Tag: The Register – Security

At this point you might be better just shutting the stuff down All manner of miscreants are piling onto the latest Ivanti flaw, a server-side request forgery (SSRF) vulnerability tracked as CVE-2024-21893, according to threat hunters tracking the string of…

Read more →

What is on HHS paper will most likely become law, Google security boss says Interview  If you are responsible for infosec at a US hospital or other healthcare organization, and you treat the government’s new “voluntary” cybersecurity performance goals (CPGs)…

Read more →

Horse, meet stable door AnyDesk has copped to an IT security “incident” in which criminals broke into the remote-desktop software maker’s production systems. The biz has told customers to expect disruption as it attempts to lock down its infrastructure.… This…

Read more →

It’s the second Chicago hospital to disclose a major incident in the same week For the second time in one week, cybercriminals have targeted a Chicago children’s hospital, this time causing significant operational disruption.… This article has been indexed from…

Read more →

PLUS: more glibc vulns discovered; DraftKings hacker sentenced; and a hefty dose of critical vulnerabilities Infosec In Brief  The recent indictment of a massive SIM-swapping ring may mean convicted crypto conman Sam Bankman-Fried is innocent of at least one allegation…

Read more →

The closest thing we may ever get to a real-life Die Hard 2 scenario Criminals could remotely tamper with the data that apps used by airplane pilots rely on to inform safe takeoff and landing procedures, according to fresh research.……

Read more →

Cloud software slinger admits no guilt, promises better basic security hygiene Blackbaud, which had data on millions of people stolen from it by one or more crooks, has promised to shore up its IT defenses in a proposed deal with…

Read more →

Danger of remote account takeovers leaves lead devs scared of releasing many details Mastodon has called admins to action following the disclosure of a critical vulnerability affecting the decentralized social network favored by erstwhile Twitter lovers.… This article has been…

Read more →

Efforts part of internationally coordinated operations carried out in recent months Interpol has arrested 31 people following a three-month operation to stamp out various types of cybercrime.… This article has been indexed from The Register – Security Read the original…

Read more →

‘Vault 7’ leak detailed cyber-ops including forged digital certs Joshua Schulte, a former CIA employee and software engineer accused of sharing material with WikiLeaks, was sentenced to 40 years in prison by the US Southern District of New York on…

Read more →

How F5 Distributed Cloud Services seal security gaps in modern app development amid growing attack surface Partner Content  Application programming interfaces (APIs) play a significant role in today’s digital economy, but at the same time they can also represent a…

Read more →

Atlassian systen compromised via October Okta intrusion Cloudflare has just detailed how suspected government spies gained access to its internal Atlassian installation using credentials stolen via a security breach at Okta in October.… This article has been indexed from The…

Read more →

Senate, House can try but won’t make it past the Prez, says White House The Biden administration has expressed to congressional representatives its strong opposition to undoing the Securities and Exchange Commission’s (SEC) strict data breach reporting rule.… This article…

Read more →

Defenses need a rethink in face of increasing sophistication Cyber attacks using AI-generated deepfakes to bypass facial biometrics security will lead a third of organizations to doubt the adequacy of identity verification and authentication tools as standalone protections.… This article…

Read more →

Senate, House can try but won’t make it past the Prez, says White House The Biden administration has expressed to congressional representatives its strong opposition to undoing the Securities and Exchange Commission’s (SEC) strict data breach reporting rule.… This article…

Read more →

It even had the gall to set the ransom demand at $800K … for a nonprofit Ransomware gang LockBit is claiming responsibility for an attack on a Chicago children’s hospital in an apparent deviation from its previous policy of not…

Read more →

American public are way ahead of them Chinese attackers are preparing to “wreak havoc” on American infrastructure and “cause societal chaos” in the US, infosec, and law enforcement bosses told a US House committee on Wednesday.… This article has been…

Read more →

It’s almost like years of false assurances have made people realize payments are pointless Trusting a ransomware crew to honor a deal isn’t the greatest idea, and the world seems to be waking up to that. The number of victims…

Read more →

Remotely disinfects Cisco and Netgear routers to block Chinese critters China’s Volt Typhoon attackers used “hundreds” of outdated Cisco and NetGear routers infected with malware in an attempt to break into US critical infrastructure facilities, according to the Justice Department.……

Read more →

Evidence mounts of an exploit gatekept within Russia’s borders Security researchers believe the Akira ransomware group could be exploiting a nearly four-year-old Cisco vulnerability and using it as an entry point into organizations’ systems.… This article has been indexed from…

Read more →