And that’s not counting the incoming lawsuits Rackspace’s costs from last year’s ransomware infection continue to mount: the cloud hosting biz told America’s financial watchdog, the SEC, its total expenses to date regarding that cyberattack have reached $12 million –…
Category: The Register – Security
Windows Server 2022 update gave ESXi host VMs the blue screen blues
Wild idea: Maybe Microsoft could introduce a Quality Copilot to stop pushing broken patches Something likely to be absent from Microsoft’s Ignite event is talk of a fix rolled out to deal with malfunctioning Windows Server 2022 Virtual Machines following…
BlackCat plays with malvertising traps to lure corporate victims
Ads for Slack and Cisco AnyConnect actually downloaded Nitrogen malware Affiliates of the ALPHV/BlackCat ransomware-as-a-service operation are turning to malvertising campaigns to establish an initial foothold in their victims’ systems.… This article has been indexed from The Register – Security…
Royal Mail’s recovery from ransomware attack will cost business at least $12M
First time hard figure given on recovery costs for January incident Royal Mail’s parent company has revealed for the first time the infrastructure costs associated with its January ransomware attack.… This article has been indexed from The Register – Security…
Hundreds of websites cloned to run ads for Chinese football gambling outfits
Linked to org that UK authorities found once failed its anti-money-laundering obligations Swedish digital rights organization Qurium has discovered around 250 cloned websites and suggested they exist to drive people to China-linked gambling sites.… This article has been indexed from…
Clorox CISO flushes self after multi-million-dollar cyberattack
Plus: Ransomware crooks file SEC complaint against victim The Clorox Company’s chief security officer has left her job in the wake of a corporate network breach that cost the manufacturer hundreds of millions of dollars.… This article has been indexed…
Google Workspace weaknesses allow plaintext password theft
Exploits come with caveats, but Google says no fixes as user security should do the heavy lifting here Novel weaknesses in Google Workspace have been exposed by researchers, with exploits potentially leading to ransomware attacks, data exfiltration, and password decryption.……
FBI Director: FISA Section 702 warrant requirement a ‘de facto ban’
War of words escalates as deadline draws near FBI director Christopher Wray made yet another impassioned plea to US lawmakers to kill a proposed warrant requirement for so-called “US person queries” of data collected via the Feds’ favorite snooping tool,…
How cyber training can help you beat the bad guys
No matter what stage your security career is at, SANS has resources that will add to your knowledge Sponsored Post Fighting cybercrime demands constant vigilance and can be a huge drain on time and resources. So it’s good to know…
Ransomware more efficient than ever, and baddies are still after your logs
Trying times for incident responders who battle fastest-ever ransomware blitz as attackers keep scrubbing evidence clean Organizations are still failing to implement adequate logging measures, increasing the difficulty faced by defenders and incident responders to identify the cause of infosec…
Another month, another bunch of fixes for Microsoft security bugs exploited in the wild
Plus: VMware closes critical hole, Adobe fixes a whopping 76 flaws Patch Tuesday Heads up: Microsoft’s November Patch Tuesday includes fixes for about 60 vulnerabilities – including three that have already been found and abused in the wild.… This article…
Russian national pleads guilty to building now-dismantled IPStorm proxy botnet
23K nodes earned operator more than $500K – and now perhaps jail time The FBI says it has dismantled another botnet and collared its operator, who admitted hijacking tens of thousands of machines around the world to create his network…
AMD SEV OMG: Trusted execution undone by cache meddling
Let’s do the CacheWarp again Boffins based in Germany and Austria have found a flaw in AMD’s SEV trusted execution environment that makes it less than trustworthy.… This article has been indexed from The Register – Security Read the original…
Intel out-of-band patch addresses privilege escalation flaw
Sapphire Rapids, Alder Lake, and Raptor Lake chip families treated for ‘Redundant Prefix’ Intel on Tuesday issued an out-of-band security update to address a privilege escalation vulnerability in recent server and personal computer chips.… This article has been indexed from…
Ransomware royale: US confirms Royal, BlackSuit are linked
