Tag: The Register – Security

Rob Joyce explains how it’s done Video  In 2018, Rob Joyce, then Donald Trump’s White House Cybersecurity Coordinator, gave a surprise talk at the legendary hacking conference Shmoocon about his hobby.… This article has been indexed from The Register –…

Read more →

Botnet’s operators ‘driven by similar interests as that of the Chinese state’ After the Mozi botnet mysteriously disappeared last year, a new and seemingly more powerful botnet, Androxgh0st, rose from its ashes and has quickly become a major threat to…

Read more →

35 years since AIDS first borked a PC and we’re still no closer to a solution Feature  Your Christmas holidays looked quite different in the ’80s to how they do today. While some will remember what it was like to…

Read more →

Easier to let those old phones gather dust in a draw, survey finds The UK’s Information Commissioner’s Office (ICO) has warned that many adults don’t know how to wipe their old devices, and a worrying number of young people just…

Read more →

Mummy, where do zero days come from? Opinion  One of the charms of coding is that malice can be indistinguishable from incompetence. Last week’s Who, Me? story about financial transfer test software running amok is a case in point.… This…

Read more →

Dual Russian-Israeli national arrested in August An alleged LockBit ransomware developer is in custody in Israel and awaiting extradition to the United States.… This article has been indexed from The Register – Security Read the original article: Suspected LockBit dev,…

Read more →

Also, Ascension notifies 5.6M victims, Krispy Kreme bandits come forward, LockBit 4.0 released, and more in brief  Google has announced plans to allow its business customers to begin “fingerprinting” users next year, and the UK Information Commissioner’s Office (ICO) isn’t…

Read more →

Yes, LLMs can do the heavy lifting. But good luck getting one to give evidence CANALYS FORUMS APAC  Generative AI is being enthusiastically adopted in almost every field, but infosec experts are divided on whether it is truly helpful for…

Read more →

Recent campaign targeted 20,000 folk across UK and Europe with this tactic, Unit 42 warns Unknown criminals went on a phishing expedition that targeted about 20,000 users across the automotive, chemical and industrial compound manufacturing sectors in Europe, and tried…

Read more →

It could end up like Huawei -Trump’s gonna get ya, get ya, get ya The Feds may ban the sale of TP-Link routers in the US over ongoing national security concerns about Chinese-made devices being used in cyberattacks.… This article…

Read more →

Enrolment invitations will continue until security improves Microsoft last week lauded the success of its efforts to convince customers to use passkeys instead of passwords, without actually quantifying that success.… This article has been indexed from The Register – Security…

Read more →

All it took to make an Google Edge TPU give up model hyperparameters was specific hardware, a novel attack technique … and several days Computer scientists from North Carolina State University have devised a way to copy AI models running…

Read more →

Not that you needed another reason to enable the ‘known senders’ setting Criminals are spoofing Google Calendar emails in a financially motivated phishing expedition that has already affected about 300 organizations with more than 4,000 emails sent over four weeks,…

Read more →

Victim’s feelings might get hurt, global cops contend, and that could hinder reporting Interpol wants to put an end to the online scam known as “pig butchering” through linguistic policing rather than law enforcement.… This article has been indexed from…

Read more →

You applied the patch that could stop possible RCE attacks last week, right? A critical security hole in Apache Struts 2, patched last week, is now being exploited using publicly available proof-of-concept (PoC) code.… This article has been indexed from…

Read more →

€251 million? Zuck can find that in his couch cushions, but Meta still vows to appeal It’s been six years since miscreants abused some sloppy Facebook code to steal access tokens belonging to 30 million users, and the slow-turning wheels…

Read more →

Fresh attempt to mix the perfect cocktail of IoT and Infosec BlackBerry’s ambition to mix infosec and the Internet of Things has been squeezed, after the Canadian firm announced it is offloading Cylance’s endpoint security products.… This article has been…

Read more →

The likes of SHA-256, RSA, ECDSA and ECDH won’t be welcome in just five years Australia’s chief cyber security agency has decided local orgs should stop using the tech that forms the current cryptographic foundation of the internet by the…

Read more →

But can you really take crims at their word? Supply chain integration vendor Cleo has urged its customers to upgrade three of its products after an October security update was circumvented, leading to widespread ransomware attacks that Russia-linked gang Cl0p…

Read more →

The US has never attacked Chinese critical infrastructure before, right? President-elect Donald Trump’s team wants to go on the offensive against America’s cyber adversaries, though it isn’t clear how the incoming administration plans to achieve this. … This article has been…

