Tag: The Register – Security

Spammers will probably bid to buy it, so community is trying to find a better home for decades-old service Exclusive  The Spam and Open Relay Blocking System (SORBS) – a longstanding source of info on known sources of spam widely…

Read more →

You upgraded when this was fixed in April, right? Right?? If you haven’t yet upgraded to version 1.3.0 of Apache HugeGraph, now’s a good time because at least two proof-of-concept exploits for a CVSS 9.8-rated remote command execution bug in…

Read more →

The bad news? Gang wasn’t deleting victim data after payments LockBit victims who are still trying to clean up their encrypted files are in luck: the FBI has a big set of decryption keys it would love to let you…

Read more →

Funds are currently seized after being sent to offshore accounts The US Justice Department is seeking permission to recover more than $5 million worth of funds stolen from a trade union by business email compromise (BEC) scammers.… This article has…

Read more →

Time to get moving if you still rely on this deprecated feature Microsoft has finally decided to add the venerable NTLM authentication protocol to the Deprecated Features list.… This article has been indexed from The Register – Security Read the…

Read more →

Experts say Big Red will probably re-release patch in an upcoming cycle A seven-year-old Oracle vulnerability is the latest to be added to CISA’s Known Exploited Vulnerability (KEV) catalog, meaning the security agency considers it a significant threat to federal…

Read more →

As tool emerges to probe OS feature’s SQLite-based store of user activities Asked to explore the data privacy issues arising from Microsoft Recall, the Windows maker’s poorly received self-surveillance tool, Jaime Teevan, chief scientist and technical fellow at Microsoft Research,…

Read more →

Beware of zero-click malware sliding into your DMs Miscreants exploited a zero-day in TikTok to compromised the accounts of CNN and other big names. The app maker has confirmed there was a cyberattack, and that it has scrambled to secure…

Read more →

Malware code potentially sold off, tweaked, back at it infecting victims RansomHub, a newish cyber-crime operation that has claimed to be behind the theft of data from Christie’s auction house and others, is “very likely” some kind of rebrand of…

Read more →

Same folks, different faces RansomHub, a newish cyber-crime operation that has claimed to be behind the theft of data from Christie’s auction house and others, is “very likely” some kind of rebrand of the Knight ransomware gang, according to threat…

Read more →

That backdoor’s not meant to be there? Zyxel just released security fixes for two of its obsolete network-attached storage (NAS) devices after an intern at a security vendor reported critical flaws months ago.… This article has been indexed from The…

Read more →

Public officials allegedly bribed to allow extradition-dodging travel Four arrests were made this week as part of an international probe into two overlapping corruption schemes that allowed cybercrims on INTERPOL watch lists to travel freely without flagging any alerts.… This…

Read more →

Let customers interfere with other tenants? That’s our cloud working by design, Redmond seems to say A vulnerability — or just Azure working as intended, depending on who you ask — in Microsoft’s cloud potentially allows miscreants to wave away…

Read more →

In the Navy, no, you cannot have an unauthorized WLAN. In the Navy, no, that’s not a good plan The US Navy has cracked down on an illicit Wi-Fi network installed on a combat ship by demoting the command senior…

Read more →

Meanwhile Mr Smith goes to Washington to testify before Congress The Pentagon is “doubling down” on its investment in Microsoft products despite the serious failings at the IT giant that put America’s national security at risk, say two US senators.……

Read more →

Pathology lab provider targeted, affecting blood transfusions and surgeries Hospitals in London are struggling to deliver pathology services after a ransomware attack at a service partner downed some key systems.… This article has been indexed from The Register – Security…

Read more →

Experts say auctioning the auctioneer’s data is unlikely to have been genuinely successful The cybercrims who claimed the attack on Christie’s fancy themselves as auctioneers as well, after they allegedly sold off the company’s data to the highest bidder instead…

Read more →

Privacy group seeks clarification of whether EU data protection law has been breached A privacy campaign group with a strong record in legal upheavals has asked the Austrian data protection authority to investigate Microsoft 365 Education to clarify if it…

Read more →

Some of the biggest names in the game are hopping on the trend Malware miscreants are increasingly showing a penchant for abusing legitimate, commercial packer apps to evade detection.… This article has been indexed from The Register – Security Read…

Read more →

Cloud storage giant lawyers up against infosec house Analysis  Hudson Rock, citing legal pressure from Snowflake, has removed its online report that claimed miscreants broke into the cloud storage and analytics giant’s underlying systems and stole data from potentially hundreds…

Read more →