Iranian APT Group Targets IP Cameras, Extends Attacks Beyond Israel | OWASP Beefs Up GenAI Security Guidance

The Iran-linked group Emennet Pasargad aims to undermine public confidence in Israel and Western nations by using hack-and-leak campaigns and disrupting government services, including elections. [TechWeb]( Follow Dark Reading: [RSS]( November 07, 2024 LATEST SECURITY NEWS & COMMENTARY [Iranian APT Group Targets IP Cameras, Extends Attacks Beyond Israel]( The Iran-linked group Emennet Pasargad aims to undermine public confidence in Israel and Western nations by using hack-and-leak campaigns and disrupting government services, including elections. [OWASP Beefs Up GenAI Security Guidance Amid Growing Deepfakes]( As businesses worry over deepfake scams and other AI attacks, organizations are adding guidance for cybersecurity teams on how to detect, and respond to, next-generation threats. That includes Exabeam, which was recently targeted by a deepfaked job candidate. [Fake Copyright Infringement Emails Spread Rhadamanthys]( Attackers are triggering victims' deep-seated fear of getting in trouble in order to spread the sophisticated stealer across continents. [Docusign API Abused in Widescale, Novel Invoice Attack]( Attackers are exploiting the "Envelopes: create API" of the enormously popular document-signing service to flood corporate inboxes with convincing phishing emails aimed at defrauding organizations. It's an unusual attack vector with a high success rate. [On Election Day, Disinformation Worries Security Pros the Most]( A Dark Reading poll reveals widespread concern over disinformation about election integrity and voter fraud, even as Russia steps up deepfake attacks meant to sow distrust in the voting process among the electorate. [Privacy Anxiety Pushes Microsoft Recall AI Release Again]( The Recall AI tool will be available to Copilot+ PC subscribers in December, and can be used to record images of every interaction on the device for review later. Critics say this introduces major privacy and security concerns along with useful functionality. [Despite Emerging Regulations, Mobile Device, IoT Security Requires More Industry Attention]( Omdia Principal Analyst Hollie Hennessy says that until a promising new set of regulations around the world comes online, connected device security entails a shared responsibility among consumers, enterprises, and manufacturers. [The Case Against Abandoning CrowdStrike Post-Outage]( Knee-jerk reactions to major vendor outages could do more harm than good. [How to Outsmart Stealthy E-Crime and Nation-State Threats]( In a time of increasingly sophisticated cross-domain attacks, relying solely on automated solutions isn't enough. [Can Automatic Updates for Critical Infrastructure Be Trusted?]( The true measure of our cybersecurity prowess lies in our capacity to endure. [How to Win at Cyber by Influencing People]( Zero trust is a mature approach that will improve your organization's security. [MORE NEWS /]( [MORE COMMENTARY]( DON'T MISS THIS UPCOMING EVENT [Know Your Enemy: Understanding Cybercriminals and Nation-State Actors]( Nov. 14, 11:00 a.m. – 5:00 p.m. ET. Who are the cyberattackers behind current attack campaigns, and what is their endgame? How could their tactics and techniques be used against your organization? In this free virtual event, learn about the latest, most prolific threat actors and their methods, and how to protect your enterprise. Register now! LISTEN TO OUR LATEST PODCAST Reading Confidential: Quantum Has Landed, So Now What?]( NIST's new post-quantum cryptography standards are here, so what comes next? This episode of Dark Reading Confidential digs into the world of quantum computing from a cybersecurity practitioner's point of view — with guests Matthew McFadden, vice president, Cyber, General Dynamics Information Technology (GDIT) and Thomas Scanlon, professor, Heinz College, Carnegie Mellon University. [MORE]( PRODUCTS & RELEASES [SOFTSWISS Expands Bug Bounty Program]( [AU10TIX Q3 2024 Global Identity Fraud Report Detects Skyrocketing Social Media Attacks]( [MORE PRODUCTS & RELEASES]( EDITORS' CHOICE [Cybersecurity Job Market Stagnates, Dissatisfaction Abounds]( The 2024 ISC2 Cybersecurity Workforce Study found that amid a tightening job market and dynamic cyber-threat environment, ongoing staffing and skills shortages are putting organizations at serious risk. Can AI move the needle in defenders' favor? LATEST FROM THE EDGE [How Playing Cyber Games Can Help You Get Hired]( When it comes to landing a job in cybersecurity, what does it take to stand out from the pack? Try playing games. LATEST FROM DR TECHNOLOGY [Oh, the Humanity! How to Make Humans Part of Cybersecurity Design]( Government and industry want to jump-start the conversation around "human-centric cybersecurity" to boost the usability and effectiveness of security products and services. LATEST FROM DR GLOBAL [China's Elite Cyber Corps Hone Skills on Virtual Battlefields]( The nation leads in the number of capture-the-flag tournaments sponsored by government and industry — a strategy from which Western nations could learn. WEBINARS - [Transform Your Security Operations And Move Beyond Legacy SIEM]( - [Social Engineering: New Tricks, New Threats, New Defenses]( [View More Dark Reading Webinars >>]( WHITE PAPERS - [Insider Risk Programs: 3 Truths and a Lie]( - [2024 Cloud Security Report]( - [Gartner Magic Quadrant for Application Security Testing]( - [The ROI of RevealX Against Ransomware]( - [A CISO's Guide to Geopolitics and CyberSecurity]( - [SANS Security Awareness Maturity Model]( - [How to Use Threat Intelligence to Mitigate Third-Party Risk]( [View More White Papers >>]( FEATURED REPORTS - [Managing Third-Party Risk Through Situational Awareness]( - [2024 InformationWeek US IT Salary Report]( [View More Dark Reading Reports >>]( Dark Reading Weekly -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Weekly Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=126670&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Weekly_11.07.24&sp_cid=55733&utm_content=DR_NL_Dark%20Reading%20Weekly_11.07.24&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#11 If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2024]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)