Tag: The Register – Security

Vendor insists passkeys are the future, but getting workers on board is proving difficult Infosec pros are losing confidence in their identity providers’ ability to keep attackers out, with Cisco-owned Duo warning that the industry is facing what it calls…

Read more →

Securing internet infrastructure remains a challenging endeavour Systems Approach  I’ve been working on a chapter about infrastructure security for our network security book.… This article has been indexed from The Register – Security Read the original article: BGP’s security problems…

Read more →

Suspects this was Beijing-backed Typhoon and/or Panda crew targeting diplomats in Asia Google has warned customers of a suspected state-backed attack after observing a web traffic hijacking campaign.… This article has been indexed from The Register – Security Read the…

Read more →

Oh, look, a use case for OpenAI’s gpt-oss-20b model ESET malware researchers Anton Cherepanov and Peter Strycek have discovered what they describe as the “first known AI-powered ransomware,” which they named PromptLock. … This article has been indexed from The Register…

Read more →

From hardware security chips and trusted execution pipelines to open source Root of Trust modules Hot Chips  Microsoft is one of the biggest names in cybersecurity, but it has a less-than-stellar track record in the department. Given its reputation, Redmond…

Read more →

‘Many dozens’ targeted in ongoing campaign, CheckPoint researcher tells The Reg Cybercriminals are targeting critical US manufacturers and supply-chain companies, looking to steal sensitive IP and other data while deploying ransomware. Their attack involves a novel twist on phishing —…

Read more →

Remember that cost-cutting group once led by Elon Musk? Federal employees are still dealing with it A Social Security Administration employee has filed a whistleblower complaint alleging that Donald Trump’s DOGE cost-cutting unit has put the records of every single…

Read more →

Criminals already abusing its latest zero-days Citrix has pushed out fixes for three fresh NetScaler holes – and yes, they’ve already been used in the wild before the vendor got around to patching.… This article has been indexed from The…

Read more →

Remy Ra St Felix led a vicious international crime ring A violent home invader and gunpoint cryptocurrency thief will now spend more than 50 years behind bars after being found guilty of assaulting a witness.… This article has been indexed…

Read more →

Crims raided third-party systems and lifted personal data, including license numbers and partial SSNs US insurance giant Farmers Insurance says more than a million customers had personal data nicked after a third-party vendor was compromised.… This article has been indexed…

Read more →

Everything’s fine, the ad slinger assures us Cloud security vendor Zscaler says customers of Google’s Play Store have downloaded more than 19 million instances of malware-laden apps that evaded the web giant’s security scans.… This article has been indexed from…

Read more →

PLUS: India bans ‘money’ games; SK Hynix cranks out 321-layer SSDs; Fastly re-thinking CDNs for Asia; and more! Asia In Brief  Australia’s University of Melbourne last year used Wi-Fi location data to identify student protestors.… This article has been indexed…

Read more →

PLUS: Comet AI browser fooled; Microsoft sets sail for quantum safety; Sailor sent down for espionage Infosec in brief  PLUS… This article has been indexed from The Register – Security Read the original article: AWS, Cloudflare, Digital Ocean, and Google…

Read more →

For incentives remember the three Fs – finance, fame, and fixing it feature  Thirty years ago, Netscape kicked off the first commercial bug bounty program. Since then, companies large and small have bought into the idea, with mixed results.… This…

Read more →

Amazon, Apple, Google, and Microsoft among major customers Data I/O, a major electronics manufacturer whose customers include Amazon, Apple, Google, and Microsoft, notified federal regulators that it fell victim to a ransomware infection on August 16 that continues to disrupt…

Read more →

Health details, tax ID numbers, even images of checks were stolen, reportedly by the Interlock gang Ransomware scum breached kidney dialysis firm Davita’s labs database in April and stole about 2.4 million people’s personal and health-related information.… This article has…

Read more →

ClickFix tricks Microsoft’s security team has published an in-depth report into ClickFix, the social engineering attack which tricks users into executing malicious commands in the guise of proving their humanity.… This article has been indexed from The Register – Security…

Read more →

The attack first affected an upstream provider of bespoke software Exclusive  A leading UK provider of criminal record checks for employers is handling a data breach stemming from a third-party development company.… This article has been indexed from The Register…

Read more →

Crypto mines, BEC scams, fake passports, and a $300M fraud empire allegedly brought down during Serengeti 2.0 Interpol’s latest clampdown on cybercrime resulted in 1,209 arrests across the African continent, from ransomware crooks to business email compromise (BEC) scammers, the…

Read more →

Pro tip: When taking revenge, don’t use your real name A US court sentenced a former developer at power management biz Eaton to four years in prison after he installed malware on the company’s servers.… This article has been indexed…

Read more →