Royal alone scored $275M in past year as FBI, other agencies hot on merging trail The US’ Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) have released fresh guidance on the Royal ransomware operation, saying that…
Novel backdoor persists even after critical Confluence vulnerability is patched
Got a Confluence server? Listen up. Malware said to have wide-ranging capabilities A new backdoor was this week found implanted in the environments of organizations to exploit the recently disclosed critical vulnerability in Atlassian Confluence.… This article has been indexed…
Bug hunters on your marks: TETRA radio encryption algorithms to enter public domain
Emergency comms standard had five nasty flaws but will be opened to academic research A set of encryption algorithms used to secure emergency radio communications will enter the public domain after an about-face by the European Telecommunications Standards Institute (ETSI).……
NCSC says cyber-readiness of UK’s critical infrastructure isn’t up to scratch
And the world’s getting more and more dangerous The UK’s National Cyber Security Centre (NCSC) has once again sounded its concern over the rising threat level to the nation’s critical national infrastructure (CNI).… This article has been indexed from The…
Beijing reportedly asked Hikvision to identify fasting students in Muslim-majority province
University managment app also tracked library activity, holidays, and much more US-based research group IPVM has accused Chinese video surveillance equipment company Hikvision of engaging with a contract to develop technology that can identify Muslim students that are fasting during…
Passive SSH server private key compromise is real … for some vulnerable gear
OpenSSL, LibreSSL, OpenSSH users, don’t worry – you can sit this one out An academic study has shown how it’s possible for someone to snoop on certain devices’ SSH connections and, with a bit of luck, impersonate that equipment after…
Google sues scammers peddling fake malware-riddled Bard chatbot download
Plus: Chocolate Factory launches second lawsuit against false DMCA takedowns Google has sued three scammers for offering a fake download of its Bard AI chatbot that contained malware capable of stealing credentials for small business’ social media accounts.… This article…
Inside Denmark’s hell week as critical infrastructure orgs faced cyberattacks
Zyxel zero days and nation-state actors (maybe) had a hand in the sector’s worst cybersecurity event on record Danish critical infrastructure faced the biggest online attack in the country’s history in May, according to SektorCERT, Denmark’s specialist organization for the…
Introducing the tech that keeps the lights on
Genuinely new ideas are rare in IT – this superhero is ready to make a real difference Opinion Cybersecurity has many supremely annoying aspects. It soaks up talent, time, and money like the English men’s football squad, and like that…
Royal Mail cyber security still a mess, say infosec researchers
ALSO: most Mainers are MOVEit victims, NY radiology firm fined for not updating kit, and some critical vulnerabilities Infosec in brief After spending almost a year cleaning up after various security snafus, the UK’s Royal Mail has left an open…
Australia declares ‘nationally significant cyber incident’ after port attack
PLUS: Citrix quits China; Cambodia deports Japanese scammers; Chinese tech CEO disappears; and more Asia in brief Australia’s National Cyber Security Coordinator has described an attack on logistics company DP World as a “nationally significant cyber incident.”… This article has…
Impatient LockBit says it’s leaked 50GB of stolen Boeing files after ransom fails to land
Aerospace titan pores over data to see if dump is legit The LockBit crew is claiming to have leaked all of the data it stole from Boeing late last month, after the passenger jet giant apparently refused to pay the…
Poloniex crypto-exchange offers 5% cut to thieves if they return that $120M they nicked
White hat bounty looks more like a beg bounty The founder of the Poloniex has offered to pay off thieves who drained an estimated $120 million of user funds from the cryptocurrency exchange in a raid on Friday.… This article…
Strangely enough, no one wants to buy a ransomware group that has cops’ attention
Ransomed.vc shuts after 20% discount fails to entice bids Short-lived ransomware outfit Ransomed.vc claims to have shut down for good after a number of suspected arrests.… This article has been indexed from The Register – Security Read the original article:…
ICBC hit by ransomware impacting global trades
