Category: The Register – Security

And that’s not counting the incoming lawsuits Rackspace’s costs from last year’s ransomware infection continue to mount: the cloud hosting biz told America’s financial watchdog, the SEC, its total expenses to date regarding that cyberattack have reached $12 million –…

Read more →

Wild idea: Maybe Microsoft could introduce a Quality Copilot to stop pushing broken patches Something likely to be absent from Microsoft’s Ignite event is talk of a fix rolled out to deal with malfunctioning Windows Server 2022 Virtual Machines following…

Read more →

Ads for Slack and Cisco AnyConnect actually downloaded Nitrogen malware Affiliates of the ALPHV/BlackCat ransomware-as-a-service operation are turning to malvertising campaigns to establish an initial foothold in their victims’ systems.… This article has been indexed from The Register – Security…

Read more →

First time hard figure given on recovery costs for January incident Royal Mail’s parent company has revealed for the first time the infrastructure costs associated with its January ransomware attack.… This article has been indexed from The Register – Security…

Read more →

Linked to org that UK authorities found once failed its anti-money-laundering obligations Swedish digital rights organization Qurium has discovered around 250 cloned websites and suggested they exist to drive people to China-linked gambling sites.… This article has been indexed from…

Read more →

Plus: Ransomware crooks file SEC complaint against victim The Clorox Company’s chief security officer has left her job in the wake of a corporate network breach that cost the manufacturer hundreds of millions of dollars.… This article has been indexed…

Read more →

Exploits come with caveats, but Google says no fixes as user security should do the heavy lifting here Novel weaknesses in Google Workspace have been exposed by researchers, with exploits potentially leading to ransomware attacks, data exfiltration, and password decryption.……

Read more →

War of words escalates as deadline draws near FBI director Christopher Wray made yet another impassioned plea to US lawmakers to kill a proposed warrant requirement for so-called “US person queries” of data collected via the Feds’ favorite snooping tool,…

Read more →

No matter what stage your security career is at, SANS has resources that will add to your knowledge Sponsored Post  Fighting cybercrime demands constant vigilance and can be a huge drain on time and resources. So it’s good to know…

Read more →

Trying times for incident responders who battle fastest-ever ransomware blitz as attackers keep scrubbing evidence clean Organizations are still failing to implement adequate logging measures, increasing the difficulty faced by defenders and incident responders to identify the cause of infosec…

Read more →

Plus: VMware closes critical hole, Adobe fixes a whopping 76 flaws Patch Tuesday  Heads up: Microsoft’s November Patch Tuesday includes fixes for about 60 vulnerabilities – including three that have already been found and abused in the wild.… This article…

Read more →

23K nodes earned operator more than $500K – and now perhaps jail time The FBI says it has dismantled another botnet and collared its operator, who admitted hijacking tens of thousands of machines around the world to create his network…

Read more →

Let’s do the CacheWarp again Boffins based in Germany and Austria have found a flaw in AMD’s SEV trusted execution environment that makes it less than trustworthy.… This article has been indexed from The Register – Security Read the original…

Read more →

Sapphire Rapids, Alder Lake, and Raptor Lake chip families treated for ‘Redundant Prefix’ Intel on Tuesday issued an out-of-band security update to address a privilege escalation vulnerability in recent server and personal computer chips.… This article has been indexed from…

Read more →

Royal alone scored $275M in past year as FBI, other agencies hot on merging trail The US’ Federal Bureau of Investigation (FBI) and Cybersecurity and Infrastructure Security Agency (CISA) have released fresh guidance on the Royal ransomware operation, saying that…

Read more →

Got a Confluence server? Listen up. Malware said to have wide-ranging capabilities A new backdoor was this week found implanted in the environments of organizations to exploit the recently disclosed critical vulnerability in Atlassian Confluence.… This article has been indexed…

