Super Bowl LVIII Presents a Vast Attack Surface for Threat Actors

The NFL's digitization of almost all aspects of the event means it has a lot more turf to protect for itself, and for the game's tens of millions of fans. [TechWeb]( Follow Dark Reading: [RSS]( February 09, 2024 LATEST SECURITY NEWS & COMMENTARY [Super Bowl LVIII Presents a Vast Attack Surface for Threat Actors]( The NFL's digitization of almost all aspects of the event means it has a lot more turf to protect for itself, and for the game's tens of millions of fans. [China Caught Dropping RAT Designed for FortiGate Devices]( Dutch military intelligence warns that new malware, called "Coathanger," was found in multiple FortiGate devices during an incident response, and that Chinese-state actors are using the persistent RAT for espionage. ['Coyote' Malware Begins Its Hunt, Preying on 61 Banking Apps]( Brazil, the world's center for banking Trojan malware, has produced one of its most advanced tools yet. And as history shows, Coyote may soon expand its territory. [QR Code 'Quishing' Attacks on Execs Surge, Evading Email Security]( The use of QR codes to deliver malicious payloads jumped in Q4 2023, especially against executives, who saw 42 times more QR code phishing than the average employee. ['Ov3r_Stealer' Malware Spreads Through Facebook to Steal Crates of Info]( A tangled web of attackers use various social media tactics to propagate the novel threat, which has several execution methods and exfiltrates data to Telegram. [LastPass Warns on Password App Discovered in Apple App Store]( The fake app looks similar to the legitimate LastPass app in its branding, and it could be stealing users' credentials. [5 AI Priorities to Stay Competitive]( In 2023, we learned just how big an impact AI will have on the world. What happens next? [How Hospitals Can Help Improve Medical Device Data Security]( To thwart cybercriminals, medical device manufacturers and hospitals must understand each other's roles and shared responsibilities in protecting health information. [Iran-Israel Cyber War Goes Global]( What started off as posturing from the Islamic Republic has turned into more serious cyberattacks against the US, Albania, and more. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [China's Cyberattackers Maneuver to Disrupt US Critical Infrastructure]( Lurking for 5 years, Volt Typhoon is positioning itself to physically disrupt and cripple US critical infrastructure by gaining access to operational technology networks in the energy, water, communications, and transportation sectors, according to CISA. [How to Prepare for Elevated Cybersecurity Risk at the Super Bowl]( Super Bowl 2024 in Las Vegas is a magnet for cybercrime. Here are a few things businesses should consider to minimize their risk. [Microsoft Adds Face Check to Entra Verified ID]( Microsoft has released the public preview of Face Check, which detects a person's "liveness" and compares their appearance against existing documents, such as a driver’s license, to verify identity. [MORE]( PRODUCTS & RELEASES [Billington CyberSecurity to Host 1st State and Local Cyber Summit in Wake of Serious Cyberattacks]( [etherFAX Pioneering Interoperable Secure Cloud Fax Standards]( [Cisco Adds New Security and AI Capabilities in Next Step Toward Cisco Networking Cloud Vision]( [New Report From Flare Highlights Pervasive Threat of Initial Access Brokers in NATO Countries]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [Linux Distros Hit by RCE Vulnerability in Shim Bootloader]( However, not everyone agrees with the NVD's assessment of CVE-2023-40547 being a near-maximum severity bug. LATEST FROM THE EDGE [Name That Edge Toon: The Great Escape]( Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. LATEST FROM DR TECHNOLOGY [Forget Deepfakes or Phishing: Prompt Injection is GenAI's Biggest Problem]( With prompt injection, AI puts new spin on an old security problem LATEST FROM DR GLOBAL [Pakistan Invests $36M in National Cybersecurity]( Efforts will focus on proactively identifying potential cyber threats. WEBINARS - [Securing the Software Development Life Cycle from Start to Finish]( - [Top Cloud Security Threats Targeting Enterprises]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [SANS ICS/OT Cybersecurity Survey: 2023's Challenges and Tomorrow's Defenses]( - [Threat Terrain of the Modern Factory: Survey of Programmable Assets and Robot Software]( - [Pixelle's OT Security Triumph with Security Inspection]( - [IT Zero Trust vs. OT Zero Trust: It's all about Availability]( - [The OT Zero Trust Handbook: Implementing the 4 Cornerstones of OT Security]( - [Buyer's Guide: Choosing a True DevSecOps Solution for Your Apps on AWS]( - [2023 Software Supply Chain Attack Report]( [View More White Papers >>]( FEATURED REPORTS - [Passwords Are Passe: Next Gen Authentication Addresses Today's Threats]( - [The State of Supply Chain Threats]( - [How to Deploy Zero Trust for Remote Workforce Security]( [View More Dark Reading Reports >>]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=121138&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_02.09.24&sp_cid=51890&utm_content=DR_NL_Dark%20Reading%20Daily_02.09.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#c9 If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)