Category: The Register – Security

Privacy review finds breach response plan is a mess, training could be better, but protection regime mostly holds up NASA’s Office of Inspector General has run its eye over the aerospace agency’s privacy regime and found plenty to like –…

Read more →

Why keeping your PC secure and free of malware remains paramount IBM Security has dissected some JavaScript code that was injected into people’s online banking pages to steal their login credentials, saying 50,000 user sessions with more than 40 banks…

Read more →

Research highlights how major attacks like those exploiting Booking.com are executed Cybercriminals are preying on the inherent helpfulness of hotel staff during the sector’s busy holiday season.… This article has been indexed from The Register – Security Read the original…

Read more →

Enforcement notice issued months after data regulator schooled police force Greater Manchester Police (GMP) must clear the backlog of hundreds of Freedom of Information (FOI) Act requests – some years old – or find itself in contempt of court.… This…

Read more →

No need to panic, but grab those updates or mitigations anyway just to be safe A vulnerability in the SSH protocol can be exploited by a well-placed adversary to weaken the security of people’s connections, if conditions are right.… This…

Read more →

Alleged crims used AI to pose as friends, family, romantic partners – and sold dodgy NFTs A transnational police operation has resulted in the arrest of 3,500 alleged cybercriminals and the seizure of $300 million in cash and digital assets.……

Read more →

35M-plus Comcast user IDs accessed by intruder via Citrix Bleed Millions of Comcast Xfinity subscribers’ personal data – including potentially their usernames, hashed passwords, contact details, and secret security question-answers – was likely stolen by one or more miscreants exploiting…

Read more →

Microsoft bug hunters highlight weaknesses in source-wrangling suite Four vulnerabilities in Perforce Helix Core Server, including one critical remote code execution bug, should be patched “immediately,” according to Microsoft, which spotted the flaws and disclosed them to the software vendor.……

Read more →

Domain seized while gang shrugs at loss of ‘stupid old key’ The US Justice Department is passing a decryptor to more than 500 victims of AlphV/BlackCat’s ransomware following a disruption campaign.… This article has been indexed from The Register –…

Read more →

Domain seized while gang shrugs at loss of ‘stupid old key’ The US Justice Department is passing a decryptor to more than 500 victims of AlphV/BlackCat’s ransomware following a disruption campaign.… This article has been indexed from The Register –…

Read more →

Experts say malware strain make take years to die off completely Multiple sources are confirming the resurgence of Qakbot malware mere months after the FBI and other law enforcement agencies shuttered the Windows botnet.… This article has been indexed from…

Read more →

Predatory Sparrow previously knocked out railways and a steel plant Hacktivists reportedly disrupted services at about 70 percent of Iran’s gas stations in a politically motivated cyberattack.… This article has been indexed from The Register – Security Read the original…

Read more →

Mortgage lender says no evidence of identity theft (yet) after SSNs, DoBs, addresses, more swiped Mortgage lender Mr Cooper has now admitted almost 14.7 million people’s private information, including addresses and bank account numbers, were stolen in an earlier IT…

Read more →

IT systems encrypted, personal data pilfered from North Face parent, we’re told A digital break-in has disrupted VF Corp’s operations and its ability to fulfill orders, according to the apparel and footwear giant.… This article has been indexed from The…

Read more →

Move reportedly made after consulting with National Cyber Security Centre The National Grid is reportedly the latest organization in the UK to begin pulling China-manufactured equipment from its network over cybersecurity fears.… This article has been indexed from The Register…

Read more →

PLUS: Cancer patients get ransom notes for Christmas, Delta Dental is the latest MOVEit victim, and critical vulns Infosec in brief  MongoDB on Saturday issued an alert warning of “a security incident involving unauthorized access to certain MongoDB corporate systems,…

Read more →

PLUS: Beijing wants ten-minute reporting of infosec incidents; Infosys CFO bails; TikTok’s Indonesia comeback approved, for now Think tank Australian Strategic Policy Institute (ASPI) last week published details of a campaign that spreads English language pro-China and anti-US narratives on…

Read more →

NPM repo hijacked after former worker phished Cryptocurrency wallet maker Ledger says someone slipped malicious code into one of its JavaScript libraries to steal more than half a million dollars from victims.… This article has been indexed from The Register…

Read more →

Ah, beans The Kraft Heinz Company says its systems are all up and running as usual as it probes claims that some of its data was stolen by ransomware crooks.… This article has been indexed from The Register – Security…

Read more →

Novel malware adapts delivers DDoS attacks and provides RAT functionality Incident responders say they’ve found a new type of multi-platform malware abusing the New Kind of Network (NKN) protocol.… This article has been indexed from The Register – Security Read…

Read more →