Read more →

Personal and financial data probably stolen A cyberattack on a Deloitte-managed government system in Rhode Island carries a “high probability” of sensitive data theft, the state says.… This article has been indexed from The Register – Security Read the original…

Read more →

Plus: Netscaler brute force barrage; BeyondTrust API key stolen; and more Infosec in brief  There’s a problem of titanic proportions brewing for users of the Prometheus open source monitoring toolkit: hundreds of thousands of servers and exporters are exposed to…

Read more →

IOCONTROL targets IoT and OT devices from a ton of makers, apparently An Iranian government-linked cybercriminal crew used custom malware called IOCONTROL to attack and remotely control US and Israel-based water and fuel management systems, according to security researchers.… This…

Read more →

‘Today’s sentencing is more than just a punishment. It’s a message’ A Texan who ran a forum on the dark web where depraved netizens could swap child sex abuse material (CSAM), and chat freely about abusing kids, has been sentenced…

Read more →

Privacy measure leaves some mourning lost memories A year ago, Google announced plans to save people’s Location History, which it now calls Timeline, locally on devices rather than on its servers.… This article has been indexed from The Register –…

Read more →

How Cynet delivered 100 percent Protection and 100 percent Detection Visibility in 2024 MITRE ATT&CK Evaluation Partner Content  Across small-to-medium enterprises (SMEs) and managed service providers (MSPs), the top priority for cybersecurity leaders is to keep IT environments up and…

Read more →

GitGuardian takes on enterprise secrets sprawl Partner Content  With Non-Human Identities (NHIs) now outnumbering human users 100 to one in enterprise environments, managing secrets across multiple vaults has become a significant security concern.… This article has been indexed from The…

Read more →

DoJ thinks it’s found the folks that ran it, and some of the ‘IT warriors’ sent out to fleece employers North Korea’s fake IT worker scams netted the hermit kingdom $88 million over six years, according to the US Department…

Read more →

More details released after devs allowed weeks to apply fixes We now know the remote code execution vulnerability in Apache Struts 2 disclosed back in November carries a near-maximum severity rating following the publication of the CVE.… This article has…

Read more →

Holiday cheer comes in the form of three arrests and 27 shuttered domains The Europol-coordinated Operation PowerOFF struck again this week as cross-border cops pulled the plug on 27 more domains tied to distributed denial of service (DDoS) criminality.… This…

Read more →

High-energy weapon proves its mettle in testing The British Army has successfully destroyed flying drones for the first time using a high-energy laser mounted on an armored vehicle. If perfected, the technology could form an effective counter-measure against drone attacks.… This article…

Read more →

Few websites actually respect the option, says Mozilla When Firefox 135 is released in February, it’ll ship with one less feature: Mozilla plans to remove the Do Not Track toggle from its Privacy and Security settings. … This article has been…

Read more →

Acquires two companies that offer stuff for those on the nice list to keep naughty list types at bay Citrix has gone on a European shopping trip, and come home with its bag of gifts bulging thanks to a pair…

Read more →

Sen. Wyden blasts FCC’s ‘failure’ amid Salt Typhoon hacks US telecoms carriers would be required to implement minimum cyber security standards and ensure their systems are not susceptible to hacks by nation-state attackers – like Salt Typhoon – under legislation…

Read more →

Belly-busting biz says it’s been hit by cowardly custards Doughnut slinger Krispy Kreme has admitted to an attack that has left many customers unable to order online.… This article has been indexed from The Register – Security Read the original…

Read more →

Patch up, everyone – that admin portal is mighty attractive to your friendly cyberattacker Ivanti just put out a security advisory warning of three critical vulnerabilities in its Cloud Services Application (CSA), including a perfect 10.… This article has been…

Read more →

Also sanctions his employer – an outfit called Sichuan Silence linked to Ragnarok ransomware The US Departments of Treasury and Justice have named a Chinese business and one of its employees as the actors behind the 2020 exploit of a…

Read more →

Twas the night before Christmas, and all through the house, patching was done with the click of a mouse Microsoft hasn’t added too much coal to the stocking this Patch Tuesday, with just 72 fixes, only one of which scored…

Read more →

Boeing-Bell V-22 can’t outfly its checkered past, it seems The US Navy, Air Force, and Marine Corps have grounded their fleet of Boeing-Bell-made Osprey V-22s on safety grounds.… This article has been indexed from The Register – Security Read the…

Read more →

Boffins devise BadRAM attack to pilfer secrets from SEV-SNP encrypted memory Researchers have found that the security mechanism AMD uses to protect virtual machine memory can be bypassed with $10 of hardware – and perhaps not even that.… This article…

