Dark Reading

Navigating the Unique Security Risks of Asia's Digital Supply Chain

Regulatory differences, interconnected digital ecosystems, and the rise of AI have created a complex supply chain Asian ...
Dark Reading

Audit: Big Tech Often Ignores CA Privacy Law Opt-Out Requests

Google, Meta, Microsoft about half the time don't comply with requests to opt out of online tracking per California law ...
Dark Reading

Microsoft, Salesforce Patch AI Agent Data Leak Flaws

Two recently fixed prompt injections in Salesforce Agentforce and Microsoft Copilot would have enabled an external attacker ...
Dark Reading

Prepping for 'Q-Day': Why Quantum Risk Management Should Start Now

Quantum computers are coming and they may impact systems in unexpected ways that security teams will need to plan for.
Dark Reading

Microsoft Bets $10B to Boost Japan's AI, Cybersecurity

The deal aims to accelerate AI adoption, train workers, and develop cybersecurity partnerships — the latest move by a ...
Dark Reading

Privilege Elevation Dominates Massive Microsoft Patch Update

Elevation-of-privilege bugs accounted for more than half of the 165 vulnerabilities patched, with two zero-days in that mix.
Dark Reading

EDR-Killer Ecosystem Expansion Requires Stronger BYOVD Defenses

Stopping EDR killers, which employ bring-your-own-vulnerable-driver (BYOVD) attack techniques, is difficult, but not ...
Dark Reading

War Game Exercise Demonstrates How Social Media Manipulation Works

In a game called "Capture the Narrative," students created bots to sway a fictional election, simulating influence in ...
Dark Reading

CSA: CISOs Should Prepare for Post-Mythos Exploit Storm

A Cloud Security Alliance (CSA) paper warns of an "AI vulnerability storm" triggered by the introduction of Anthropic's ...
Dark Reading

Why Orgs Need to Test Networks to Withstand DDoS Attacks During Peak Loads

Security teams need to test distributed denial-of-service defenses during periods of high demand, such as tax filing ...
Dark Reading

Empty Attestations: OT Lacks the Tools for Cryptographic Readiness

OT asset owners are being asked by regulators to attest to their post-quantum cryptographic readiness without the appropriate ...
Dark Reading

APT41 Delivers 'Zero-Detection' Backdoor to Harvest Cloud Credentials

The China-backed threat group is targeting AWS, Google, Azure, and Alibaba cloud environments and using typosquatting to ...