Russia spying on foreign embassies? Say it ain’t so Russian cyberspies are abusing local internet service providers’ networks to target foreign embassies in Moscow and collect intel from diplomats’ devices, according to a Microsoft Threat Intelligence warning.… This article has…
Category: The Register – Security
Silk Typhoon spun a web of patents for offensive cyber tools, report says
US court docs reveal that infamous Chinese snoops filed IP papers like tax returns Security researchers have uncovered more than a dozen patents for offensive cybersecurity tools filed by Chinese companies allegedly tied to Beijing’s Silk Typhoon espionage crew.… This…
Brit watchdog pushes to rein in Microsoft and AWS with ‘strategic market status’
Regulators around the globe pay attention as results of 21-month cloud probe published Britain’s competition regulator says Microsoft and AWS are using their dominance to harm UK cloud customers and proposes to designate both with strategic market status (SMS) to…
NHS disability equipment provider on brink of collapse a year after cyberattack
Government officials say they are monitoring the situation A major supplier of healthcare equipment to the UK’s National Health Service and local councils is on the verge of collapse 16 months after falling victim to cyber criminals.… This article has…
Banning VPNs to protect kids? Good luck with that
UK’s Online Safety Act kicks off about as well as everyone expected Analysis With the UK’s Online Safety Act (OSA) now in effect, it was only a matter of time before tech-savvy under-18s figured out how to bypass the rules…
Internet exchange points are ignored, vulnerable, and absent from infrastructure protection plans
Italian operator calls for lawmakers to wake up to the critical role played by peering Internet Exchange Points are an underappreciated resource that all internet users rely on, but governments have unfortunately ignored them, despite their status as critical infrastructure.……
Lethal Cambodia-Thailand border clash linked to cyber-scam slave camps
Infosec issues spill into the real world and regional politics Analysis Thai and Cambodian tensions relating to issues including cybersecurity concerns boiled over into a kinetic skirmish at the border last week.… This article has been indexed from The Register…
The TSA likes facial recognition at airports. Passengers and politicians, not so much
Few passengers are told they can opt out, and when they do, airport staff may push back US lawmakers are trying to extend the use of facial recognition at airports, despite many airline passengers objecting to the practice.… This article…
Enterprises neglect AI security – and attackers have noticed
IBM report shows a rush to embrace technology without safeguarding it, and as for governance… Organizations rushing to implement AI are neglecting security and governance, IBM claims, with attackers already taking advantage of lax protocols to target models and applications.……
Minnesota governor calls in the troops after St Paul cyberattack
‘This was a deliberate, coordinated, digital attack’ Minnesota Governor Tim Walz has activated the state’s National Guard and declared a state of emergency in response to a cyberattack on the city of Saint Paul.… This article has been indexed from…
Users left scrambling for a plan B as Dropbox drops Dropbox Passwords
Read-only in weeks, deleted forever in months Dropbox has given users of its password manager until the end of October to extract their data before pulling the plug on the service.… This article has been indexed from The Register –…
Palo Alto Networks inks $25b deal to buy identity-security shop CyberArk
The lure? Identity security and privileged access management tools to verify humans and… machines Palo Alto Networks will buy Israeli security biz CyberArk in a $25 billion cash-and-stock deal confirmed today.… This article has been indexed from The Register –…
Ransomware gang sets deadline to leak 3.5 TB of Ingram Micro data
Distie insists global operations restored despite some websites only now coming back online The cybercriminals claiming responsibility for Ingram Micro’s ransomware attack put a deadline on leaking its data nearly a month after the raid.… This article has been indexed…
CISA caves to Wyden, agrees to release US telco insecurity report – but won’t say when
The security nerds’ equivalent of the Epstein files saga The US Cybersecurity and Infrastructure Security Agency on Tuesday finally agreed to make public an unclassified report from 2022 about American telecommunications networks’ poor security practices.… This article has been indexed…
FBI: Watch out for these signs Scattered Spider is spinning its web around your org
New malware, even better social engineering chops The FBI and a host of international cyber and law enforcement agencies on Tuesday warned that Scattered Spider extortionists have changed their tactics and are now breaking into victims’ networks using savvier social…
Raspberry Pi RP2350 A4 update fixes old bugs and dares you to break it again
5 V-tolerant GPIO opens the way to some intriguing retro-nerdery The Raspberry Pi team has released an update to the RP2350 microcontroller with bug fixes, hardening, and a GPIO tweak that will delight retro hardware enthusiasts.… This article has been…
War Games: MoD asks soldiers with 1337 skillz to compete in esports
Troopers to swap radios for Turtle Beaches in preparation for ‘21st century challenges’ The UK’s Ministry of Defence (MoD) is doubling down on its endorsement of esports by tasking the British Esports Federation to establish a new tournament to upskill…
Microsoft spotlights Apple bug patched in March as SharePoint exploits continue
Look over there! Amidst its own failure to fix a couple of bugs now under mass exploitation and being abused for espionage, data theft, and ransomware infections, Microsoft said Monday that it spotted a macOS vulnerability some months ago that…
Security pros are drowning in threat-intel data and it’s making everything more dangerous
Plus, 60% don’t have enough analysts to make sense of it Too many threats, too much data, and too few skilled security analysts are making companies more vulnerable to cyberattacks, according to the IT and security leaders tasked with protecting…
Majority of 1.4M customers caught in Allianz Life data heist
No word on who’s behind it, but attack has hallmarks of the usual suspects Financial services biz Allianz says the majority of customers of one of its North American subsidiaries had their data stolen in a cyberattack.… This article has…