CitrixBleed patch has been available for around a month China’s largest bank, ICBC, was hit by ransomware that resulted in disruption of financial services (FS) systems on Thursday Beijing time, according to a notice on its website.… This article has…
Downfall fallout: Intel knew AVX chips were insecure and did nothing, lawsuit claims
Billions of data-leaking processors sold despite warnings and patch just made them slower, punters complain Intel has been sued by a handful of PC buyers who claim the x86 goliath failed to act when informed five years ago about faulty…
SolarWinds says SEC sucks: Watchdog ‘lacks competence’ to regulate cybersecurity
IT software slinger publishes fierce response to lawsuit brought last month SolarWinds has come out guns blazing to defend itself following the US Securities and Exchange Commission’s announcement that it will be suing both the IT software maker and its…
SolarWinds: SEC ‘lacks the competence’ to regulate cybersecurity
Company publishes fierce response to lawsuit brought last month SolarWinds has come out guns blazing to defend itself following the Securities and Exchange Commission’s announcement that it will be suing both the company and its CISO over the 2020 SUNBURST…
MOVEit cybercriminals unearth fresh zero-day to exploit on-prem SysAid hosts
Second novel zero-day exploited by Lace Tempest this year offers notable demonstration of skill, especially for a ransomware affiliate The cybercriminals behind the rampant MOVEit exploits from earlier this year are making use a zero-day vulnerability in on-prem instances of…
Russia’s Sandworm – not just missile strikes – to blame for Ukrainian power blackouts
Online attack coincided with major military action, Mandiant says Blackouts in Ukraine last year were not just caused by missile strikes on the nation but also by a seemingly coordinated cyberattack on one of its power plants. That’s according to…
What to do with a cloud intrusion toolkit in 2023? Slap a chat assistant on it, duh
Don’t worry, this half-baked Python script is for educational purposes onl-hahaha Infosec bods have detailed an underground cybersecurity tool dubbed Predator AI that not only can be used to compromise poorly secured cloud services and web apps, but has an…
Microsoft, Meta detail plans to fight election disinformation in 2024
Strategies differ, though both have gaps that could hurt efficacy Microsoft and Meta have very different initiatives to combat misinformation in 2024, slated to be a busy election year all over the globe, but whether they’ll be effective is another…
Atlassian cranks up the threat meter to max for Confluence authorization flaw
Attackers secure admin rights after vendor said they could only steal data Atlassian reassessed the severity rating of the recent improper authorization vulnerability in Confluence Data Center and Server, raising the CVSS score from 9.1 to a maximum of 10.……
Monero Project admits thieves stole 6-figure sum from a wallet in mystery breach
It’s the latest in a string of unusual wallet-draining attacks that began in April The Monero Project is admitting that one of its wallets was drained by an unknown source in September, losing the equivalent of around $437,000 at today’s…
Preventing data theft with ADX technology
Ensuring data stays secure even after cyberattack infiltration Webinar Daily incursions are underway with the aim of removing every bit of data that you’ve got – the cyber criminals’ aim is to break in and get out again laden with…
Bad eIDAS: Europe ready to intercept, spy on your encrypted HTTPS connections
EFF warns incoming rules may return web ‘to the dark ages of 2011’ Lawmakers in Europe are expected to adopt digital identity rules that civil society groups say will make the internet less secure and open up citizens to online…
Microsoft likens MFA to 1960s seatbelts, buckles admins in yet keeps eject button
Admins have 90 days to opt out before MFA is deployed automatically Microsoft is introducing three Conditional Access policies for sysadmins as it continues to promote the implementation of multi-factor authentication (MFA) in organizations.… This article has been indexed from…
UK may demand tech world tell it about upcoming security features
Campaigners say proposals to reform laws are ‘dangerous’ and an attack on safety The UK government has set in train plans to introduce legislation requiring tech companies to let it know when they plan to introduce new security technologies and…
UK may demand tech world tell it about upcoming security features so it can ‘disable them’
Campaigners say proposals to reform laws are ‘dangerous’ and an attack on safety The UK government has set in train plans to introduce legislation requiring tech companies to let it know when they plan to introduce new security technologies and…
