Category: The Register – Security

War of words wages on between vendors divided Last week, we wrote about how security outfit Rapid7 threw JetBrains, the company behind the popular CI/CD platform TeamCity, under the bus over allegations of silent patching. Now, JetBrains has gone on…

Read more →

Targeting recovery this week, officials still trying to ‘dentify the nature of the incident’ Leicester City Council says IT systems and a number of its critical service phone lines will remain down until later this week at the earliest following…

Read more →

Russia and Sudan top the list of suspects Several French government websites have been disrupted by a severe distributed denial of service attack.… This article has been indexed from The Register – Security Read the original article: French government sites…

Read more →

US senator calls cyber attack ‘inexcusable,’ calls for mandatory security rules The Biden administration and US lawmakers are turning up the pressure on UnitedHealth group to ease medical providers’ pain after the ransomware attack on Change Healthcare, by expediting payments…

Read more →

Don’t worry, we have a strong suspicion Putin’s still gonna win The Kremlin has accused the United States of meddling in Russia’s upcoming presidential election, and even accused Uncle Sam of planning a cyberattack on the country’s online voting system.……

Read more →

Five months in and the mammoth post-ransomware recovery has barely begun The British Library says legacy IT is the overwhelming factor delaying efforts to recover from the Rhysida ransomware attack in late 2023.… This article has been indexed from The…

Read more →

And does it count as consent? The UK’s Information Commissioner’s Office (ICO) has opened a consultation on “consent or pay” business models. We’re sure readers of The Register will have a fair few things to say.… This article has been…

Read more →

PLUS: NSA shares cloud security tips; Infosec training for Jordanian women; Critical vulnerabilities Infosec in brief  Cybersecurity researchers informed Microsoft that Notorious North Korean hackers Lazarus Group discovered the “holy grail” of rootkit vulnerabilities in Windows last year, but Redmond…

Read more →

Plus: CISA pulls plug on couple of systems feared compromised There’s yet another group of miscreants out there hijacking insecure Ivanti devices: A new, financially motivated gang dubbed Magnet Goblin has emerged from the shadowy digital depths with a knack…

Read more →

Still “no evidence” of any compromised customer-facing systems, we’re told Microsoft has now confirmed that the Russian cyberspies who broke into its executives’ email accounts stole source code and gained access to internal systems. The Redmond giant has characterized the…

Read more →

Remaining services are expected to return in the coming weeks after $22M ALPHV ransom Change Healthcare has taken the first steps toward a full recovery from the ransomware attack in February by bringing its electronic prescription services back online.… This…

Read more →

Classified docs, readable passwords, and thousands of personal information nabbed in Xplain breach The Swiss government had around 65,000 files related to it stolen by the Play ransomware gang during an attack on an IT supplier, its National Cyber Security…

Read more →

Who knew that unzipping a font archive could unleash a malicious file Online graphic design platform Canva went looking for security problems in fonts, and found three – in “strange places.”… This article has been indexed from The Register –…

Read more →

CISA announces more help, and calls on app makers to step up The US government and some of the largest open source foundations and package repositories have announced a series of initiatives intended to improve software supply-chain security, while also…

Read more →

‘We refuse to operate as customer service representatives’ A group of 41 US state attorneys general, tired of serving as a customer complaint clearinghouse for Facebook and Instagram users, have sent a letter to Meta asking it to figure out…

Read more →

Alleged crim bought SmartScreen Killer, Cobalt Strike on dark-web markets A criminal claiming to be an ALPHV/BlackCat affiliate — the gang responsible for the widely disruptive Change Healthcare ransomware infection last month —  may have ties to Chinese government-backed cybercrime…

Read more →

More than 1,000 servers remain unpatched and vulnerable Security researchers are increasingly seeing active exploit attempts using the latest vulnerabilities in JetBrains’ TeamCity that in some cases are leading to ransomware deployment.… This article has been indexed from The Register…

Read more →

Company reassures public it has enough beer, expects quick recovery before weekend Belgian beer brewer Duvel says a ransomware attack has brought its facility to a standstill while its IT team works to remediate the damage.… This article has been…

Read more →

Company reassures public it has enough beer, expects quick recovery before weekend Belgian beer brewer Duvel says a ransomware attack has brought its facility to a standstill while its IT team works to remediate the damage.… This article has been…

Read more →

Critical vulns in USB under ESXi and desktop hypervisors found by Chinese researchers at cracking contest Hypervisors are supposed to provide an inviolable isolation layer between virtual machines and hardware. But hypervisor heavyweight VMware by Broadcom yesterday revealed its hypervisors…

Read more →