Schneider Power Meter Vulnerability Opens Door to Power Outages

A severe security vulnerability allows credentials for the power meters to continuously transmit in cleartext, allowing device takeover. [TechWeb]( Follow Dark Reading: [RSS]( June 21, 2023 LATEST SECURITY NEWS & COMMENTARY [Schneider Power Meter Vulnerability Opens Door to Power Outages]( A severe security vulnerability allows credentials for the power meters to continuously transmit in cleartext, allowing device takeover. [100K+ Infected Devices Leak ChatGPT Accounts to the Dark Web]( Infostealers are as alive as ever, wantonly sweeping up whatever business data might be of use to cybercriminals, including OpenAI credentials. [Mysterious Mystic Stealer Spreads Like Wildfire in Mere Months]( A criminal crowd-sourcing campaign has led to swift adoption of the stealer, which can pilfer key computer data, credentials from browsers and chat apps, and cryptocurrency from multiple wallets. [Fresh Ransomware Gangs Emerge As Market Leaders Decline]( The ransomware landscape is energized with the emergence of smaller groups and new tactics, while established gangs like LockBit see fewer victims. [Hackers Will Be Quick to Bypass Gmail's Blue Check Verification System]( It's still important to use other security measures, such as strong passwords and two-factor authentication, to protect your data. [Rorschach Ransomware: What You Need to Know]( Learn how the latest ransomware variant has heightened attack execution speed and what that means for cybersecurity operations. [(Sponsored Article) Harness the Power of PKI to Battle Data Breaches]( The average cost of a data breach is $4.35 million. Understand the power of public key infrastructure (PKI) and its role in encrypting data and battling breaches. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Russian APT 'Cadet Blizzard' Behind Ukraine Wiper Attacks]( Microsoft says Cadet Blizzard wielded a custom wiper malware in the weeks leading up to Russia's invasion of Ukraine, and it remains capable of wanton destruction. [Consumer Data: The Risk and Reward for Manufacturing Companies]( To adequately address privacy, manufacturers need to think differently about data. [Critical Barracuda ESG Zero-Day Linked to Novel Chinese APT]( A PRC-aligned actor used a trio of custom malware to take advantage of inherent weaknesses in edge appliances. [MORE]( EDITORS' CHOICE [US Investors Sniffing Around Blacklisted NSO Group Assets]( Pressure mounts on the NSO Group's business viability as Khashoggi widow joins group of plaintiffs suing the Israeli firm for Pegasus spyware abuse. LATEST FROM THE EDGE [An Analyst View of Gartner Security & Risk Management Summit 2023]( As a former Gartner analyst, it was interesting to be on the other side, listening as others explored the impact of CEO and CIO priorities on security. LATEST FROM DR GLOBAL [Jordanian Cyber Leaders Kick Off Cybersecurity Framework Development]( The nation of Jordan begins work on a national cybersecurity framework to align with international practices and better mitigate threats. LATEST FROM DR TECHNOLOGY [eSentire's AI Investigator Chatbot Aids Human Response to Security Incidents]( The tool trained on the company's investigative cybersecurity services data set, and provides natural language responses to client queries, to improve response and remediation efforts. WEBINARS - [The Future is CNAPP: Cloud Security From Prevention To Threat Detection]( Cloud-native development introduces unique attack vectors that are challenging to identify and are evolving rapidly. Join us as we take a deeper look into common cloud attack paths in the wild and discuss strategies for how to combat them before ... - [Secrets to a Successful Managed Security Service Provider Relationship]( Sometimes, the security team you have just isn't enough. To help keep up with security threats 24/7 - and to bolster skills the team may not have -- many enterprises are working with managed security service providers (MSSPs) and security providers ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [9 Traits You Need to Succeed as a Cybersecurity Leader]( - [Welcome to Modern Web App Security]( - [Proof-Based Scanning: No noise, just facts]( - [Every Minute Matters: Real-World Incident Response Timelines In Action]( - [The Big Business Of Cybercrime: A Deep Dive Guide]( - [Rediscovering Your Identity]( - [2023 Global Future of Cyber Report]( [View More White Papers >>]( FEATURED REPORTS - [Concerns Mount Over Ransomware, Zero-Day Bugs, and AI-Enabled Malware]( - [How Enterprises Are Managing Application Security Risks in a Heightened Threat Environment]( Concerns over API security and low-code/no-code use added to an already-full plate of application security challenges for many organizations over the last year. IT and security decision-makers are deeply concerned about compromises resulting from vulnerabilities in the software supply ... - [The 10 Most Impactful Types of Vulnerabilities for Enterprises Today]( The enterprise attack surface is constantly expanding. Enterprises have to think beyond zero day vulnerabilities. It's imperative security teams start looking at vulnerabilities in 5G, firmware, edge, and ICS/OT, among others. Managing system vulnerabilities is one of the old ... [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [NineID Raises $2.6M to Build a Secure Bridge Between the Digital and Physical Worlds of Corporate Security]( [Cymulate Announces Security Analytics for Continuous Threat Exposure Management]( [Netskope Enables Secure Enterprise Use of ChatGPT and Generative AI Applications]( [MORE PRODUCTS & RELEASES]( CURRENT ISSUE [How to Use Threat Intelligence to Mitigate Third-Party Risk]( [DOWNLOAD THIS ISSUE]( [VIEW BACK ISSUES]( Dark Reading Daily -- Published By [Dark Reading]( Informa Tech Holdings LLC | Registered in the United States with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.]( Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com) Keep This Newsletter Out Of Your SPAM Folder Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation. We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)