Fresh find shines new light on North Korea’s latest macOS malware
Months of work reveals how this tricky malware family targets… the financial services sector A brand-new macOS malware strain from North Korean state-sponsored hackers has been spotted in the wild.… This article has been indexed from The Register – Security…
Woman jailed after Rentahitman.com assassin turned out to be – surprise – FBI
18 months in the slammer no laughing matter, but the rest… maybe A 34-year-old woman has been jailed for 18 months after trying to use Rentahitman.com – no, really – to pay a contract killer to eliminate a rival she…
ICE faces heat after agents install thousands of personal apps, VPNs on official phones
Audit: Craptastic security could potentially put govt info in hands of enemies America’s immigration cops have pushed back against an official probe that concluded their lax mobile device security potentially put sensitive government information at risk of being stolen by…
US slaps sanctions on accused fave go-to money launderer of Russia’s rich
And that includes ransomware crims, claims US of alleged sanctions-buster A Russian woman the US accuses of being a career money launderer is the latest to be sanctioned by the country for her alleged role in moving hundreds of millions…
Okta breach affected 134 orgs, ‘or less than 1%’ of customers, company admits
Plus: CVSS 4.0 is here, this week’s critical vulns, and ‘incident’ hit loan broker promises no late fees. Generous Infosec in brief Okta has confirmed details of its October breach, reporting that the incident led to the compromise of files…
Securing frontline Operational Technology environments
How Britvic outlawed security blind spots Webinar Organisations in multiple industries often face risks which can severely impact their operational resilience. Cyber criminals like to use ransomware and vulnerable third-party connections to hijack operational technology (OT) systems which can stop…
‘Corrupt’ cop jailed for tipping off pal to EncroChat dragnet
Taking selfie with ‘official sensitive’ doc wasn’t smartest idea, either A British court has sentenced a “corrupt” cop to almost four years behind bars for tipping off a friend that officers had compromised the EncroChat encrypted messaging app network.… This…
81K people’s sensitive info feared stolen from Hilb after email inboxes ransacked
Credit card numbers, security codes, SSNs, passwords, PINs? Yikes! Hilb Group has warned more than 81,000 people that around the start of 2023 criminals broke into the work email accounts of its employees and may have stolen a bunch of…
Ex-GCHQ software dev jailed for stabbing NSA staffer
Terrorist ideology suspected to be motivation A former software developer for Britain’s cyberspy agency is facing years in the slammer after being sentenced for stabbing a National Security Agency (NSA) official multiple times.… This article has been indexed from The…
Microsoft pins hopes on AI once again – this time to patch up Swiss cheese security
Secure Future Initiative needed in wake of tech evolution and unrelenting ransomware criminality Microsoft has made fresh commitments to harden the security of its software and cloud services after a year in which numerous members of the global infosec community…
UK data watchdog fines three text spammers for flouting electronic marketing rules
‘High-pressure’ sales tactics targeted people registered with Telephone Preference Service A “debt management company” is itself facing a bill from Britain’s data regulator for sending hundreds of thousands of text messages to households that opted not to receive marketing junk…
FTX crypto-villain Sam Bankman-Fried convicted on all charges
Jury took just four hours to reach guilty verdicts Sam Bankman-Fried, the founder and former CEO of crypto exchange FTX and trading firm Alameda Research, has been found guilty of seven criminal charges.… This article has been indexed from The…
Infosec pros can secure IT, but have harder time securing job satisfaction
Industry facing burnout scare as workplace issues snowball The proportion of cybersecurity professionals reporting low “happiness ratings” has risen sharply over the last 12 months, raising concerns about increasing burnout rates in the industry.… This article has been indexed from…
Critical Apache ActiveMQ flaw under attack by ‘clumsy’ ransomware crims
Over a week later and barely any patches for the 10/10 vulnerability have been applied Security researchers have confirmed that ransomware criminals are capitalizing on a maximum-severity vulnerability in Apache ActiveMQ.… This article has been indexed from The Register –…