Read more →

Emergency comms standard had five nasty flaws but will be opened to academic research A set of encryption algorithms used to secure emergency radio communications will enter the public domain after an about-face by the European Telecommunications Standards Institute (ETSI).……

Read more →

And the world’s getting more and more dangerous The UK’s National Cyber Security Centre (NCSC) has once again sounded its concern over the rising threat level to the nation’s critical national infrastructure (CNI).… This article has been indexed from The…

Read more →

University managment app also tracked library activity, holidays, and much more US-based research group IPVM has accused Chinese video surveillance equipment company Hikvision of engaging with a contract to develop technology that can identify Muslim students that are fasting during…

Read more →

OpenSSL, LibreSSL, OpenSSH users, don’t worry – you can sit this one out An academic study has shown how it’s possible for someone to snoop on certain devices’ SSH connections and, with a bit of luck, impersonate that equipment after…

Read more →

Plus: Chocolate Factory launches second lawsuit against false DMCA takedowns Google has sued three scammers for offering a fake download of its Bard AI chatbot that contained malware capable of stealing credentials for small business’ social media accounts.… This article…

Read more →

Zyxel zero days and nation-state actors (maybe) had a hand in the sector’s worst cybersecurity event on record Danish critical infrastructure faced the biggest online attack in the country’s history in May, according to SektorCERT, Denmark’s specialist organization for the…

Read more →

Genuinely new ideas are rare in IT – this superhero is ready to make a real difference Opinion  Cybersecurity has many supremely annoying aspects. It soaks up talent, time, and money like the English men’s football squad, and like that…

Read more →

ALSO: most Mainers are MOVEit victims, NY radiology firm fined for not updating kit, and some critical vulnerabilities Infosec in brief  After spending almost a year cleaning up after various security snafus, the UK’s Royal Mail has left an open…

Read more →

PLUS: Citrix quits China; Cambodia deports Japanese scammers; Chinese tech CEO disappears; and more Asia in brief  Australia’s National Cyber Security Coordinator has described an attack on logistics company DP World as a “nationally significant cyber incident.”… This article has…

Read more →

Aerospace titan pores over data to see if dump is legit The LockBit crew is claiming to have leaked all of the data it stole from Boeing late last month, after the passenger jet giant apparently refused to pay the…

Read more →

White hat bounty looks more like a beg bounty The founder of the Poloniex has offered to pay off thieves who drained an estimated $120 million of user funds from the cryptocurrency exchange in a raid on Friday.… This article…

Read more →

Ransomed.vc shuts after 20% discount fails to entice bids Short-lived ransomware outfit Ransomed.vc claims to have shut down for good after a number of suspected arrests.… This article has been indexed from The Register – Security Read the original article:…

Read more →

CitrixBleed patch has been available for around a month China’s largest bank, ICBC, was hit by ransomware that resulted in disruption of financial services (FS) systems on Thursday Beijing time, according to a notice on its website.… This article has…

Read more →

Billions of data-leaking processors sold despite warnings and patch just made them slower, punters complain Intel has been sued by a handful of PC buyers who claim the x86 goliath failed to act when informed five years ago about faulty…

Read more →

IT software slinger publishes fierce response to lawsuit brought last month SolarWinds has come out guns blazing to defend itself following the US Securities and Exchange Commission’s announcement that it will be suing both the IT software maker and its…

Read more →

Company publishes fierce response to lawsuit brought last month SolarWinds has come out guns blazing to defend itself following the Securities and Exchange Commission’s announcement that it will be suing both the company and its CISO over the 2020 SUNBURST…

Read more →

Second novel zero-day exploited by Lace Tempest this year offers notable demonstration of skill, especially for a ransomware affiliate The cybercriminals behind the rampant MOVEit exploits from earlier this year are making use a zero-day vulnerability in on-prem instances of…

Read more →

Online attack coincided with major military action, Mandiant says Blackouts in Ukraine last year were not just caused by missile strikes on the nation but also by a seemingly coordinated cyberattack on one of its power plants. That’s according to…

