Category: The Register – Security

Web puzzles don’t protect against bots, but humans have spent 819 million unpaid hours solving them Google promotes its reCAPTCHA service as a security mechanism for websites, but researchers affiliated with the University of California, Irvine, argue it’s harvesting information…

Read more →

Something called ‘Content Validator’ did not validate the content, and the rest is history CrowdStrike has blamed a bug in its own test software for the mass-crash-event it caused last week.… This article has been indexed from The Register –…

Read more →

If it can happen to folks that run social engineering defence training, what hope for the rest of us? Security awareness and training provider KnowBe4 hired a fake North Korean IT worker for a software engineering role on its AI…

Read more →

President apologizes in advance for job losses The Philippines has decided to dismantle the worst of its offshored industries: the bits that run gambling and scam operations.… This article has been indexed from The Register – Security Read the original…

Read more →

Maybe next time some staged rollouts? A bit of QA too? Analysis  Last week, at 0409 UTC on July 19, 2024, antivirus maker CrowdStrike released an update to its widely used Falcon platform that caused Microsoft Windows machines around the…

Read more →

Maybe next time some staged rollouts? A bit of QA too? Analysis  Last week, at 0409 UTC on July 19, 2024, antivirus maker CrowdStrike released an update to its widely used Falcon platform that caused Microsoft Windows machines around the…

Read more →

Join Intel, DETASAD, Juniper Networks, and Arqit to hear essential strategies in this webinar on July 30th Webinar  Artificial Intelligence (AI) is revolutionizing industries worldwide, but with great power comes great responsibility.… This article has been indexed from The Register…

Read more →

How could this happen to us? We were supposed to be two versions behind? If administrators have learned anything from the CrowdStrike chaos, it’s to understand exactly what delayed updates mean – or don’t mean – in the anti-malware world.……

Read more →

Latest trend follows various malware campaigns that began just hours after IT calamity Thousands of typosquatting domains are now registered to exploit the desperation of IT admins still struggling to recover from last week’s CrowdStrike outage, researchers say.… This article…

Read more →

Cybersecurity outfit to go its own way to IPO and $1B ARR On the day of Alphabet’s Q2 earnings call, cybersecurity firm Wiz has walked from a $23 billion takeover bid by Google’s parent company.… This article has been indexed…

Read more →

Gain insight by joining this AI security webinar on July 31 Webinar  As artificial intelligence (AI) continues to transform industries in the Middle East, protecting systems from cyber threats is critical.… This article has been indexed from The Register –…

Read more →

Ad giant promises will offer to protect privacy, as critics say surveillance continues Google no longer intends to drop support for third-party cookies, the online identifiers used by the ad industry to track people and target them with ads based…

Read more →

One arrest was made weeks ago but no word on the suspect’s identity yet A DDoS-for-hire site described by the UK’s National Crime Agency (NCA) as the world’s most prolific operator in the field is out-of-action following a law enforcement…

Read more →

Some rest for the wicked? Los Angeles County Superior Court, the largest trial court in America, closed all 36 of its courthouses today following an “unprecedented” ransomware attack on Friday.… This article has been indexed from The Register – Security…

Read more →

More baddies go it alone as trust in big gangs withers, claims Europol A fresh report from Europol suggests that the recent disruption of ransomware-as-a-service (RaaS) groups is fragmenting the threat landscape, making it more difficult to track.… This article…

Read more →

Big Red agrees not to capture personal details after two-year class action Oracle has agreed to cough up $115 million to settle a two-year class action lawsuit that alleged misuse of user data.… This article has been indexed from The…

Read more →

Was a 2009 directive on interoperability to blame? Did the EU force Microsoft to let third parties like CrowdStrike run riot in the Windows kernel as a result of a 2009 undertaking? This is the implication being peddled by the…

Read more →

Supposed hacktivist efforts previously linked to the Kremlin’s GRU Flying under the radar on Clownstrike day last week, two members of the Cyber Army of Russia Reborn (CARR) hacktivist crew are the latest additions to the US sanctions list.… This…

Read more →

Also: Second-string Russian hackers sanctioned; Senators demand answers from Snowflake, and more Infosec in brief  Unable to access the Samsung smartphone of the deceased Trump shooter for clues, the FBI turned to a familiar – if controversial – source to…

Read more →

Rapid restore tool being tested as Microsoft estimates 8.5 million machines went down CrowdStrike’s now-infamous Falcon Sensor software, which last week led to widespread outages of Windows-powered computers, has also caused crashes of Linux machines.… This article has been indexed…

