Recent content by Infotellers

The UC Berkeley Center for Long-Term Cybersecurity (CLTC) offers tools and support to schools, local governments, and non-profits as they defend themselves against a growing volume of cyberattacks. States, cities, and localities are struggling to stay ahead of devastating cyberattacks, but...

Well-run security drills go beyond checking audit boxes to identifying and addressing trouble spots. Effective leaders ensure proper scope, access, and follow-through, but it's not easy. The effectiveness of a penetration test depends largely on the commitment of an organization's security...

A proof-of-concept exploit (PoC) shows how someone with admin privileges can exploit the issue to steal passwords, and thus use them to engage in further malicious activity. UPDATE An attacker with administrative privileges can gain access to Microsoft Edge user passwords even when they're...

Two decades ago, pen tester Steve Stasiukonis caused a sensation by sprinkling rigged thumb drives around a credit union parking lot and following what curious employees did next. This episode looks back at the history-making event. Dark Reading's Becky Bracken: Hello everyone, and welcome back...

Cargo theft is no longer about small groups of criminals operating on the ground, but transnational cybercriminal syndicates using access to supply chain systems to reroute goods. Cyber operations have grown to become a major component of cargo theft over the past four years, with...

Global financial institutions are panicked over Anthropic's new superhacker AI model. Cyber experts aren't quite as worried. While the world waits to see if Anthropic's Mythos model is really as scary as people say it is, the financial services industry in Japan is establishing a task force...

Wiz used an AI reverse-engineering tool to pinpoint a vulnerability that previously would have been too costly and time-consuming to undertake. GitHub yesterday disclosed CVE-2026-3854, a high severity (8.7 CVSS) vulnerability identified in GitHub Enterprise Server that would grant an...

Flaws in OpenEMR's platform — used by more than 100,000 healthcare providers — enabled database compromise, remote code execution, and data theft. An AI-powered analysis of the OpenEMR codebase uncovered 38 previously undisclosed vulnerabilities in the open source electronic health record...

The emerging ransomware has been deployed against victims of the TeamPCP supply chain attacks, but organizations should think twice before paying for a decryptor. The latest variant of an emerging ransomware may be far more destructive than its operators intended, acting as a wiper that...

An analysis of the destructive malware reveals sophisticated living-off-the-land (LotL) techniques and detailed strategies for the widespread deletion of data. An analysis of software artifacts from a malicious cyberattack targeting the energy and utilities sector in Venezuela late last year...

The North Korean group is using stolen victim videos, AI-generated avatars, and fake Zoom calls to scale malware attacks against cryptocurrency executives. North Korea's BlueNoroff state-sponsored hacking group is targeting cryptocurrency executives in an audacious, financially motivated...

Chris Inglis was the head civilian in charge at the NSA when the Snowden leaks exploded. He gets candid about mistakes the organization made, and what CISOs need to know about spotting potential threats, media disclosures, and "enculturation." Dark Reading's Becky Bracken: Hello everyone, and...

When 0APT and KryBit attacked each other, they exposed infrastructure and operational data, giving defenders rare insight into ransomware operations. When ransomware actors start attacking each other, who wins? Maybe defenders do. The Halcyon Ransomware Research Center published a blog post...

The malware has filled the gap created by last year's law enforcement takedowns of Lumma and Rhadamanthys. Credential-stealing malware Vidar, which has lurked in the cybercriminal ecosystem since 2018, has vaulted to the top of the infostealer market following law enforcement takedowns of its...

Attackers continue to scale a campaign to seed Open VSX with seemingly benign VS Code extensions that spread self-propagating malware. UPDATE The ongoing GlassWorm campaign has deployed a fresh wave of malicious Visual Studio (VS) Code extensions, many of which seem initially benign but...