Okta tells 5,000 of its own staff that their data was accessed in third-party breach
The hits keep on coming for troubled ID management biz Okta has sent out breach notifications to almost 5,000 employees, warning them that miscreants breached one of its third-party vendors and stole a file containing staff names, social security numbers,…
Boeing acknowledges cyberattack on parts and distribution biz
Won’t say if it’s LockBit, but LockBit appears to have claimed credit. Maybe payment, too Boeing has acknowledged a cyber incident just days after ransomware gang LockBit reportedly exfiltrated sensitive data from the aerospace defence contractor.… This article has been…
FBI boss: Taking away our Section 702 spying powers could be ‘devastating’
Of course, he would say that, wouldn’t he? As the expiration date for the Feds’ Section 702 surveillance powers draws closer, FBI Director Christopher Wray has warned a US Senate committee that his agents may not be able to stop…
Ransomware crooks SIM swap medical research biz exec, threaten to leak stolen data
Advarra probes intrusion claims, says ‘the matter is contained’ Ransomware crooks claim they’ve stolen data from a firm that helps other organizations run medical trials after one of its executives had their cellphone number and accounts hijacked.… This article has…
Mozi botnet murder mystery: China or criminal operators behind the kill switch?
Middle Kingdom or self-immolation – there are a couple of theories The Mozi botnet has all but disappeared according to security folks who first noticed the prolific network’s slowdown and then uncovered a kill switch for the IoT system. But…
Feds collar suspected sanctions-busting Russian smugglers of US tech
Parts sent to Moscow allegedly found on Ukrainian battlefields Three Russian nationals were arrested in New York yesterday on charges of moving electronics components worth millions to sanctioned entities in Russia, pieces of which were later recovered on battlefields in…
Critical vulnerability in F5 BIG-IP under active exploitation
Full extent of attacks unknown but telecoms thought to be especially exposed Vulnerabilities in F5’s BIG-IP suite are already being exploited after proof of concept (PoC) code began circulating online.… This article has been indexed from The Register – Security…
Cybercrooks amp up attacks via macro-enabled XLL files
Neither Excel nor PowerPoint safe as baddies continue to find ways around protections Cybercriminals are once again abusing macro-enabled Excel add-in (XLL) files in malware attacks at a vastly increased rate, according to new research.… This article has been indexed…
Get your very own ransomware empire on the cheap, while stocks last
RansomedVC owner takes to Telegram to flog criminal enterprise The short-lived RansomedVC ransomware operation is being shopped around by its owner, who is claiming to offer a 20 percent discount just a day after first listing it for sale.… This…
Meeting the challenge of OT security
Learn how Britvic eliminates blind spots in Operational Technology systems Webinar Cyberattacks on industrial control systems are becoming more common, and there isn’t likely to be a let up any time soon.… This article has been indexed from The Register…
Indian politicians say Apple warned them of state-sponsored attacks
Nobody knows which state, but India’s government never quite shrugged off claims it uses spyware Indian politicians and media figures have reported that Apple has warned them their accounts may be under attack by state-sponsored actors.… This article has been…
US officials close to persuading allies to not pay off ransomware crooks
‘We’re still in the final throes of getting every last member to sign’ Top White House officials are working to secure an agreement between almost 50 countries to not pay ransom demands to cybercriminals as the international Counter Ransomware Initiative…
‘Mass exploitation’ of Citrix Bleed underway as ransomware crews pile in
At least two extortion gangs abusing CVE-2023-4966, we’re told Citrix Bleed, the critical information-disclosure bug that affects NetScaler ADC and NetScaler Gateway, is now under “mass exploitation,” as thousands of Citrix NetScaler instances remain vulnerable, according to security teams.… This…
Now Russians accused of pwning JFK taxi system to sell top spots to cabbies
US unlikely to get a bite of them at this rate, though For a period of two years between September 2019 and September 2021, two Americans and two Russians allegedly compromising the taxi dispatch system at John F. Kennedy International…
Ace holed: Hardware store empire felled by cyberattack