Read more →

17-year-old cuffed as FBI says it will ‘relentlessly pursue’ miscreants around the globe Cops in the UK have arrested a suspected member of the notorious Scattered Spider crime gang, which is accused of crippling MGM Resorts in Las Vegas with…

Read more →

17-year-old cuffed as FBI says it will ‘relentlessly pursue’ miscreants around the globe Cops in the UK have arrested a suspected member of the notorious Scattered Spider crime gang, which is accused of crippling MGM Resorts in Las Vegas with…

Read more →

Falcon Sensor putting hosts into deathloop – but there’s a workaround Updated  An update to a product from infosec vendor CrowdStrike is bricking computers running Windows globally.… This article has been indexed from The Register – Security Read the original…

Read more →

Our vultures gather to review this very freaky Friday Kettle  If you’re an IT administrator with Windows boxes on your network, Friday can’t have been a lot of fun. What’s likely millions of systems were or still are stuck in…

Read more →

Falcon Sensor putting hosts into deathloop Breaking  An update to a product from infosec vendor CrowdStrike is bricking computers running Windows.… This article has been indexed from The Register – Security Read the original article: CrowdStrike code update bricking Windows…

Read more →

Firm halts trades after seeing $230 million disappear Indian crypto exchange WazirX has revealed it lost virtual assets valued at over $230 million after a cyber attack that has since been linked to North Korea.… This article has been indexed…

Read more →

Run by the NSA, the FBI, and Five Eyes nations, who fooled infosec researchers, apparently China has asserted that the Volt Typhoon gang, which Five Eyes nations accuse of being a Beijing-backed attacker that targets critical infrastructure, was in fact…

Read more →

Russia-invaded software biz ‘grateful for the support we have received’ A judge has mostly thrown out a lawsuit brought by America’s financial watchdog that accused SolarWinds and its chief infosec officer of misleading investors about its computer security practices and…

Read more →

Stick an independent probe in our software, you won’t find any Putin.DLL backdoor Kaspersky has hit back after the US government banned its products – by proposing an independent verification that its software is above board and not backdoored by…

Read more →

Major vendors’ products scuppered by novel techniques Prolific Russian cybercrime syndicate FIN7 is using various pseudonyms to sell its custom security solution-disabling malware to different ransomware gangs.… This article has been indexed from The Register – Security Read the original…

Read more →

You’re going to want to patch this one Cisco just dropped a patch for a maximum-severity vulnerability that allows attackers to change the password of any user, including admins.… This article has been indexed from The Register – Security Read…

Read more →

Complicated, costly, time-consuming – pick three Cyber security workers only review major updates to software applications only 54 percent of the time, according to a poll of tech managers.… This article has been indexed from The Register – Security Read…

Read more →

Nothing else can detect attackers with implants designed to foil physical security Sniffer dogs may soon become a useful means of improving physical security in datacenters, as increasing numbers of people are adopting implants like NFC chips that have the…

Read more →

Unconfirmed reports suggest 30 percent reduction in headcount Exabeam and LogRhythm – a pair of cyber security firms – finalized their merger on Wednesday, an occasion The Register understands was marked by swift job cuts and shareholder action to investigate…

Read more →

So long, farewell, do svidaniya, goodbye Embattled Russian infosec shop Kaspersky is giving US customers six months of security updates for free as a parting gift as Uncle Sam kicks the antivirus maker out of the American market.… This article…

Read more →

Millions more spent without any improvement in recovery times Costs associated with ransomware attacks on critical national infrastructure (CNI) organizations skyrocketed in the past year.… This article has been indexed from The Register – Security Read the original article: Ransomware…

Read more →

You escaped a big fat fine! Take the win and run, won’t you? London’s inner city district of Hackney says the UK’s data protection watchdog has misunderstood and “exaggerated” details surrounding a ransomware attack on its systems in 2020.… This…

Read more →

India, Turkey, also being targeted by campaign that relies on corporate email compromise MuddyWater, an Iranian government-backed cyber espionage crew, has upgraded its malware with a custom backdoor, which it’s used to target Israeli organizations.… This article has been indexed…

Read more →

Extortionists left hanging after rivals crawled into the woodwork The Scattered Spider cybercrime group is now using RansomHub and Qilin ransomware variants in its attacks, illustrating a possible power shift among hacking groups.… This article has been indexed from The…

Read more →

Extortionists left hanging after rivals crawled into the woodwork The Scattered Spider cybercrime group is now using RansomHub and Qilin ransomware variants in its attacks, illustrating a possible power shift among hacking groups.… This article has been indexed from The…

