Dark Reading’s December Tech Digest takes a look at the biggest stories (so far) of 2017 that shaped the cybersecurity landscape – from Russian hacking, ransomware’s coming-out party, and voting machine vulnerabilities to the massive data breach of credit-monitoring firm Equifax.
‘WannaCry’ Rapidly Moving Ransomware Attack Spreads to 74 Countries
A wave of ransomware infections took down a wide swath of UK hospitals and is rapidly moving across the globe.
May 12, 2017
Equifax Data Breach Prompts Calls for Tougher Security Requirements on Data Aggregators
Credit report bureau discloses breach that exposed data on 143 million US consumers.
September 8, 2017
DEF CON Rocks the Vote with Live Machine Hacking
Jeff Moss, founder of the hacker conference, is planning to host a full-blown election and voting system for hacking in 2018 at DEF CON, complete with a simulated presidential race.
July 28, 2017
Putin Directed Cyberattack, Propaganda Operation To Influence US Election
US Office of the Director of National Intelligence releases unclassified version of intel community’s findings on Russia’s attempts to influence US presidential race via cyberattacks, leaks, and pure propaganda.
January 6, 2017
Adobe’s Move to Kill Flash Is Good for Security
In recent years, Flash became one of the buggiest widely used apps out there.
July 26, 2017
DoJ Indicts Russian FSB Officers and Cybercriminals in Yahoo Breach
Russian intelligence officials hired renowned cybercriminals to do their bidding in massive hacks that compromised Yahoo, Gmail, and other email accounts of millions of people in the US, Russia, elsewhere.
March 15, 2017
Cybersecurity Faces 1.8 Million Worker Shortfall By 2022
(ISC)2 report shows the skills shortage is getting worse.
June 7, 2017
Microsoft Beefs Up Enterprise Security In Windows 10, Surface
Microsoft’s wave of security news targets hardware, Azure, Office 365, Windows 10, and SQL Server to safeguard business data.
February 10, 2017
Shadow Brokers Offers Database Of Windows Exploits For Sale
Notorious hacking crew claims tools are from NSA-affiliated Equation Group, and include plugin for tampering with event logs.
January 10, 2017
Google Docs Phishing Scam a Game Changer
Experts expect copycats that take advantage of passive authentication from third-party applications using standards such as OAuth.
May 4, 2017
First Malware Designed Solely for Electric Grids Caused 2016 Ukraine Outage
Attackers used CrashOverride/Industroyer to cause a partial power outage in Kiev, Ukraine, but it can be used anywhere, say researchers at Dragos and ESET.
June 12, 2017