US outfit scrambles to repair operations, restore processing of online orders Ace Hardware appears to have been the latest organization to succumb to a cyberattack, judging by its website and a message from CEO John Venhuizen.… This article has been…
Finance orgs have 30 days to confess cyber sins under incoming FTC rules
Follows similar efforts from the SEC and DHS in recent months The US has approved mandatory data breach reporting requirements that impose a 30-day deadline for non-banking financial organizations to report incidents.… This article has been indexed from The Register…
Cybersecurity snafu sends British Library back to the Dark Ages
Internet, phone lines, websites, and more went down on Saturday morning The British Library has confirmed to The Register that a “cyber incident” is the cause of a “major” multi-day IT outage.… This article has been indexed from The Register…
UK policing minister urges doubling down on face-scanning tech
‘No question’ it will solve more crimes, Tory MP claims A UK minister for policing has called for forces to double their use of algorithmic-assisted facial recognition in a bid to snare more criminals.… This article has been indexed from…
Meta’s ad-free scheme dares you to buy your privacy back, one euro at a time
If you’re in the EU, EEA, or Switzerland From November, it will be possible to pay Meta to stop shoveling ads in your Instagram or Facebook feeds and slurping your data for marketing purposes so long as you live in…
Stop what you’re doing and patch this critical Confluence flaw, warns Atlassian
Risk of ‘significant data loss’ for on-prem customers Atlassian has told customers they “must take immediate action” to address a newly discovered flaw in its Confluence collaboration tool.… This article has been indexed from The Register – Security Read the…
Florida man jailed after draining $1M from victims in crypto SIM swap attacks
Not old enough to legally buy a beer, old enough for a 30-month term A 20-year-old Florida man has been sentenced to 30 months behind bars for his role in a SIM-swapping ring that stole nearly $1 million in cryptocurrency…
Unpatched NGINX ingress controller bugs can be abused to steal Kubernetes cluster secrets
Just tricks, no treats with these 3 vulns Three unpatched high-severity bugs in the NGINX ingress controller can be abused by miscreants to steal credentials and other secrets from Kubernetes clusters. … This article has been indexed from The Register –…
Cryptojackers steal AWS credentials from GitHub in 5 minutes
Researchers just scratching surface of their understanding of campaign dating back to 2020 Security researchers have uncovered a multi-year cryptojacking campaign they claim autonomously clones GitHub repositories and steals their exposed AWS credentials.… This article has been indexed from The…
Stanford schooled in cybersecurity after Akira claims ransomware attack
This marks the third criminal intrusion at the institution in as many years Stanford University has confirmed it is “investigating a cybersecurity incident” after an attack last week by the Akira ransomware group.… This article has been indexed from The…
LockBit alleges it boarded Boeing, stole ‘sensitive data’
ALSO: CISA begs for a consistent budget, Las Vegas school breach; Nigeria arrests six cyber princes, the week’s critical vulnerabilities Security In Brief Notorious ransomware gang LockBit has reportedly exfiltrated “a tremendous amount of sensitive data from aerospace outfit Boeing.……
Apple Private Wi-Fi hasn’t worked for the past three years
Not exactly the MAC daddy Three years after Apple introduced a menu setting called Private Wi-Fi Address, a way to spoof network identifiers called MAC addresses, the privacy protection may finally work as advertised, thanks to a software fix.… This…
F5 hurriedly squashes BIG-IP remote code execution bug
Fixes came earlier than scheduled as vulnerability became known to outsiders F5 has issued a fix for a remote code execution (RCE) bug in its BIG-IP suite carrying a near-maximum severity score.… This article has been indexed from The Register…
Microsoft unveils shady shenanigans of Octo Tempest and their cyber-trickery toolkit
Gang thought to be behind attack on MGM Resorts has a skillset larger than most cybercrime groups in existence Microsoft’s latest report on “one of the most dangerous financial criminal groups” operating offers security pros an abundance of threat intelligence…
King Charles III signs off on UK Online Safety Act, with unenforceable spying clause
It’s now up to Ofcom to sort out this messy legislation With the assent of King Charles, the United Kingdom’s Online Safety Act has become law, one that the British government says will “make the UK the safest place in…