Read more →

Read the 2024 Cisco Cybersecurity Readiness Index for tips on how best to prepare Sponsored Post  Protecting sensitive data and mission-critical applications, systems and services from the unwanted attention of hackers and cyber criminals is never easy.… This article has…

Read more →

Move follows Instagram and Facebook owner’s decision to reverse direction in EU after protests A UK data rights campaign group has launched a complaint with the data law regulator against Meta’s change of privacy policy which allows it to scrape…

Read more →

Meet the new boss, same as the old boss The DarkGate malware family has become more prevalent in recent months, after one of its main competitors was taken down by the FBI.… This article has been indexed from The Register…

Read more →

Meet the new boss, same as the old boss The DarkGate malware family has become more prevalent in recent months after one of its main competitors was taken down by the FBI.… This article has been indexed from The Register…

Read more →

After all we’ve done for you, America, sniffs antivirus lab Kaspersky has confirmed it will shutter its American operations and cut US-based jobs following President Biden’s ban on the Russian business last month.… This article has been indexed from The…

Read more →

‘It seems like they really don’t have a full grasp of what’s going on with this patch’ Exclusive  A Microsoft zero-day exploit that Trend Micro’s Zero Day Initiative team claims it found and reported to Redmond in May was disclosed…

Read more →

Company keeps quiet amid high-profile compromises Security researchers are claiming a spate of DNS hijackings at web3 businesses is linked to Squarespace’s acquisition of Google Domains last year.… This article has been indexed from The Register – Security Read the…

Read more →

The security industry has never had a clear leader – could it be the Chocolate Factory? Ask any techie to name who leads the market for OSes, databases, networks or ERP and the answers are clear: Microsoft, Oracle, Cisco, and…

Read more →

Also: Velops routers love plaintext; everything is a dark pattern; Internet Explorer rises from the grave, and more Infosec in brief  Commercial spyware maker mSpy has been breached – again – and millions of purchasers can be identified from the…

Read more →

Plus: Japanese scientists ID ancient supernova; AWS dismisses China trouble rumor; and more ASIA IN BRIEF  The interim CEO of the UK’s National Cyber Security Centre (NCSC) has criticized China’s approach to bug reporting.… This article has been indexed from…

Read more →

And can AI save us from the scourge of malware? In theory, why not, but in practice … Color us skeptical Kettle  For this week’s Kettle episode, in which our journos as usual get together for an end-of-week chat about…

Read more →

15,000 dealerships take estimated $600M+ hit CDK Global reportedly paid a $25 million ransom in Bitcoin after its servers were knocked offline by crippling ransomware.… This article has been indexed from The Register – Security Read the original article: Car…

Read more →

Windows maker insisted everything will be locked down and secure – which given its reputation, uh-oh! Two House committee chairs have sent a public letter to the White House asking it to look into a deal between AI R&D outfit…

Read more →

Red team exercise revealed a score of security fails The US Cybersecurity and Infrastructure Security Agency (CISA) says a red team exercise at a certain unnamed federal agency in 2023 revealed a string of security failings that exposed its most…

Read more →

Snowflake? Snowflake AT&T has admitted that cyberattackers grabbed a load of its data for the second time this year, and if you think the first haul was big you haven’t seen anything: This one includes data on “nearly all” AT&T…

Read more →

What to do when your MFA is mercilessly attacked by hackers Webinar  Threat actors are always looking for that easy way in by testing weak spots, and user identities are one of their favourite targets.… This article has been indexed…

Read more →

Accessibility be damned, preventing phishing is the priority After around two decades of allowing one-time passwords (OTPs) delivered by text message to assist log ins to bank accounts in Singapore, the city-state will abandon the authentication technique.… This article has…

Read more →

Meet DodgeBox, son of StealthVector Chinese government-backed cyber espionage gang APT41 has very likely added a loader dubbed DodgeBox and a backdoor named MoonWalk to its malware toolbox, according to cloud security service provider Zscaler’s ThreatLabz research team.… This article…

Read more →

Ultra-conservative org funnily enough not ready to turn the other cheek After claiming to break into a database belonging to The Heritage Foundation, and then leaking 2GB of files belonging to the ultra-conservative think tank, the hacktivist crew SiegedSec claims…

Read more →

Newly discovered flaw affects OpenSSH 8.7 and 8.8 daemon The founder of Openwall has discovered a new signal handler race condition in the core sshd daemon used in RHEL 9.x and its various offshoots.… This article has been indexed from…

Read more →

Letters from CISO Ethan Steiger suggest the data related to job applications Advance Auto Parts’ CISO just revealed for the first time the number of individuals affected when criminals broke into its Snowflake instance – a hefty 2.3 million.… This…

