Tag: The Register – Security

Tardy IT admins likely to get a chilly reception over the lack of updates CISA has released details about a federal agency that recently had at least two public-facing servers compromised by attackers exploiting a critical Adobe ColdFusion vulnerability.… This…

Read more →

To maintain a strong data security posture, you must protect the data where it lives Partner Content  There are plenty of technology acronyms in the alphabet soup of the cybersecurity industry, but DSPM is the latest one leading the charge;…

Read more →

Accounting software firm Tipalti says it’s investigating alleged break-in of its systems The AlphV/BlackCat ransomware group said it plans to “go direct” to the clients of a firm it allegedly attacked to extort them, claiming to have infiltrated the systems…

Read more →

Won’t somebody think of the children? The UK’s communications regulator has laid out guidance on how online services might perform age checks as part of the Online Safety Act.… This article has been indexed from The Register – Security Read…

Read more →

Report suggests Sellafield compromised since 2015, response seems worryingly ignorant of Stuxnet The government of the United Kingdom has issued a strongly worded denial of a report that the Sellafield nuclear complex has been compromised by malware for years.… This…

Read more →

There’s a war on and critical infrastructure operators are still using default passwords Iran-linked cyber thugs have exploited Israeli-made programmable logic controllers (PLCs) used in “multiple” water systems and other operational technology environments at facilities across the US, according to…

Read more →

Stealing Kit Kat maker’s data?! Give me a break There’s no sugarcoating this news: The Hershey Company has disclosed cyber crooks gobbled up 2,214 people’s financial information following a phishing campaign that netted the chocolate maker’s data.… This article has…

Read more →

Version 2.2.2 and also 2.1.14, showing that this wasn’t a new issue in the latest release The bug that was very occasionally corrupting data on file copies in OpenZFS 2.2.0 has been identified and fixed, and there’s a fix for…

Read more →

With more than 1,500 tokens exposed, research highlights importance of securing supply chains in AI and ML The API tokens of tech giants Meta, Microsoft, Google, VMware, and more have been found exposed on Hugging Face, opening them up to…

Read more →

Ongoing investigation found evidence of stolen employee creds and social engineering Nine days after issuing a vaguely worded warning about a possible cyber security incident, web tracking and analytics outfit New Relic has revealed a two-front attack.… This article has…

Read more →

PLUS: Montana TikTok ban ruled unconstitutional; Dollar Tree employee data stolen; critical vulnerabilities Infosec in brief  The European Union’s Parliament and Council have reached an agreement on the Cyber Resilience Act (CRA), setting the long-awaited security regulation on a path…

Read more →

Supply chain attacks: The gift that keeps on giving A ransomware infection at a cloud IT provider has disrupted services for 60 or so credit unions across the US, all of which were relying on the attacked vendor. … This article…

Read more →

Supply chain attacks: The gift that keeps on giving A ransomware infection at a cloud IT provider has disrupted services for 60 or so credit unions across the US, all of which were relying on the attacked vendor. … This article…

Read more →

Two CVEs can be abused to steal sensitive info or execute code Apple has issued emergency fixes to plug security flaws in iPhones, iPads, and Macs that may already be under attack.… This article has been indexed from The Register…

Read more →

Exploits bypass most secure boot solutions from the biggest chip vendors Hundreds of consumer and enterprise devices are potentially vulnerable to bootkit exploits through unsecured BIOS image parsers.… This article has been indexed from The Register – Security Read the…

Read more →

Hunt continues for the other elusive high-ranking members Another member of the Trickbot malware crew now faces a lengthy prison sentence amid US law enforcement’s ongoing search for its leading members.… This article has been indexed from The Register –…

Read more →

Scottish health group to tweak security checks, access authorization to avoid a repeat NHS Fife is on the wrong end of a stern ticking off by Britain’s data regulator after it made a howling privacy error that aided an as…

Read more →

Global database of faces and fingerprints proves its worth European police have for the first time made an arrest after remotely checking Interpol’s trove of biometric data to identify a suspected smuggler.… This article has been indexed from The Register…

Read more →

Zuck boots propagandists, Big G finds surge of action directed at Taiwan Meta and Google have disclosed what they allege are offensive cyber ops conducted by China.… This article has been indexed from The Register – Security Read the original…

Read more →

Plus: 3 critical CVEs in Zyxel NAS devices Google has rolled out six Chrome security fixes including one emergency patch for a bug for which exploit code is already out there. You’re encouraged to thus grab the latest updates for…

Read more →