Read more →

Thousands of servers targeted while customers wait for patches Researchers at security shop Huntress are seeing mass exploitation of a vulnerability affecting three Cleo file management products, even on patched systems.… This article has been indexed from The Register –…

Read more →

Sounds like th-aorta get this sorted quickly A manufacturer of devices used in heart surgeries says it’s dealing with “a cybersecurity incident” that bears all the hallmarks of a ransomware attack.… This article has been indexed from The Register –…

Read more →

Streamer’s trademark dramatic style takes on Bitcoin Bonnie and Clyde A documentary examining the 2016 Bitfinex burglars hits Netflix, bringing the curious case to living rooms for the first time.… This article has been indexed from The Register – Security…

Read more →

And it only took four months, tut WhatsApp has fixed a problem with its View Once feature, designed to protect people’s privacy with automatically disappearing pictures and videos.… This article has been indexed from The Register – Security Read the…

Read more →

McDonald’s worker called it in, cops swooped, found ‘gun, suppressor, manifesto’ Police in Pennsylvania have arrested a man suspected of killing the CEO of insurer UnitedHealthcare in New York City, thanks to a McDonald’s employee who recognized the suspect in…

Read more →

No word yet on who was snooped on. Any bets? Chinese cyberspies recorded “very senior” US political figures’ calls, according to White House security boss Anne Neuberger.… This article has been indexed from The Register – Security Read the original…

Read more →

No word yet on who. Any bets? Chinese cyberspies recorded “very senior” US political figures’ calls, according to White House security boss Anne Neuberger.… This article has been indexed from The Register – Security Read the original article: Salt Typhoon…

Read more →

ShinyHunters-linked heist thought to have been ongoing since March Exclusive  A massive online heist targeting AWS customers during which digital crooks abused misconfigurations in public websites and stole source code, thousands of credentials, and other secrets remains “ongoing to this…

Read more →

A couple of bugs lead to a potentially bad time OpenWrt users should upgrade their images to the same version to protect themselves from a possible supply chain attack reported to the open source Wi-Fi router project last week.… This…

Read more →

Outsmart an AI, win a little Christmas cash Microsoft and friends have challenged AI hackers to break a simulated LLM-integrated email client with a prompt injection attack – and the winning teams will share a $10,000 prize pool.… This article…

Read more →

Also: Mystery US firm compromised by Chinese hackers for months; Safe links that aren’t; Polish spy boss arrested, and more Infosec in brief  Still smarting over that grocery disruption caused by a ransomware attack on supply chain SaaS vendor Blue…

Read more →

‘It’s a double-edged sword,’ security researchers tell The Reg Feature  Chinese tech company employees and government workers are siphoning off user data and selling it online – and even high-ranking Chinese Communist Party officials and FBI-wanted hackers’ sensitive information is…

Read more →

Microsoft’s OS sure loves throwing your creds at remote systems Acros Security claims to have found an unpatched bug in Microsoft Windows 7 and onward that can be exploited to steal users’ OS account credentials.… This article has been indexed…

Read more →

Video slinger looks to Supremes for salvation, though anything could happen under Trump A US federal appeals court has rejected a challenge to the law that prevents popular apps that collect data on Americans from being controlled by a foreign…

Read more →

Proposal pushes stricter infosec safeguards after Chinese state baddies expose vulns The head of America’s Federal Communications Commission (FCC) wants to force telecoms operators to tighten network security in the wake of the Salt Typhoon revelations, and to submit an…

Read more →

Threatened with life in prison, Kyiv charity worker gives middle finger to state spies A Russian programmer defied the Federal Security Service (FSB) by publicizing the fact his phone was infected with spyware after being confiscated by authorities.… This article…

Read more →

Get best practice advice on how to safeguard your cloud infrastructure from SANS Sponsored Post  According to the 2024 IBM Cost of the Data Breach Report 40 percent of data breaches identified between March 2023 and February 2024 involved data…

Read more →

Still unpatched 100+ days later, watchTowr says A zero-day arbitrary file read vulnerability in Mitel MiCollab can be chained with a now-patched critical bug in the same platform to give attackers access to sensitive files on vulnerable instances. … This article…

Read more →

Redmond threat intel maven talks explains this persistent pain to The Reg A Chinese government-linked group that Microsoft tracks as Storm-0227 yesterday started targeting critical infrastructures organisations and US government agencies, according to Redmond’s threat intel team.… This article has…

Read more →

Damage likely limited to those running bots with private key access Malware-poisoned versions of the widely used JavaScript library @solana/web3.js were distributed via the npm package registry, according to an advisory issued Wednesday by project maintainer Steven Luscher.… This article…