Apple drops urgent patch against obtuse TriangleDB iPhone malware
Kaspersky first found this software nasty on its own phones Apple pushed several security fixes on Wednesday, including one for all iPhone and iPads used before September last year that has already been exploited by cyber snoops.… This article has…
Forget the outside hacker, the bigger threat is inside by the coffee machine
After a week of incidents, Register vultures pick over the innards Kettle In this week’s Kettle the topic is one that’s been much in the news this week – the much-underrated insider threat issue.… This article has been indexed from…
Side channel attacks take bite out of Apple silicon with iLeakage exploit
Nearly six years on from Spectre and Meltdown, novel method steals passwords, emails, texts University researchers have developed a novel exploit that can steal information from virtually all modern Apple Macs, iPhones, and iPads.… This article has been indexed from…
ServiceNow quietly addresses unauthenticated data exposure flaw from 2015
Researcher who publicized issue brands company’s communication ‘appalling’ ServiceNow is issuing a fix for a flaw that exposes data after a researcher published a method for unauthenticated attackers to steal an organization’s sensitive files.… This article has been indexed from…
Canada goosed as attackers shutter hospitals and China deepfakes its politicians
Eh? Canucks cracked by cyber crims Cybercriminals have Canada in the crosshairs, with five Ontario hospitals and a fresh Spamoflague disinformation campaign targeting “dozens” of Canadian government officials, including the PM.… This article has been indexed from The Register –…
Pro-Russia group exploits Roundcube zero-day in attacks on European government emails
With this zero-day, researchers say the ‘scrappy’ group is stepping up its operations The Winter Vivern cyber spy group is exploiting an XSS zero-day vulnerability in attacks on European governments.… This article has been indexed from The Register – Security…
A fortified data vault to give you peace of mind
Watch our webinar to hear more about comprehensive data protection from Zerto and HPE Webinar It’s a challenge to maintain the availability and security of mission critical data in today’s environment. As IT teams know only too well, there’s no…
Hunters International leaks pre-op plastic surgery pics in negotiation no-no
No honor among thieves as group denies Hive ransomware links A newly emerged ransomware gang claims to have successfully gained access to the systems of a US plastic surgeon’s clinic, leaking patients’ pre-operation pictures in an attempt to hurry a…
VMware reveals critical vCenter vuln that you may have patched already without knowing it
Takes rare step of issuing patches for end-of-life versions, as some staff report end-of-career letters VMware has disclosed a critical vulnerability in its vCenter Server – and that it issued an update to fix it weeks ago, along with patches…
Hot fuzz: Cascade finds dozens of RISC-V chip bugs using random data storm
ETH Zurich boffins say they’ve devised a better CPU fuzzer to find flaws Video Boffins from ETH Zurich have devised a novel fuzzer for finding bugs in RISC-V chips and have used it to find more than three dozen.… This…
Citrix urges ‘immediate; patch for critical NetScaler bug as exploit POC made public
At this point, just assume your kit is compromised Citrix has urged admins to “immediately” apply a fix for CVE-2023-4966, a critical information disclosure bug that affects NetScaler ADC and NetScaler Gateway, admitting it has been exploited.… This article has…
Ex-NSA techie pleads guilty to selling state secrets to Russia
Wannabe spy undone by system logs, among other lapses in judgement A former US National Security Agency techie has plead guilty to six counts of violating the Espionage Act after being caught handing classified information to FBI agents he thought…
1Password confirms attacker tried to pull list of admin users after Okta intrusion
Says logins are safe, as high-profile customers complain they knew about the breach before Okta 1Password is confirming it was attacked by cyber criminals after Okta was breached for the second time in as many years, but says customers’ login…
Element users are asking for protection against government encryption busting
NATO, United Nations, US DoD, and French government among its customer base Element, one of the companies behind decentralized comms platform Matrix, says customers are asking it to insert a protective clause from the encryption-busting element of UK government’s Online…