Read more →

Scumbag targeted many victims – and those who tried to help them A scumbag who used to work as a privacy consultant has been put behind bars for nine years for a “grotesque” cyberstalking campaign against more than a dozen…

Read more →

LockBit variant targets backup software – which you may remember is supposed to help you recover from ransomware Yet another new ransomware gang, this one dubbed EstateRansomware, is exploiting a Veeam vulnerability that was patched more than a year ago…

Read more →

Multiple malware attack saw personal data acessed, but rocket science remained safe The Japanese Space Exploration Agency (JAXA) discovered it was under attack using zero-day exploits while working with Microsoft to probe a 2023 cyberattack on its systems.… This article…

Read more →

Company announces intent following Ticketmaster, Santander break-ins A month after incident response giant Mandiant suggested the litany of data thefts linked to Snowflake account intrusions had the common component of lacking multi-factor authentication (MFA) controls, the cloud storage and data…

Read more →

Company says data exfiltration was extremely difficult to detect Fujitsu Japan says an unspecified “advanced” malware strain was to blame for a March data theft, insisting the strain was “not ransomware”, yet it hasn’t revealed how many individuals are affected.……

Read more →

BlackByte, LockBit among the criminals using bespoke tools As ransomware crews increasingly shift beyond just encrypting victims’ files and demanding a payment to unlock them, instead swiping sensitive info straight away, some of the more mature crime organizations are developing…

Read more →

Fixes have been made, it appears, but disclosure or discussion is invisible Column  Found a bug? It turns out that reporting it with a story in The Register works remarkably well … mostly. After publication of my “Kryptonite” article about…

Read more →

Freeware AutoIt also used to hide entire PowerShell environments in scripts A rapidly-changing infostealer malware known as ViperSoftX has evolved to become more dangerous, according to security researchers at threat detection vendor Trellix.… This article has been indexed from The…

Read more →

If someone can do a little MITM’ing and hash cracking, they can log in with no valid password needed Cybersecurity experts at universities and Big Tech have disclosed a vulnerability in a common client-server networking protocol that allows snoops to…

Read more →

Citrix, SAP also deserve your attention – because miscreants are already thinking about Exploit Wednesday Patch Tuesday  Clear your Microsoft system administrator’s diary: The bundle of fixes in Redmond’s July Patch Tuesday is a doozy, with at least two bugs…

Read more →

Citrix, SAP also deserve your attention – because miscreants are already thinking about Exploit Wednesday Patch Tuesday  Clear your Microsoft system administrator’s diary: The bundle of fixes in Redmond’s July Patch Tuesday is a doozy, with at least two bugs…

Read more →

RT News snarks back after it’s accused of building social nyet-work for Kremlin The FBI and cybersecurity agencies in Canada and the Netherlands say they have taken down an almost 1,000-strong Twitter bot farm set up by Russian state-run RT…

Read more →

Understanding the power needs of the UK begins with knowing when renewals are due Certificate Watch  Demonstrating that Microsoft is not alone in its inability to keep track of certificates is UK power market biz Elexon.… This article has been…

Read more →

Making cyberattack among the largest ever recorded in finance industry Evolve Bank & Trust says the data of more than 7.6 million customers was stolen during the LockBit break-in in late May, per a fresh filing with Maine’s attorney general.……

Read more →

Fairly ‘low budget’, unsophisticated malware, say researchers, but it can collect the same data as Pegasus Interview  When it comes to surveillance malware, sophisticated spyware with complex capabilities tends to hog the limelight – for example NSO Group’s Pegasus, which…

Read more →

Google’s absence creates software distribution issues not even mighty Microsoft can handle Microsoft China will provide staff with Apple devices so they can log on to the software giant’s systems.… This article has been indexed from The Register – Security…

Read more →

Scum keep databases of the people they’ve already skimmed Australia’s Competition and Consumer Commission has warned that scammers are targeting scam victims with fake offers to help them recover from scams.… This article has been indexed from The Register –…

Read more →

Lax patching and vulnerable small biz kit make life easy for Beijing’s secret-stealers Law enforcement agencies from eight nations, led by Australia, have issued an advisory that details the tradecraft used by China-aligned threat actor APT40 – aka Kryptonite Panda,…

Read more →

Lax patching and vulnerable small biz kit make life easy for Beijing’s secret-stealers Law enforcement agencies from eight nations, led by Australia, have issued an advisory that details the tradecraft used by China-aligned threat actor APT40 – aka Kryptonite Panda,…