Read more →

Discover how automation can simplify endpoint management in this webinar Webinar  Managing endpoints in today’s dynamic IT environments is becoming increasingly complex.… This article has been indexed from The Register – Security Read the original article: Explore strategies for effective…

Read more →

Children’s hospital and cardiac unit say criminals broke in via shared ‘digital gateway service’ Both National Health Service trusts that oversee the various hospitals hit by separate cyberattacks last week have confirmed they’re still in the process of restoring systems.……

Read more →

Sensitive data allegedly stolen from US subsidiary following Black Basta post BT Group confirmed it is dealing with an attempted attack on one of its legacy business units after the Black Basta ransomware group claimed they broke in.… This article…

Read more →

Support the industry by sponsoring the UK Cyber Team Competition Partner Content  The opportunity to identify, foster and nurture talented young people towards a cyber security career should always be grabbed with both hands.… This article has been indexed from…

Read more →

Stoli Group on the rocks in the US Two US subsidiaries of alcohol giant Stoli Group filed for bankruptcy protection this week over financial difficulties exacerbated by an August ransomware attack.… This article has been indexed from The Register –…

Read more →

Security chief talks to El Reg as Feds urge everyone to use encrypted chat interview  While Chinese-government-backed spies maintained access to US telecommunications providers’ networks for months – and in some cases still haven’t been booted out – T-Mobile US…

Read more →

Drugs, botnets, forged docs, and more generated fortune for platform sellers German authorities say they have again shut down the perhaps unwisely named Crimenetwork platform and arrested a suspected admin.… This article has been indexed from The Register – Security…

Read more →

20-year-old info disclosure class bug still pervades security software It’s time to rev up those patch engines after SailPoint disclosed a perfect 10/10 severity vulnerability in its identity and access management (IAM) platform IdentityIQ.… This article has been indexed from…

Read more →

‘Where we go is who we are’ totally isn’t a creepy ad slogan at all The FTC has reached a settlement with two data brokerages over allegations they harvested precise location data that shows when people entered hospitals, places of…

Read more →

They took the red pill Updated  French and Dutch police have taken down the Matrix chat app, which was designed by criminals for criminals to be a secure encrypted messaging tool.… This article has been indexed from The Register –…

Read more →

Installed the final non-security preview update of 2024? Best not hop onto the Dev Channel Microsoft has pinned down why some eager Windows Insiders could not persuade the Recall preview to save any snapshots. It’s all down to a pesky…

Read more →

Discover unified strategies to secure and manage all endpoints across your organization Webinar  As organizations expand their digital footprint, the range of endpoints – spanning from laptops to IoT devices – continues to grow.… This article has been indexed from…

Read more →

A nervous wait for rapper wife who also faces a stint in the clink The US is sending the main figure behind the 2016 intrusion at crypto exchange Bitfinex to prison for five years after he stole close to 120,000…

Read more →

NHS supplier that leaked employee info fell victim to fiddly access controls that can leave databases dangling online Private businesses and public-sector organizations are unwittingly exposing millions of people’s sensitive information to the public internet because they misconfigure Microsoft’s Power…

Read more →

Plus a bonus hard-coded local API key A now-patched, high-severity bug in Fortinet’s FortiClient VPN application potentially allows a low-privilege rogue user or malware on a vulnerable Windows system to gain higher privileges from another user, execute code and possibly…

Read more →

Serial extortionist of medical facilities stooped to cavernous lows in search of small payouts A rampant cybercrook and repeat attacker of medical facilities in the US is being sentenced to a decade in prison, around seven years after the first…

Read more →

Full details exposed, putting shoppers at serious risk of fraud Children’s shoemaker Start-Rite is dealing with a nasty “security incident” involving customer payment card details, its second significant lapse during the past eight years.… This article has been indexed from…

Read more →

From guidance to firm action… no more WhatsApp, Meta’s Messenger, Signal, Telegram and more The full list of messaging apps officially blocked by Brit banking and insurance giant NatWest Group is more extensive than WhatsApp, Meta’s Messenger, and Skype –…

Read more →

British grocer’s workers called back to office as clock ticks for contractors The head of tech security at Asda, the UK’s third-largest food retailer, has left amid an ongoing tech divorce from US grocery giant Walmart.… This article has been…

Read more →

Slack patching remains a problem – which is worrying as crooks increasingly target zero-day vulns The cyber security agencies of the UK, US, Canada, Australia, and New Zealand have issued their annual list of the 15 most exploited vulnerabilities, and…

