Cybersecurity Auditor: Your Insurer]( As cyber insurance gets more expensive and competitive, security decision-makers have actionable opportunities to strengthen their cyber defenses. [(Sponsored Article) FedRAMP Rev. 5: How Cloud Service Providers Can Prepare]( What cloud service providers need to know to prepare for FedRAMP Baselines Rev. 5, as documented in the new Transition Guide. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Critical Atlassian Bug Exploit Now Available; Immediate Patching Needed]( In-the-wild exploit activity from dozens of cyberattacker networks is ramping up for the security vulnerability in Confluence, tracked as CVE-2023-22518. [Okta Data Compromised Through Third-Party Vendor]( After 1Password, MGM, and Caesars, yet more cybersecurity woes mount for the identity and access management company. [3 Ways to Close the Cybersecurity Skills Gap — Now]( The future of the cybersecurity workforce will rely less on long-led legacy education models and more on skills-now training. [Ransomware Readiness Assessments: One Size Doesn't Fit All]( Tailored ransomware readiness assessments help organizations develop comprehensive response plans that minimize damage and restore operations quickly. [MORE]( EDITORS' CHOICE [Ace Hardware Still Reeling From Weeklong Cyberattack]( Cyberattackers downed a quarter of the hardware giant's entire IT apparatus. Now, before the company can recover, they're going after individual branches. LATEST FROM THE EDGE [Name That Edge Toon: Out for the Count]( Come up with a clever cybersecurity-related caption, and our panel of experts will reward the winner with a $25 Amazon gift card. LATEST FROM DR TECHNOLOGY [Understand the True Cost of a UEM Before Making the Switch]( When investing in a unified endpoint management solution, prioritize the needs of your network and users ahead of brand names. This Tech Tip focuses on questions to ask. LATEST FROM DR GLOBAL [Middle East's 5G Acceleration May Pose Serious Security Issues]( Telcos across the Middle East are rapidly rolling out 5G networks. Will this accelerated adoption lead to higher security vulnerabilities? WEBINARS - [How to Combat the Latest Cloud Security Threats]( More businesses have shifted critical assets and operations to the cloud, as service providers enhance their security capabilities and companies adapt to more remote workforces. In this webinar, experts outline the top ways that attackers are exploiting cloud services, applications ... - [Building an Effective Active Directory Security Strategy]( For many organizations, Microsoft's Active Directory is the source of truth for user identity and system access. For criminals, Active Directory is a gold mine of information for moving laterally through the corporate infrastructure. Despite its importance, many security teams ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [The Forrester Wave: External Threat Intelligence Service Providers, Q3 2023]( - [Threat Intelligence: Data, People and Processes]( - [Global Perspectives on Threat Intelligence]( - [Building Cyber Resiliency: Key Strategies for Proactive Security Operations]( - [Mandiant Threat Intelligence at Penn State Health]( - [9 Traits You Need to Succeed as a Cybersecurity Leader]( - [The Ultimate Guide to the CISSP]( [View More White Papers >>]( FEATURED REPORTS - [The State of Supply Chain Threats]( - [What Ransomware Groups Look for in Enterprise Victims]( Ransomware attackers cast a wide net -- they just care about causing damage, making money, and gaining new victims. That means no organization is automatically immune to attack just because of its size or industry. Organizations need to take steps ... - [Securing the Remote Worker: How to Mitigate Off-Site Cyberattacks]( The most profound change to enterprise security with the rise of remote work is the way endpoint security has moved from last line of defense to being on the frontline. The user's endpoint is the first device attackers encounter, making ... [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [Excelsior University Contends for National Cyber League Competition Title]( [Aqua Security Introduces Industry-First Kubernetes Vulnerability Scanning With Trivy KBOM]( [ReasonLabs Unveils RAV VPN for Apple iOS]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [Effective Security Analytics for Enterprises]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=119158&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_11.07.23&sp_cid=50412&utm_content=DR_NL_Dark%20Reading%20Daily_11.07.23&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#e7 If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)