March 28, 2024 at 09:12AM Israeli cybersecurity company Zafran emerged from stealth mode, unveiling its $30 million funding and a risk mitigation platform. Founded in 2022 by Sanaz Yashar, Ben Seri, and Snir Havdala, the firm’s platform leverages security tools to address vulnerabilities. Their industry-first mitigation knowledgebase works with endpoint detection, firewall, and cloud products. … Read more
March 25, 2024 at 03:00PM Leen Security secures $2.8 million pre-seed funding from 11.2 Capital, Inner Loop Capital, and Preface Ventures. The company aims to streamline cybersecurity by developing a unified data API to address the chaos caused by the use of numerous security tools and vendors. Leen aspires to be the central hub for … Read more
March 8, 2024 at 09:57AM Reach Security, a California startup, has secured $20 million in initial venture capital funding from Ballistic Ventures and Artisanal Ventures, among others. The company aims to enhance security management for businesses, utilizing AI-powered analytics to optimize security operations. CEO Garrett Hamilton believes their technology can revolutionize security infrastructure, offering efficiency … Read more
February 28, 2024 at 07:45AM Enterprise networks have evolved significantly, with data and applications now spanning a complex array of multi-cloud, on-premises, and legacy infrastructures. Traditional security tools struggle to provide complete visibility amidst this complexity. Extended detection and response (XDR) aims to address these challenges by offering consolidated visibility and advanced threat detection mechanisms, … Read more
February 10, 2024 at 10:17AM Recent versions of the Raspberry Robin malware use stealthy one-day exploits for vulnerabilities in software, before the fixes are widely deployed. The malware has evolved since its 2021 discovery and now employs new evasion and distribution methods. It has been observed targeting systems globally and using Discord for malicious file … Read more
January 24, 2024 at 07:06AM Kasseika, a new ransomware group, has adopted the Bring Your Own Vulnerable Driver (BYOVD) attack to evade security processes on Windows hosts, demonstrating similarities with the now-defunct BlackMatter. Their attack chain begins with a phishing email, followed by deploying remote administration tools and executing a malicious batch script. The ransomware … Read more
December 14, 2023 at 08:48AM The security operations center serves as the first line of defense against active attacks, but is often underfunded and understaffed. Dark Reading’s special report “Key Elements Enterprises Needs to Include in Modern SecOps” details the challenges facing modern enterprise security operations centers and suggests strategies for investing in tools, automation, … Read more
November 21, 2023 at 06:24AM QR code-based phishing techniques, known as “quishing,” are becoming popular among cybercriminals. By embedding malicious links in QR codes, attackers can bypass spam filters and evade detection. CAPTCHAs are also being exploited in phishing attacks to mask credential-harvesting forms on fake websites. Additionally, steganography is being used to hide malicious … Read more
November 10, 2023 at 04:03AM Automated security tools are becoming increasingly important for SOC teams, as they help cover the 80% of common threats across organizations. However, customization is still necessary for the remaining 20% of unique use cases. Automation can improve data ingestion, detection, investigation, and response, but customization allows organizations to address their … Read more
October 30, 2023 at 03:08AM The Dartmouth Conference in 1955 predicted that machines could simulate aspects of intelligence through precise descriptions. AI research progressed slowly until language tools like ChatGPT emerged, presenting both risks and benefits. IT professionals are concerned about cybercriminals using these tools, but still plan to integrate AI into their security programs. … Read more