Source: go.theregister.com – Author: Team Register Criminals could remotely tamper with the data that apps used by airplane pilots rely on to inform safe takeoff and...
Author:
Blackbaud settles with FTC after that IT breach exposed millions of people’s info – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Blackbaud, which had data on millions of people stolen from it by one or more crooks, has promised to shore...
Critical vulnerability in Mastodon is pounced upon by fast-acting admins – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Mastodon has called admins to action following the disclosure of a critical vulnerability affecting the decentralized social network favored by...
Interpol’s latest cybercrime intervention dismantles ransomware, banking malware servers – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Interpol has arrested 31 people following a three-month operation to stamp out various types of cybercrime. Spanning 55 countries, from...
Wikileaks source and former CIA worker Joshua Schulte sentenced to 40 years jail – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Joshua Schulte, a former CIA employee and software engineer accused of sharing material with WikiLeaks, was sentenced to 40 years...
Managing the hidden risks of shadow APIs – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Partner Content Application programming interfaces (APIs) play a significant role in today’s digital economy, but at the same time they...
Cloudflare sheds more light on Thanksgiving security breach in which tokens, source code accessed by suspected spies – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Cloudflare has just detailed how suspected government spies gained access to its internal Atlassian installation using credentials stolen via a...
Rise of deepfake threats means biometric security measures won’t be enough – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Cyber attacks using AI-generated deepfakes to bypass facial biometrics security will lead a third of organizations to doubt the adequacy...
Biden will veto attempts to kill off SEC’s security breach reporting rules – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register The Biden administration has expressed to congressional representatives its strong opposition to undoing the Securities and Exchange Commission’s (SEC) strict...
LockBit shows no remorse for ransomware attack on children’s hospital – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Ransomware gang LockBit is claiming responsibility for an attack on a Chicago children’s hospital in an apparent deviation from its...
Congress told how Chinese attackers plan to incite ‘societal chaos’ in the US – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Chinese attackers are preparing to “wreak havoc” on American infrastructure and “cause societal chaos” in the US, infosec, and law...
FBI confirms it issued remote kill command to blow out Volt Typhoon’s botnet – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register China’s Volt Typhoon attackers used “hundreds” of outdated Cisco and NetGear routers infected with malware in an attempt to break...
Ransomware payment rates drop to new low – only 29% of victims are forking over cash – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Trusting a ransomware crew to honor a deal isn’t the greatest idea, and the world seems to be waking up...
Nearly 4-year-old Cisco vuln linked to recent Akira ransomware attacks – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Security researchers believe the Akira ransomware group could be exploiting a nearly four-year-old Cisco vulnerability and using it as an...
We know nations are going after critical systems, but what happens when crims join in? – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Volt Typhoon, the Chinese government-backed cyberspies whose infrastructure was at least partially disrupted by Uncle Sam, has been honing in...
Ivanti releases patches for VPN zero-days, discloses two more high-severity vulns – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Ivanti has finally released the first round of patches for vulnerability-stricken Connect Secure and Policy Secure gateways, but in doing...
US shorts China’s Volt Typhoon crew targeting America’s criticals – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register The US Justice Department and FBI may have scored a win over Chinese state-sponsored snoops trying to break into American...
Jenkins jitters as 45,000 servers still vulnerable to RCE attacks after patch released – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register The number of public-facing installs of Jenkins servers vulnerable to a recently disclosed critical vulnerability is in the tens of...
Reg story prompts fresh security bulletin, review of Juniper Networks’ CVE process – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Juniper Networks has disclosed separate vulnerabilities it was previously accused of concealing, and apologized to customers for the error in...
UK biometrics boss bows out, bemoaning bureaucratic blunders – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register The farewell report written by the UK’s biometrics and surveillance commissioner highlights a litany of failings in the Home Office’s...
SolarWinds slams SEC lawsuit against it as ‘unprecedented’ victim blaming – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register SolarWinds – whose network monitoring software was backdoored by Russian spies so that the biz’s customers could be spied upon...
Tesla hacks make big bank at Pwn2Own’s first automotive-focused event – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Infosec in brief Trend Micro’s Zero Day Initiative (ZDI) held its first-ever automotive-focused Pwn2Own event in Tokyo last week, and...
750 million Indian mobile subscribers’ info for sale on dark web – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Asia In Brief Indian infosec firm CloudSEK last week claimed it found records describing 750 million Indian mobile network subscribers...
Microsoft sheds some light on Russian email heist – and how to learn from Redmond’s mistakes – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Microsoft, a week after disclosing that Kremlin-backed spies broke into its network and stole internal emails and files from its...
Wait, security courses aren’t a requirement to graduate with a computer science degree? – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Comment There’s a line in the latest plea from CISA – the US government’s cybersecurity agency – to software developers...
Guess the company: Takes your DNA, blames you when criminals steal it, can’t spot a cyberattack for 5 months – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register Biotech and DNA-collection biz 23andMe, the one that blamed its own customers for the October mega-breach, just admitted it failed...
Akira ransomware gang says it stole passport scans from Lush in 110 GB data heist – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register The Akira ransomware gang is claiming responsiblity for the “cybersecurity incident” at British bath bomb merchant. Akira says it has...
Trickbot malware scumbag gets five years for infecting hospitals, businesses – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register A former Trickbot developer has been sent down for five years and four months for his role in infecting American...
EquiLend drags systems offline after admitting attacker broke in – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register US securities lender EquiLend has pulled a number of its systems offline after a security “incident” in which an attacker...
HPE joins the ‘our executive email was hacked by Russia’ club – Source: go.theregister.com
Source: go.theregister.com – Author: Team Register HPE has become the latest tech giant to admit it has been compromised by Russian operatives. In a Wednesday regulatory...