DPRK Exploits 2 MITRE Sub-Techniques: Phantom DLL Hijacking, TCC Abuse

North Korean hackers break ground with new exploitation techniques for Windows and macOS. [TechWeb]( Follow Dark Reading: [RSS]( April 12, 2024 LATEST SECURITY NEWS & COMMENTARY [DPRK Exploits 2 MITRE Sub-Techniques: Phantom DLL Hijacking, TCC Abuse]( North Korean hackers break ground with new exploitation techniques for Windows and macOS. [Sisense Password Breach Triggers 'Ominous' CISA Warning]( With stores of mega-corporate business intelligence, a Sisense compromise could potentially mushroom into supply chain cyberattack disaster, experts fear. [Critical Rust Flaw Poses Exploit Threat in Specific Windows Use Cases]( Project behind the Rust programming language asserted that any calls to a specific API would be made safe, even with unsafe inputs, but researchers found ways to circumvent the protections. [Apple Warns Users in 150 Countries of Mercenary Spyware Attacks]( In new threat notification information, Apple singled out Pegasus vendor NSO Group as a culprit in mercenary spyware attacks. [Expired Redis Service Abused to Use Metasploit Meterpreter Maliciously]( Attackers have compromised an 8-year-old version of the cloud platform to distribute various malware that can take over infected systems. [Why MLBOMs Are Useful for Securing the AI/ML Supply Chain]( A machine learning bill of materials (MLBOM) framework can bring transparency, auditability, control, and forensic insight into AI and ML supply chains. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Top MITRE ATT&CK Techniques and How to Defend Against Them]( A cheat sheet for all of the most common techniques hackers use, and general principles for stopping them. [NSA Updates Zero-Trust Advice to Reduce Attack Surfaces]( Agency encourages broader use of encryption, data-loss prevention, as well as data rights management to safeguard data, networks, and users. [How Nation-State DDoS Attacks Impact Us All]( Global organizations and geopolitical entities must adopt new strategies to combat the growing sophistication in attacks that parallel the complexities of our new geopolitical reality. [Microsoft Patch Tuesday Tsunami: No Zero-Days, but an Asterisk]( Microsoft patched a record number of 147 new CVEs this month, though only three are rated "Critical." [MORE]( PRODUCTS & RELEASES [Cohesity Extends Collaboration to Strengthen Cyber Resilience With IBM Investment in Cohesity]( [National Security Agency Announces Dave Luber As Director of Cybersecurity]( [Wyden Releases Draft Legislation to End Federal Dependence on Insecure, Proprietary Software]( [MedSec Launches Cybersecurity Program For Resource-Constrained Hospitals]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [XZ Utils Scare Exposes Hard Truths About Software Security]( Much of the open source code embedded in enterprise software stacks comes from small, under-resourced, volunteer-run projects. LATEST FROM THE EDGE [Proper DDoS Protection Requires Both Detective and Preventive Controls]( Distributed denial-of-service attacks still plague the enterprise, but adding preventive measures can reduce their impact. LATEST FROM DR TECHNOLOGY [Knostic Brings Access Control to LLMs]( Led by industry veterans Gadi Evron and Sounil Yu, the new company lets organizations adjust how much information LLMs provide based on the user's role and responsibilities. LATEST FROM DR GLOBAL [Zambia Busts 77 People in China-Backed Cybercrime Operation]( Phony call center company conducted online fraud and other Internet scams. WEBINARS - [Where and Why Threat Intelligence Makes Sense for Your Enterprise Security Strategy]( - [Â Key Findings from the State of AppSec Report 2024]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [Making Sense of Your Security Data: The 6 Hardest Problems]( - [The State of Incident Response]( - [Use the 2023 MITRE ATT&CK Evaluation Results for Turla to Inform EDR Buying Decisions]( - [A Solution Guide to Operational Technology Cybersecurity]( - [Causes and Consequences of IT and OT Convergence]( - [FortiSASE Customer Success Stories - The Benefits of Single Vendor SASE]( - [Fortinet Named a Leader in the Forrester Wave: Zero Trust Edge (ZTE) Solutions]( [View More White Papers >>]( FEATURED REPORTS - [Industrial Networks in the Age of Digitalization]( - [Zero-Trust Adoption Driven by Data Protection]( - [How Enterprises Assess Their Cyber-Risk]( [View More Dark Reading Reports >>]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=122798&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_04.12.24&sp_cid=52987&utm_content=DR_NL_Dark%20Reading%20Daily_04.12.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#4b If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)