Read more →

Don’t worry, this half-baked Python script is for educational purposes onl-hahaha Infosec bods have detailed an underground cybersecurity tool dubbed Predator AI that not only can be used to compromise poorly secured cloud services and web apps, but has an…

Read more →

Strategies differ, though both have gaps that could hurt efficacy Microsoft and Meta have very different initiatives to combat misinformation in 2024, slated to be a busy election year all over the globe, but whether they’ll be effective is another…

Read more →

Attackers secure admin rights after vendor said they could only steal data Atlassian reassessed the severity rating of the recent improper authorization vulnerability in Confluence Data Center and Server, raising the CVSS score from 9.1 to a maximum of 10.……

Read more →

It’s the latest in a string of unusual wallet-draining attacks that began in April The Monero Project is admitting that one of its wallets was drained by an unknown source in September, losing the equivalent of around $437,000 at today’s…

Read more →

Ensuring data stays secure even after cyberattack infiltration Webinar  Daily incursions are underway with the aim of removing every bit of data that you’ve got – the cyber criminals’ aim is to break in and get out again laden with…

Read more →

EFF warns incoming rules may return web ‘to the dark ages of 2011’ Lawmakers in Europe are expected to adopt digital identity rules that civil society groups say will make the internet less secure and open up citizens to online…

Read more →

Admins have 90 days to opt out before MFA is deployed automatically Microsoft is introducing three Conditional Access policies for sysadmins as it continues to promote the implementation of multi-factor authentication (MFA) in organizations.… This article has been indexed from…

Read more →

Campaigners say proposals to reform laws are ‘dangerous’ and an attack on safety The UK government has set in train plans to introduce legislation requiring tech companies to let it know when they plan to introduce new security technologies and…

Read more →

Campaigners say proposals to reform laws are ‘dangerous’ and an attack on safety The UK government has set in train plans to introduce legislation requiring tech companies to let it know when they plan to introduce new security technologies and…

Read more →

Months of work reveals how this tricky malware family targets… the financial services sector A brand-new macOS malware strain from North Korean state-sponsored hackers has been spotted in the wild.… This article has been indexed from The Register – Security…

Read more →

18 months in the slammer no laughing matter, but the rest… maybe A 34-year-old woman has been jailed for 18 months after trying to use Rentahitman.com – no, really – to pay a contract killer to eliminate a rival she…

Read more →

Audit: Craptastic security could potentially put govt info in hands of enemies America’s immigration cops have pushed back against an official probe that concluded their lax mobile device security potentially put sensitive government information at risk of being stolen by…

Read more →

And that includes ransomware crims, claims US of alleged sanctions-buster A Russian woman the US accuses of being a career money launderer is the latest to be sanctioned by the country for her alleged role in moving hundreds of millions…

Read more →

Plus: CVSS 4.0 is here, this week’s critical vulns, and ‘incident’ hit loan broker promises no late fees. Generous Infosec in brief  Okta has confirmed details of its October breach, reporting that the incident led to the compromise of files…

Read more →

How Britvic outlawed security blind spots Webinar  Organisations in multiple industries often face risks which can severely impact their operational resilience. Cyber criminals like to use ransomware and vulnerable third-party connections to hijack operational technology (OT) systems which can stop…

Read more →

Taking selfie with ‘official sensitive’ doc wasn’t smartest idea, either A British court has sentenced a “corrupt” cop to almost four years behind bars for tipping off a friend that officers had compromised the EncroChat encrypted messaging app network.… This…

Read more →

Credit card numbers, security codes, SSNs, passwords, PINs? Yikes! Hilb Group has warned more than 81,000 people that around the start of 2023 criminals broke into the work email accounts of its employees and may have stolen a bunch of…

Read more →

Terrorist ideology suspected to be motivation A former software developer for Britain’s cyberspy agency is facing years in the slammer after being sentenced for stabbing a National Security Agency (NSA) official multiple times.… This article has been indexed from The…

