Dark Reading

18 hours ago | darkreading.com | Jeffrey Schwartz

Orca Security announced Tuesday it has acquired Opus, a Tel Aviv, Israel-based security startup which developed autonomous vulnerability management technology using agentic AI to remediate and prevent malicious activity automatically. Financial terms of the deal were not disclosed. The acquisition will enable Orca to add Opus's autonomous vulnerability remediation and prevention capabilities to the Orca Cloud Security Platform, its Cloud-Native Application Protection Platform (CNAPP).

1 day ago | darkreading.com | Jai Vijayan

The Chinese-speaking threat group Earth Ammit targeted a broader range of industries than just Taiwanese drone manufacturers, as initially assumed. In a report last year, Trend Micro detailed an Earth Ammit campaign dubbed Tidrone that, at the time, it believed specifically targeted military and satellite-related industrial supply chains and drone manufacturers.

1 day ago | darkreading.com | Jai Vijayan

North Korea-backed threat group TA406 is targeting government agencies in Ukraine in an apparent effort to collect intelligence on the country's continued desire and ability to fight back against Russia's invasion. The campaign appears to be aimed at helping Pyongyang assess the risk to North Korean personnel already deployed in Ukraine alongside Russian forces, and to gauge the likelihood of future requests from Moscow for additional military support, according to a new report from Proofpoint.

2 days ago | darkreading.com | Arielle Waldman

Software security may finally be getting the attention it deserves as more countries institute necessary guidelines. As the software supply chain faces more threats, it is too soon to tell if voluntary initiatives will be enough. The United Kingdom's National Cyber Security Centre (NCSC) and the Department of Science, Innovation, and Technology launched the voluntary Software Security Code of Practice on May 7 to establish security baselines in software development.

5 days ago | darkreading.com | Rob Wright

The notorious ransomware gang LockBit appeared to suffer another setback this week after its network was compromised by an unknown adversary. On May 7, a range of security researchers observed that LockBit's Dark Web leak site had been altered. Instead of listing victim organizations, the site now features a simple message: "Don't do crime CRIME IS BAD xoxo from Prague," along with a link to a zip archive.