Dark Reading

AI & the Death of Accuracy: What It Means for Zero-Trust

AI "model collapse," where LLMs over time train on more and more AI-generated data and become degraded, can introduce a host ...
Dark Reading

Microsoft Rushes Emergency Patch for Office Zero-Day

To exploit the vulnerability, an attacker would need either system access or be able to convince a user to open a malicious ...
Dark Reading

Critical Telnet Server Flaw Exposes Forgotten Attack Surface

While telnet is considered obsolete, the network protocol is still used by hundreds of thousands of legacy systems and IoT ...
Dark Reading

Vibe-Coded 'Sicarii' Ransomware Can't Be Decrypted

A new ransomware strain that entered the scene last year has poorly designed code and an odd "Hebrew" identity that might be ...
Dark Reading

'Stanley' Toolkit Turns Chrome Into Undetectable Phishing Vector

The malware-as-a-service kit enables malicious overlays on real websites without changing the visible URL, issuing a new ...
Dark Reading

WorldLeaks Extortion Group Claims It Stole 1.4TB of Nike Data

The sportswear brand is investigating an alleged breach of its network that exposed some 188,347 files of highly sensitive ...
Dark Reading

5 Practical Ways to Use Security AI Without Losing Control

Feed firewall, cloud, SD-WAN, and identity logs into AI-assisted analytics. Use AI to build relationship-aware maps of applications, dependencies, and access paths. Prioritize hotspots where exposure, ...
Dark ReadingOpinion

Hand CVE Over to the Private Sector

By the time of CVE's launch, ISS (later acquired by IBM) maintained a fully public VDB, as of August 1997. A company I helped ...