Read more →

Secure Future Initiative needed in wake of tech evolution and unrelenting ransomware criminality Microsoft has made fresh commitments to harden the security of its software and cloud services after a year in which numerous members of the global infosec community…

Read more →

‘High-pressure’ sales tactics targeted people registered with Telephone Preference Service A “debt management company” is itself facing a bill from Britain’s data regulator for sending hundreds of thousands of text messages to households that opted not to receive marketing junk…

Read more →

Jury took just four hours to reach guilty verdicts Sam Bankman-Fried, the founder and former CEO of crypto exchange FTX and trading firm Alameda Research, has been found guilty of seven criminal charges.… This article has been indexed from The…

Read more →

Industry facing burnout scare as workplace issues snowball The proportion of cybersecurity professionals reporting low “happiness ratings” has risen sharply over the last 12 months, raising concerns about increasing burnout rates in the industry.… This article has been indexed from…

Read more →

Over a week later and barely any patches for the 10/10 vulnerability have been applied Security researchers have confirmed that ransomware criminals are capitalizing on a maximum-severity vulnerability in Apache ActiveMQ.… This article has been indexed from The Register –…

Read more →

The hits keep on coming for troubled ID management biz Okta has sent out breach notifications to almost 5,000 employees, warning them that miscreants breached one of its third-party vendors and stole a file containing staff names, social security numbers,…

Read more →

Won’t say if it’s LockBit, but LockBit appears to have claimed credit. Maybe payment, too Boeing has acknowledged a cyber incident just days after ransomware gang LockBit reportedly exfiltrated sensitive data from the aerospace defence contractor.… This article has been…

Read more →

Of course, he would say that, wouldn’t he? As the expiration date for the Feds’ Section 702 surveillance powers draws closer, FBI Director Christopher Wray has warned a US Senate committee that his agents may not be able to stop…

Read more →

Advarra probes intrusion claims, says ‘the matter is contained’ Ransomware crooks claim they’ve stolen data from a firm that helps other organizations run medical trials after one of its executives had their cellphone number and accounts hijacked.… This article has…

Read more →

Middle Kingdom or self-immolation – there are a couple of theories The Mozi botnet has all but disappeared according to security folks who first noticed the prolific network’s slowdown and then uncovered a kill switch for the IoT system. But…

Read more →

Parts sent to Moscow allegedly found on Ukrainian battlefields Three Russian nationals were arrested in New York yesterday on charges of moving electronics components worth millions to sanctioned entities in Russia, pieces of which were later recovered on battlefields in…

Read more →

Full extent of attacks unknown but telecoms thought to be especially exposed Vulnerabilities in F5’s BIG-IP suite are already being exploited after proof of concept (PoC) code began circulating online.… This article has been indexed from The Register – Security…

Read more →

Neither Excel nor PowerPoint safe as baddies continue to find ways around protections Cybercriminals are once again abusing macro-enabled Excel add-in (XLL) files in malware attacks at a vastly increased rate, according to new research.… This article has been indexed…

Read more →

RansomedVC owner takes to Telegram to flog criminal enterprise The short-lived RansomedVC ransomware operation is being shopped around by its owner, who is claiming to offer a 20 percent discount just a day after first listing it for sale.… This…

Read more →

Learn how Britvic eliminates blind spots in Operational Technology systems Webinar  Cyberattacks on industrial control systems are becoming more common, and there isn’t likely to be a let up any time soon.… This article has been indexed from The Register…

Read more →

Nobody knows which state, but India’s government never quite shrugged off claims it uses spyware Indian politicians and media figures have reported that Apple has warned them their accounts may be under attack by state-sponsored actors.… This article has been…

Read more →

‘We’re still in the final throes of getting every last member to sign’ Top White House officials are working to secure an agreement between almost 50 countries to not pay ransom demands to cybercriminals as the international Counter Ransomware Initiative…

