Unknown attackers have accessed PII for hundreds of thousands of loyalty customers at the high-end Singapore establishment. [TechWeb]( Follow Dark Reading:
[RSS](
November 08, 2023 LATEST SECURITY NEWS & COMMENTARY [Marina Bay Sands Becomes Latest Hospitality Cyber Victim](
Unknown attackers have accessed PII for hundreds of thousands of loyalty customers at the high-end Singapore establishment.
[Atlassian Bug Escalated to 10, All Unpatched Instances Vulnerable](
Active ransomware attacks against vulnerable Atlassian Confluence Data Center and Servers ratchets up risk to enterprises, now reflected in the bug's revised CVSS score of 10.
[North Korea's BlueNoroff APT Debuts 'Dumbed Down' macOS Malware](
Kim Jong-Un's hackers are scraping the bottom of the barrel, using script kiddie-grade malware to steal devalued digital assets.
[CVSS 4.0 Offers Significantly More Patching Context](
The latest vulnerability severity scoring system addresses gaps in the previous version; here's how to get the most out of it.
[Crafting an AI Policy That Safeguards Data Without Stifling Productivity](
Companies must recognize AI's utility, while setting clear boundaries to curtail unsafe utilization.
[Identity Alone Won't Save Us: The TSA Paradigm and MGM's Hack](
To combat sophisticated threats, we need to improve how we approach authorization and access controls.
[(Sponsored Article) Sky's the Limit, but What About API Security? Challenges in the Cloud-First Era](
APIs enable cloud transformation but bring security risks, demanding robust, adaptive strategies to safeguard data and operations. [MORE NEWS /]( [MORE COMMENTARY]( HOT TOPICS [Kinsing Cyberattackers Debut 'Looney Tunables' Cloud Exploits]( Admins need to patch immediately, as the prolific cybercrime group pivots from cryptomining to going after cloud secrets and credentials.
[Virtual Kidnapping: AI Tools Are Enabling IRL Extortion Scams]( With AI and publicly available data, cybercriminals have the resources they need to fake a real-life kidnapping and make you believe it.
[Ace Hardware Still Reeling From Weeklong Cyberattack]( Cyberattackers downed a quarter of the hardware giant's entire IT apparatus. Now, before the company can recover, they're going after individual branches.
[Meet Your New Cybersecurity Auditor: Your Insurer]( As cyber insurance gets more expensive and competitive, security decision-makers have actionable opportunities to strengthen their cyber defenses.
[Middle East's 5G Acceleration May Pose Serious Security Issues]( Telcos across the Middle East are rapidly rolling out 5G networks. Will this accelerated adoption lead to higher security vulnerabilities? [MORE]( EDITORS' CHOICE [Novel Google Cloud RAT Uses Calendar Events for C2](
Cybercriminals are abusing legitimate functions within cloud services, and providers can't totally stop them, especially when it comes to innovative approaches like this. LATEST FROM THE EDGE [Securing Remote Workers Through Zero Trust](
Dark Readingâs special report look at how enterprises turning to zero trust to harden the security of their remote workforce. Challenges are steep. LATEST FROM DR TECHNOLOGY [Software Complexity Bedevils Mainframe Security](
The high-performance and resilient platforms satisfy critical roles, but software complexity and the graying of the specialist workforce are creating security challenges. LATEST FROM DR GLOBAL [Iran-Linked Agrius APT Group Targets Israeli Education, Tech Sectors](
The attackers also use custom wipers to cover their tracks and bypass EDR. WEBINARS - [Modern Threats, Modern Security: Lessons in Facing the 3 Urgent Risks of Zero-Days, Supply Chain Attacks, and Social Engineering]( $10.5 trillion. That is one projection for the costs of global cybercrime by 2025 - which would represent the greatest transfer of economic wealth in history. Open up DarkReading, and it seems like we are on that trajectory, with high-profile attacks and ... - [Building an Effective Active Directory Security Strategy]( For many organizations, Microsoft's Active Directory is the source of truth for user identity and system access. For criminals, Active Directory is a gold mine of information for moving laterally through the corporate infrastructure. Despite its importance, many security teams ... [View More Dark Reading Webinars >>]( WHITE PAPERS - [The Forrester Wave: External Threat Intelligence Service Providers, Q3 2023](
- [Threat Intelligence: Data, People and Processes](
- [Global Perspectives on Threat Intelligence](
- [Building Cyber Resiliency: Key Strategies for Proactive Security Operations](
- [Mandiant Threat Intelligence at Penn State Health](
- [9 Traits You Need to Succeed as a Cybersecurity Leader](
- [The Ultimate Guide to the CISSP]( [View More White Papers >>]( FEATURED REPORTS - [What Ransomware Groups Look for in Enterprise Victims]( Ransomware attackers cast a wide net -- they just care about causing damage, making money, and gaining new victims. That means no organization is automatically immune to attack just because of its size or industry. Organizations need to take steps ... - [How to Use Threat Intelligence to Mitigate Third-Party Risk]( The report discusses the various steps of a continuous third-party intelligence lifecycle: Data collection, Data classification, Data storage, Data analysis, reporting, dissemination, continuous monitoring, data governance, and choosing the right technology stack. The report also includes information about how attackers ... - [Concerns Mount Over Ransomware, Zero-Day Bugs, and AI-Enabled Malware]( [View More Dark Reading Reports >>]( PRODUCTS & RELEASES [Malwarebytes Launches ThreatDown to Empower Resource Constrained IT Organizations]( [Myrror Security Emerges From Stealth With $6M Seed Round to Prevent Attacks on the Software Development Process]( [Excelsior University Contends for National Cyber League Competition Title]( [Aqua Security Introduces Industry-First Kubernetes Vulnerability Scanning With Trivy KBOM](
[MORE PRODUCTS & RELEASES]( CURRENT ISSUE
[Key DevSecOps Principles for Enterprise Mobile App Development](
[DOWNLOAD THIS ISSUE](
[VIEW BACK ISSUES]( Dark Reading Daily
-- Published By [Dark Reading](
Informa Tech Holdings LLC | Registered in the United States
with number 7418737 | 605 Third Ave., 22nd Floor, New York, New York 10158, USA
To opt-out of any future Dark Reading Daily Newsletter emails, please respond [here.](
Thoughts about this newsletter? [Give us feedback.](mailto:ContactDarkReading@informa.com)
Keep This Newsletter Out Of Your SPAM Folder
Don't let future editions go missing. Take a moment to add the newsletter's address to your anti-spam white list: /cdn-cgi/l/email-protection?sp_aid=119193&elq_cid=22844169&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529&utm_source=eloqua&utm_medium=email&utm_campaign=DR_NL_Dark%20Reading%20Daily_11.08.23&sp_cid=50427&utm_content=DR_NL_Dark%20Reading%20Daily_11.08.23&sp_eh=9ec2e0353644c03ce56099bfb161a49d1f8a5a22f0d884f0cd961b89d205d529#cb
If you're not sure how to do that, ask your administrator or ISP. Or check your anti-spam utility's documentation.
We take your privacy very seriously. Please review our [Privacy Statement.]( [© 2023]( | [Informa Tech]( | [Privacy Statement]( | [Terms & Conditions]( | [Contact Us](mailto:ContactDarkReading@informa.com)