Read more →

Injecting Copilot branding will not make TLS certificates auto-renew Another Microsoft certificate has expired, leaving SwiftKey users that are seeking support faced with an alarming certificate error.… This article has been indexed from The Register – Security Read the original…

Read more →

Good riddance to another pesky tribe of miscreants Researchers at Avast have provided decryptors to DoNex ransomware victims on the down-low since March after discovering a flaw in the crims’ cryptography, the company confirmed today.… This article has been indexed…

Read more →

How to get ready for the future of digital identity in the European Union from eIDAS 1.0 to eIDAS 2.0 and beyond Partner Content  : Opening a bank account, making or receiving a payment, instructing an accountant or booking a…

Read more →

Vietnam now requires it for some purchases. It may be a fraud risk in Singapore. Or ML could be making it safe The use of selfies to verify identity online is an emerging trend in some parts of the world…

Read more →

Also: F1 authority breached; Prudential victim count skyrockets; a new ransomware actor appears; and more security in brief  It’s been a week of bad cyber security revelations for OpenAI, after news emerged that the startup failed to report a 2023…

Read more →

Plus: Samsung strike; India likely upping chip subsidies; Asian nations link payment schemes Asia In Brief  Mt Gox, the Japanese crypto exchange that dominated trading for a brief time in the early 2010s before collapsing amid the disappearance of nearly…

Read more →

Mozilla shows guts with its extensions – but that’s the way the Cook, he crumbles Updated  At least two VPNs are no longer available for Russian iPhone users, seemingly after the Kremlin’s internet regulatory agency Roskomnadzor demanded Apple take them…

Read more →

Skin-sparing mastectomy and breast reconstruction scrapped as result of ransomware at supplier Exclusive  The latest figures suggest that around 1,500 medical procedures have been canceled across some of London’s biggest hospitals in the four weeks since Qilin’s ransomware attack hit…

Read more →

There’s also chatter about whether medium severity scare is actually code red nightmare Infosec circles are awash with chatter about a vulnerability in Ghostscript some experts believe could be the cause of several major breaches in the coming months.… This…

Read more →

Privacy measures apparently helping criminals evade capture Top Eurocops are appealing for help from lawmakers to undermine a privacy-enhancing technology (PET) they say is hampering criminal investigations – and it’s not end-to-end encryption this time. Not exactly.… This article has…

Read more →

Private sector helped out with week-long operation – but didn’t touch China Europol just announced that a week-long operation at the end of June dropped nearly 600 IP addresses that supported illegal copies of Cobalt Strike.… This article has been…

Read more →

Brain Cipher was never getting the $8 million it demanded anyway Brain Cipher, the group responsible for hacking into Indonesia’s Temporary National Data Center (PDNS) and disrupting the country’s services, has seemingly apologized for its actions and released an encryption…

Read more →

Never risk it when it comes to brisket – make sure those updates are applied Keen meatheads better hope they haven’t angered any cybersecurity folk before allowing their Traeger grills to update because a new high-severity vulnerability could be used…

Read more →

Number of partners acknowledging data theft continues to rise The number of financial institutions caught up in the ransomware attack on Evolve Bank & Trust continues to rise as fintech businesses Wise and Affirm both confirm they have been materially…

Read more →

Number of partners acknowledging data theft continues to rise The number of financial institutions caught up in the ransomware attack on Evolve Bank & Trust continues to rise as fintech businesses Wise and Affirm both confirm they have been materially…

Read more →

Number of partners acknowledging data theft continues to rise The number of financial institutions hit by the breach at Evolve Bank & Trust continues to rise as fintech businesses Wise and Affirm both confirm they have been materially affected.… This…

Read more →

Dependency manager used in millions of apps leaves a bitter taste CocoaPods, an open-source dependency manager used in over three million applications coded in Swift and Objective-C, left thousands of packages exposed and ready for takeover for nearly a decade…

Read more →

Notorious ‘Andariel’ crew takes a bite of HotCroissant backdoor for fresh attack A South Korean ERP vendor’s product update server has been attacked and used to deliver malware instead of product updates, according to local infosec outfit AhnLab.… This article…

Read more →

Full system takeovers on the cards, for those with enough patience to pull it off Glibc-based Linux systems are vulnerable to a new bug (CVE-2024-6387) in OpenSSH’s server (sshd) and should upgrade to the latest version.… This article has been…

Read more →

Full system takeovers on the cards, for those with enough patience to pull it off Glibc-based Linux systems are vulnerable to a new bug (CVE-2024-6387) in OpenSSH’s server (sshd) and should upgrade to the latest version.… This article has been…

Read more →