Read more →

At least two extortion gangs abusing CVE-2023-4966, we’re told Citrix Bleed, the critical information-disclosure bug that affects NetScaler ADC and NetScaler Gateway, is now under “mass exploitation,” as thousands of Citrix NetScaler instances remain vulnerable, according to security teams.… This…

Read more →

US unlikely to get a bite of them at this rate, though For a period of two years between September 2019 and September 2021, two Americans and two Russians allegedly compromising the taxi dispatch system at John F. Kennedy International…

Read more →

US outfit scrambles to repair operations, restore processing of online orders Ace Hardware appears to have been the latest organization to succumb to a cyberattack, judging by its website and a message from CEO John Venhuizen.… This article has been…

Read more →

Follows similar efforts from the SEC and DHS in recent months The US has approved mandatory data breach reporting requirements that impose a 30-day deadline for non-banking financial organizations to report incidents.… This article has been indexed from The Register…

Read more →

Internet, phone lines, websites, and more went down on Saturday morning The British Library has confirmed to The Register that a “cyber incident” is the cause of a “major” multi-day IT outage.… This article has been indexed from The Register…

Read more →

‘No question’ it will solve more crimes, Tory MP claims A UK minister for policing has called for forces to double their use of algorithmic-assisted facial recognition in a bid to snare more criminals.… This article has been indexed from…

Read more →

If you’re in the EU, EEA, or Switzerland From November, it will be possible to pay Meta to stop shoveling ads in your Instagram or Facebook feeds and slurping your data for marketing purposes so long as you live in…

Read more →

Risk of ‘significant data loss’ for on-prem customers Atlassian has told customers they “must take immediate action” to address a newly discovered flaw in its Confluence collaboration tool.… This article has been indexed from The Register – Security Read the…

Read more →

Not old enough to legally buy a beer, old enough for a 30-month term A 20-year-old Florida man has been sentenced to 30 months behind bars for his role in a SIM-swapping ring that stole nearly $1 million in cryptocurrency…

Read more →

Just tricks, no treats with these 3 vulns Three unpatched high-severity bugs in the NGINX ingress controller can be abused by miscreants to steal credentials and other secrets from Kubernetes clusters. … This article has been indexed from The Register –…

Read more →

Researchers just scratching surface of their understanding of campaign dating back to 2020 Security researchers have uncovered a multi-year cryptojacking campaign they claim autonomously clones GitHub repositories and steals their exposed AWS credentials.… This article has been indexed from The…

Read more →

This marks the third criminal intrusion at the institution in as many years Stanford University has confirmed it is “investigating a cybersecurity incident” after an attack last week by the Akira ransomware group.… This article has been indexed from The…

Read more →

ALSO: CISA begs for a consistent budget, Las Vegas school breach; Nigeria arrests six cyber princes, the week’s critical vulnerabilities Security In Brief  Notorious ransomware gang LockBit has reportedly exfiltrated “a tremendous amount of sensitive data from aerospace outfit Boeing.……

Read more →

Not exactly the MAC daddy Three years after Apple introduced a menu setting called Private Wi-Fi Address, a way to spoof network identifiers called MAC addresses, the privacy protection may finally work as advertised, thanks to a software fix.… This…

Read more →

Fixes came earlier than scheduled as vulnerability became known to outsiders F5 has issued a fix for a remote code execution (RCE) bug in its BIG-IP suite carrying a near-maximum severity score.… This article has been indexed from The Register…

Read more →

Gang thought to be behind attack on MGM Resorts has a skillset larger than most cybercrime groups in existence Microsoft’s latest report on “one of the most dangerous financial criminal groups” operating offers security pros an abundance of threat intelligence…

Read more →

It’s now up to Ofcom to sort out this messy legislation With the assent of King Charles, the United Kingdom’s Online Safety Act has become law, one that the British government says will “make the UK the safest place in…

Read more →