Pwn2Own 2024: Tesla Hacks, Dozens of Zero-Days in Electrical Vehicles

Hacking teams pick apart electrical vehicles (EVs), exposing them for what they are: safety-critical computers without commensurate security.


https://www.darkreading.com/ics-ot-secur...o-days-evs

Help Wanted From Convicted Cybercriminals

Rather than languishing in jail for their crimes, could former fraudsters turn to legitimate cybersecurity work? African cyber expert's recommendation resurrects that debate.


https://www.darkreading.com/cybersecurit...rcriminals

SecurityScorecard Launches MAX




https://www.darkreading.com/cybersecurit...unches-max

Airline Gets SASE to Modernize Operations

Cathay, a travel lifestyle brand that includes the Cathay Pacific airline, had a growing cybersecurity problem made worse by its aging technology infrastructure. It solved part of the problem by replacing legacy technology with a modern one that has security built in.


https://www.darkreading.com/cloud-securi...l-security

Pegasus Spyware Targets Togolese Journalists' Mobile Devices

An investigation into 2021 intrusions uncovered multiple infections on the phones of journalists in the African country.


https://www.darkreading.com/endpoint-sec...le-devices

CISO Corner: Deep Dive Into SecOps, Insurance, & CISOs' Evolving Role

Our collection of the most relevant reporting and industry perspectives for those guiding cybersecurity strategies and focused on SecOps.


https://www.darkreading.com/cybersecurit...lving-role

ICS Ransomware Danger Rages Despite Fewer Attacks

Refined tactics, increased collaboration between groups, and continued success exploiting zero-days is helping ICS ransomware attackers inflict more damage, researchers find.


https://www.darkreading.com/ics-ot-secur...er-attacks

Redefining Cybersecurity for a Comprehensive Security Posture

The integration of different disciplines of cybersecurity and fraud management is a necessary evolution in the face of increasingly sophisticated digital threats.


https://www.darkreading.com/vulnerabilit...ty-posture

Saudi Arabia Boosts Railway Cybersecurity

Saudi rail provider partners will help Saudi Telecommunication Company (stc) to keep its security on track.


https://www.darkreading.com/ics-ot-secur...artnership

Exploits released for critical Jenkins RCE flaw, patch now

Multiple proof-of-concept (PoC) exploits for a critical Jenkins vulnerability allowing unauthenticated attackers to read arbitrary files have been made publicly available, with some researchers reporting attackers actively exploiting the flaws in attacks. [...]


https://www.bleepingcomputer.com/news/se...patch-now/