Security News

darkreading Feb 09, 2026 at 21:59

Warlock Gang Breaches SmarterTools Via SmarterMail Bugs

The ransomware group breached SmarterTools through a vulnerability in the company's own SmarterMail product.

Read Article

darkreading Feb 09, 2026 at 21:15

OT Attacks Get Scary With 'Living-off-the-Plant' Techniques

Ironically, security by obscurity has helped prevent dangerous OT attacks in recent years. It won't be that way forever.

Read Article

darkreading Feb 09, 2026 at 21:14

TeamPCP Turns Cloud Infrastructure into Crime Bots

The threat actor has been compromising cloud environments at scale with automated worm-like attacks on exposed services and interfaces.

Read Article

darkreading Feb 09, 2026 at 20:14

Black Basta Bundles BYOVD With Ransomware Payload

Researchers discovered a newly disclosed vulnerable driver embedded in Black Basta's ransomware, illustrating the increasing popularity of the defense-evasion technique.

Read Article

darkreading Feb 09, 2026 at 17:22

What Organizations Need to Change When Managing Printers

Ask the Expert: Organizations need to close the ownership vacuum, establish durable security controls, and ensure printers are protected as rigorously as other endpoints.

Read Article

darkreading Feb 06, 2026 at 16:34

"Encrypt It Already" Campaign Pushes Big Tech to Prioritize E2E Encryption

The Electronic Frontier Foundation is urging major technology companies to follow through on their promises to implement end-to-end encryption by default across their services, as privacy concerns mount amid increased AI use.

Read Article

darkreading Feb 06, 2026 at 16:25

Shai-hulud: The Hidden Cost of Supply Chain Attacks

Recent supply chain attacks involving self-propagating worms have spread far, but the damage and long-term impact is hard to quantify.

Read Article

darkreading Feb 06, 2026 at 15:42

OpenClaw's Gregarious Insecurities Make Safe Usage Difficult

Malicious "skills" and persnickety configuration settings are just some of the issues that security researchers have found when installing — and removing — the OpenClaw AI assistant.

Read Article

darkreading Feb 06, 2026 at 12:53

Data Tool to Triage Exploited Vulnerabilities Can Make KEV More Useful

A disconnect exists between the organization's cybersecurity needs and lists like CISA's KEV Catalog. KEV Collider combines data from multiple open-source vulnerability frameworks to help security teams quickly assess which are important, based on their priorities.

Read Article

darkreading Feb 05, 2026 at 22:35

EnCase Driver Weaponized as EDR Killers Persist

The forensic tool's driver was signed with a digital certificate that expired years ago, but major security gaps allowed Windows to load it.

Read Article

darkreading Feb 05, 2026 at 22:03

Agentic AI Site 'Moltbook' Is Riddled With Security Risks

Someone used AI to build an entire Web platform, which then did something predictable and preventable: It exposed all its data through a publicly accessible API.

Read Article

darkreading Feb 05, 2026 at 14:00

Cyber Success Trifecta: Education, Certifications & Experience

Colonel Georgeo Xavier Pulikkathara, CISO at iMerit discusses the importance of fundamentals, continuous learning, and human ingenuity in the face of AI-driven cybersecurity evolution.

Read Article

darkreading Feb 05, 2026 at 07:00

Protests Don't Impede Iranian Spying on Expats, Syrians, Israelis

Iranian threat actors have been stealing credentials from people of interest across the Middle East, using spear-phishing and social engineering.

Read Article

darkreading Feb 04, 2026 at 22:14

Ransomware Gang Goes Full 'Godfather' With Cartel

Since its launch in 2023, DragonForce has pushed a cartel model, emphasizing cooperation and coordination among ransomware gangs.

Read Article

darkreading Feb 04, 2026 at 21:48

CISA Makes Unpublicized Ransomware Updates to KEV Catalog

A third of the "flipped" CVEs affected network edge devices, leading one researcher to conclude, "Ransomware operators are building playbooks around your perimeter."

Read Article

darkreading Feb 04, 2026 at 21:06

Attackers Use Windows Screensavers to Drop Malware, RMM Tools

By tapping the unusual .scr file type, attackers leverage "executables that don't always receive executable-level controls," one researcher noted.

Read Article

darkreading Feb 04, 2026 at 13:30

Extra Extra! Announcing DR Global: Latin America

Dark Reading has something new hitting the newsstand: a content section purpose-built for Latin American readers, featuring news, analysis, features, and multimedia.

Read Article

darkreading Feb 04, 2026 at 13:00

Big Breach or Nada de Nada? Mexican Gov't Faces Leak Allegations

A hacktivist group claims a 2.3-terabyte data breach exposes the information of 36 million Mexicans, but no sensitive accounts are at risk, says government.

Read Article

darkreading Feb 04, 2026 at 11:00

Google Looker Bugs Allow Cross-Tenant RCE, Data Exfil

Attackers could even have used one vulnerable Lookout user to gain access to other GCP tenants' environments.

Read Article

darkreading Feb 03, 2026 at 21:52

Russian Hackers Weaponize Microsoft Office Bug in Just 3 Days

APT28's attacks rely on specially crafted Microsoft Rich Text Format (RTF) documents to kick off a multistage infection chain to deliver malicious payloads.

Read Article