Category: The Register – Security

Opponents warn almost anyone could be asked to share info with Uncle Sam On Thursday the US Senate is expected to reauthorize the contentious warrantless surveillance powers conferred by Section 702 of the Foreign Intelligence Surveillance Act (FISA), and may…

Read more →

Water tank overflowed during one system malfunction, says Mandiant The Russian military’s notorious Sandworm crew was likely behind cyberattacks on US and European water plants that, in at least one case, caused a tank to overflow.… This article has been…

Read more →

Race on to patch as researchers warn of mass exploitation of directory traversal bug Various infosec researchers have released proof-of-concept (PoC) exploits for the maximum-severity vulnerability in Palo Alto Networks’ PAN-OS used in GlobalProtect gateways.… This article has been indexed…

Read more →

While some other LLMs appear to flat-out suck AI agents, which combine large language models with automation software, can successfully exploit real world security vulnerabilities by reading security advisories, academics have claimed.… This article has been indexed from The Register…

Read more →

Just doesn’t believe it will sort out the mess that saw data leak from LINE messaging app Japan’s government has considered the proposed security improvements developed by Yahoo!, found them wanting, and ordered the onetime web giant to take new…

Read more →

Also warns of brute force attacks targeting its own VPNs, Check Point, Fortinet, SonicWall and more Cisco is fighting fires on a couple cybersecurity fronts this week involving its Duo multi-factor authentication (MFA) service and its remote-access VPN services.… This…

Read more →

Also warns of brute force attacks targeting its own VPNs, Check Point, Fortinet, SonicWall and more Cisco is fighting fires on a couple fronts this week after security incidents involving its Duo multi-factor authentication (MFA) service and its remote-access VPN…

Read more →

What a twist! MGM Resorts wants the FTC to halt a probe into last year’s ransomware infection at the mega casino chain – because the watchdog’s boss Lina Khan was a guest at one of its hotels during the cyberattack,…

Read more →

No prizes for guessing the victims A Nebraska man will appear in court today to face charges related to allegations that he defrauded cloud service providers of more than $3.5 million in a long-running cryptojacking scheme.… This article has been…

Read more →

No breach responsible for employee contact info getting out, says T-Mo T-Mobile US employees say they are being sent text messages that offer them cash to perform illegal SIM swaps for supposed criminals.… This article has been indexed from The…

Read more →

Social engineering patterns spotted across range of popular projects Open source groups are warning the community about a wave of ongoing attacks targeting project maintainers similar to those that led to the recent attempted backdooring of a core Linux library.……

Read more →

First glimpse at attack financials reveals huge pain UnitedHealth, parent company of ransomware-besieged Change Healthcare, says the total costs of tending to the February cyberattack for the first calendar quarter of 2024 currently stands at $872 million.… This article has…

Read more →

$62 million settlement plan challenged over payments to progressive nonprofits Google’s plan to pay $62 million to settle allegations that it tracked people even when their Location History setting was switched off may have to be renegotiated based on several…

Read more →

Hard-coded credentials last thing you want in home security app Some smart locks controlled by Chirp Systems’ software can be remotely unlocked by strangers thanks to a critical security vulnerability.… This article has been indexed from The Register – Security…

Read more →

Streamer says access came via credential stuffing Streaming giant Roku is making 2FA mandatory after attackers accessed around 591,000 customer accounts earlier this year.… This article has been indexed from The Register – Security Read the original article: Roku makes…

Read more →

Attackers could nab an org’s most sensitive keys if left unaddressed Customers of Delinea’s Secret Server are being urged to upgrade their installations “immediately” after a researcher claimed a critical vulnerability could allow attackers to gain admin-level access.… This article…

Read more →

Fears of low-cost invasion and data spies spark call for ban Electric vehicles may become a new front in America’s tech war with China after a US senator called for Washington DC to block Chinese-made EVs to protect domestic industries…

Read more →

The prima facie case for real-time threat intelligence Webinar  Cybercriminals are always on the hunt for new ways to breach your privacy, and busy supply chains often look like a good way to get in under the wire.… This article…

Read more →

PLUS: Chinese chipmaker Nexperia attacked; A Microsoft-signed backdoor; CISA starts scanning your malware; and more Infosec in brief  US Congress nearly killed a reauthorization of FISA Section 702 last week over concerns that it would continue to allow warrantless surveillance…

Read more →

Out of the PAN-OS and into the firewall, a Python backdoor this way comes Palo Alto Networks on Friday issued a critical alert for an under-attack vulnerability in the PAN-OS software used in its firewall-slash-VPN products.… This article has been…

Read more →