Category: The Register – Security

War of words escalates as deadline draws near FBI director Christopher Wray made yet another impassioned plea to US lawmakers to kill a proposed warrant requirement for so-called “US person queries” of data collected via the Feds’ favorite snooping tool,…

Read more →

No matter what stage your security career is at, SANS has resources that will add to your knowledge Sponsored Post  Fighting cybercrime demands constant vigilance and can be a huge drain on time and resources. So it’s good to know…

Read more →

Trying times for incident responders who battle fastest-ever ransomware blitz as attackers keep scrubbing evidence clean Organizations are still failing to implement adequate logging measures, increasing the difficulty faced by defenders and incident responders to identify the cause of infosec…

Read more →

Plus: VMware closes critical hole, Adobe fixes a whopping 76 flaws Patch Tuesday  Heads up: Microsoft’s November Patch Tuesday includes fixes for about 60 vulnerabilities – including three that have already been found and abused in the wild.… This article…

Read more →

23K nodes earned operator more than $500K – and now perhaps jail time The FBI says it has dismantled another botnet and collared its operator, who admitted hijacking tens of thousands of machines around the world to create his network…

Read more →

Let’s do the CacheWarp again Boffins based in Germany and Austria have found a flaw in AMD’s SEV trusted execution environment that makes it less than trustworthy.… This article has been indexed from The Register – Security Read the original…

Read more →

Sapphire Rapids, Alder Lake, and Raptor Lake chip families treated for ‘Redundant Prefix’ Intel on Tuesday issued an out-of-band security update to address a privilege escalation vulnerability in recent server and personal computer chips.… This article has been indexed from…

Read more →

Royal alone scored $275M in past year as FBI, other agencies hot on merging trail The US’ Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) have released fresh guidance on the Royal ransomware operation, saying that…

Read more →

Got a Confluence server? Listen up. Malware said to have wide-ranging capabilities A new backdoor was this week found implanted in the environments of organizations to exploit the recently disclosed critical vulnerability in Atlassian Confluence.… This article has been indexed…

Read more →

Emergency comms standard had five nasty flaws but will be opened to academic research A set of encryption algorithms used to secure emergency radio communications will enter the public domain after an about-face by the European Telecommunications Standards Institute (ETSI).……

Read more →

And the world’s getting more and more dangerous The UK’s National Cyber Security Centre (NCSC) has once again sounded its concern over the rising threat level to the nation’s critical national infrastructure (CNI).… This article has been indexed from The…

Read more →

University managment app also tracked library activity, holidays, and much more US-based research group IPVM has accused Chinese video surveillance equipment company Hikvision of engaging with a contract to develop technology that can identify Muslim students that are fasting during…

Read more →

OpenSSL, LibreSSL, OpenSSH users, don’t worry – you can sit this one out An academic study has shown how it’s possible for someone to snoop on certain devices’ SSH connections and, with a bit of luck, impersonate that equipment after…

Read more →

Plus: Chocolate Factory launches second lawsuit against false DMCA takedowns Google has sued three scammers for offering a fake download of its Bard AI chatbot that contained malware capable of stealing credentials for small business’ social media accounts.… This article…

Read more →

Zyxel zero days and nation-state actors (maybe) had a hand in the sector’s worst cybersecurity event on record Danish critical infrastructure faced the biggest online attack in the country’s history in May, according to SektorCERT, Denmark’s specialist organization for the…

Read more →

Preventing cybercriminals from exfiltrating your data with ADX technology Webinar  It seems counterintuitive to want to lock in a cybercriminal who has crept past all your defences to smuggle data out from under your nose.… This article has been indexed…

Read more →

Genuinely new ideas are rare in IT – this superhero is ready to make a real difference Opinion  Cybersecurity has many supremely annoying aspects. It soaks up talent, time, and money like the English men’s football squad, and like that…

Read more →

ALSO: most Mainers are MOVEit victims, NY radiology firm fined for not updating kit, and some critical vulnerabilities Infosec in brief  After spending almost a year cleaning up after various security snafus, the UK’s Royal Mail has left an open…

Read more →

PLUS: Citrix quits China; Cambodia deports Japanese scammers; Chinese tech CEO disappears; and more Asia in brief  Australia’s National Cyber Security Coordinator has described an attack on logistics company DP World as a “nationally significant cyber incident.”… This article has…

Read more →

Aerospace titan pores over data to see if dump is legit The LockBit crew is claiming to have leaked all of the data it stole from Boeing late last month, after the passenger jet giant apparently refused to pay the…

Read more →