Read more →

Feds don’t name Salt Typhoon, but describe Beijing band’s alleged deeds The US government has confirmed there was “a broad and significant cyber espionage campaign” conducted by China-linked snoops against “multiple” American telecommunications providers’ networks.… This article has been indexed…

Read more →

Feds don’t name Salt Typhoon, but describe Beijing band’s alleged deeds The US government has detected “a broad and significant cyber espionage campaign” conducted by China-linked attackers and directed at “multiple” US telecommunications providers’ networks.… This article has been indexed…

Read more →

Plus: CISA’s ScubaGear dives deep to fix M365 misconfigs Bitdefender has released a free decryption tool that can unlock data encrypted by the ShrinkLocker ransomware.… This article has been indexed from The Register – Security Read the original article: ShrinkLocker…

Read more →

We call this lead degeneration What’s claimed to be more than 183 million records of people’s contact details and employment info has been stolen or otherwise obtained from a data broker and put up for sale by a miscreant.… This…

Read more →

American Associated Pharmacies yet to officially confirm infection American Associated Pharmacies (AAP) is the latest US healthcare organization to have had its data stolen and encrypted by cyber-crooks, it is feared.… This article has been indexed from The Register –…

Read more →

Sore about cores no more Microsoft has resolved two issues vexing Windows 11 24H2 and Windows Server 2025 users among the many security updates that emerged on Patch Tuesday.… This article has been indexed from The Register – Security Read…

Read more →

Ohm, for flux sake China’s Volt Typhoon crew and its botnet are back, compromising old Cisco routers once again to break into critical infrastructure networks and kick off cyberattacks, according to security researchers.… This article has been indexed from The…

Read more →

Don’t be a turkey – get these fixed Patch Tuesday  Patch Tuesday has swung around again, and Microsoft has released fixes for 89 CVE-listed security flaws in its products – including two under active attack – and reissued three more.……

Read more →

Jack Teixeira, 22, talked of ‘culling the weak minded’ – hmm! A former Air National Guard member who stole classified American military secrets, and showed them to his gaming buddies on Discord, has been sentenced to 15 years in prison.……

Read more →

A Canadian and an American living in Turkey ‘walk into’ cloud storage environments… Two men allegedly compromised what’s believed to be multiple organizations’ Snowflake-hosted cloud environments, stole sensitive data within, and extorted at least $2.5 million from at least three…

Read more →

Stores still open, but customers report delayed deliveries, invoicing issues, and more at Stop & Shop and others Retail giant Ahold Delhaize, which owns Food Lion and Stop & Shop, among others, is confirming outages at several of its US…

Read more →

‘Once again, we’ve lost a little more faith in the internet,’ researcher says Researchers are publicizing a proof of concept (PoC) exploit for what they’re calling an unauthenticated remote code execution (RCE) vulnerability in Citrix’s Virtual Apps and Desktops.… This…

Read more →

Key steps to protect your organization’s data from unauthorized external access Webinar  With increasing reliance on contractors, partners, and vendors, managing third-party access to systems and data is a complex security challenge.… This article has been indexed from The Register…

Read more →

Over 5 million records from 25 organizations posted to black hat forum Amazon employees’ data is part of a stolen trove posted to a cybercrime forum linked to last year’s MOVEit vulnerability.… This article has been indexed from The Register…

Read more →

Just because it’s .gov doesn’t mean that email is trustworthy Cybercrooks abusing emergency data requests in the US isn’t new, but the FBI says it’s becoming a more pronounced issue as the year draws to a close.… This article has…

Read more →

Prosecutors hand Russo-Swede a half-billion bill The operator of the longest-running money laundering machine in dark web history, Bitcoin Fog, has been sentenced to 12 years and six months in US prison.… This article has been indexed from The Register…

Read more →

Also: Crypto hacks will continue; CoD hacker gets thousands banned, and more in brief  One of the suspected masterminds behind the widespread Snowflake breach has been arrested in Canada – but the saga isn’t over, eh. … This article has been…

Read more →

We all know by now that monsters never die, right? Two high-profile criminal gangs, Scattered Spider and BlackCat/ALPHV, seemed to disappear into the darkness like their namesakes following a series of splashy digital heists last year, after which there were…

Read more →

‘Multiple’ malware samples likely targeting education orgs Criminals are using game-related applications to infect Windows systems with a malicious software framework called Winos4.0 that gives the attackers full control over compromised machines.… This article has been indexed from The Register…

Read more →

Curiosity gives crims access to wallets and passwords Organizations should be on the lookout for bogus copyright infringement emails as they might be the latest ploy by cybercriminals to steal their data.… This article has been indexed from The Register…

Read more →