Cyberattackers Spoof Palo Alto VPNs to Spread WikiLoader Variant | Cyber Insurance: A Big Difference in Premiums

The malware, first discovered two years ago, has returned in campaigns using SEO poisoning. [TechWeb]( Follow Dark Reading: [RSS]( September 05, 2024 LATEST SECURITY NEWS & COMMENTARY [Cyberattackers Spoof Palo Alto VPNs to Spread WikiLoader Variant]( The malware, first discovered two years ago, has returned in campaigns using SEO poisoning. [Cyber Insurance: A Few Security Technologies, a Big Difference in Premiums]( Ransomware attacks and email-based fraud account for 80% to 90% of all claims processed by cyber insurers, but a handful of cybersecurity technologies can help prevent big damages. [BlackCat Spin-off 'Cicada3301' Uses Stolen Creds on the Fly, Skirts EDR]( Malware authors have iterated on one of the premier encryptors on the market, building something even bigger and better. ['Voldemort' Malware Curses Orgs Using Global Tax Authorities]( The global malware campaign (that must not be named?) is targeting organizations by impersonating tax authorities, and using custom tools like Google Sheets for command and control. [Iran's 'Fox Kitten' Group Aids Ransomware Attacks on US Targets]( In a joint advisory, CISA and the FBI described the activity as a likely attempt by the group to monetize access to networks it already has compromised. [Why Identity Teams Need to Start Reporting to the CISO]( Identity management sits with IT for good reason, but now that identity is the common denominator in every attack, it's time identity security was owned by a leader with a security background, like the CISO. [CEO's Arrest Will Likely Not Dampen Cybercriminal Interest in Telegram]( In recent years, the platform has become a go-to tool for executing almost all conceivable cybercriminal activity. [FBI: North Korean Actors Readying Aggressive Cyberattack Wave]( Sophisticated social engineering is expected to accompany threat campaigns that are highly targeted and aimed at stealing crypto and deploying malware. [Ransomware Gangs Pummel Southeast Asia]( Successful ransomware attacks against organizations in Asia continue at peak levels in 2024 following a wave of high-profile data breaches last year. [How Telecom Vulnerabilities Can Be a Threat to Cybersecurity Posture]( Telecom-based attacks such as SMS toll fraud and 2FA hijacking have evolved into a mainstream concern for CISOs. [How CISOs Can Effectively Communicate Cyber-Risk]( A proximity resilience graph offers a more accurate representation of risk than heat maps and risk registers, and allows CISOs to tell a complex story in a single visualization. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Why LLMs Are Just the Tip of the AI Security Iceberg]( With the right processes and tools, organizations can implement advanced AI security frameworks that make hidden risks visible, enabling security teams to track and address them before impact. [Improved Software Supply Chain Resilience Equals Increased Security]( Understanding through visibility, managing through governance, and anticipating through continuous deployment will better prepare organizations for the next supply chain attack. [MORE]( PRODUCTS & RELEASES [Cobalt Appoints Sonali Shah as CEO]( [SANS Institute Unveils Critical Infrastructure Strategy Guide for 2024]( [AuthenticID Unveils Enhanced Smart ReAuth™ for Instant Biometric Reauthentication]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE ['Revival Hijack' on PyPI Disguises Malware With Legitimate File Names]( Adversaries reusing abandoned package names sneak malware into organizations in a sort of software shell game. LATEST FROM THE EDGE [Name That Edge Toon: Bug Off]( Feeling creative? Submit your caption and our panel of experts will reward the winner with a $25 Amazon gift card. LATEST FROM DR TECHNOLOGY [Open Source Tool Allows Voters to Verify Election Results]( The ElectionGuard project allows anyone — voters, campaign staffers, and election officials — to cryptographically verify ballots, a promise which may bolster faith in election integrity. LATEST FROM DR GLOBAL [Indian Army Propaganda Spread by 1.4K AI-Powered Social Media Accounts]( For three years now, more than a thousand social media accounts have been reposting the same pro-India, anti-Pakistan content on Facebook and X. WEBINARS - [How to Evaluate Hybrid-Cloud Network Policies and Enhance Security]( - [Catch the Threat Before it Catches you: Proactive Ransomware Defense]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [Evolve Your Ransomware Defense]( - [RevealX Catches Ransomware Within Days of Deployment at WCH]( - [A CISO's Guide to Geopolitics and CyberSecurity]( - [SANS 2024 Security Awareness Report]( - [The Future of Passwords and the Passwordless Evolution]( - [5 Critical Controls for World-Class OT Cybersecurity]( - [IT Risk & Compliance Platforms: A Buyer's Guide]( [View More White Papers >>]( FEATURED REPORTS - [Managing Third-Party Risk Through Situational Awareness]( - [2024 InformationWeek US IT Salary Report]( [View More Dark Reading Reports >>]( Dark Reading Weekly -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Weekly Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=125527&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Weekly_09.05.24&sp_cid=54959&utm_content=DR_NL_Dark%20Reading%20Weekly_09.05.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#4d If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)