How to spot a North Korean agent before they get comfy inside payroll
Mandiant publishes cheat sheet for weeding out fraudulent IT staff
Cyber-crime24 Sep 2024 | 19
Security
A data leak and a data breach
How to protect personal data
Partner Content
Some US Kaspersky customers find their security software replaced by 'UltraAV'
Back story to replacement for banned security app isn't enormously reassuring
Security24 Sep 2024 | 38
Telegram will now hand over IP addresses, phone numbers of suspects to cops
Maybe a spell in a French cell changed Durov's mind
Personal Tech23 Sep 2024 | 36
'Cybersecurity issue' takes MoneyGram offline for three days – and counting
Still no ‘R’ word, but smells like ransomware from here
Cyber-crime23 Sep 2024 | 6
Necro malware continues to haunt side-loaders of dodgy Android mods
Updated 11M devices exposed to trojan, Kaspersky says
Cyber-crime23 Sep 2024 | 2
US proposes ban on Chinese, Russian connected car tech over security fears
No room for your spy mobiles on our streets
Software23 Sep 2024 | 28
So how's Microsoft's Secure Future Initiative going?
34,000 engineers pledged to the cause, but no word on exec pay
Security23 Sep 2024 | 7
UPS supplier's password policy flip-flops from unlimited, to 32, then 64 characters
That 'third party' person sure is responsible for a lot of IT blunders, eh?
Security23 Sep 2024 | 38
Move over, Cobalt Strike. Splinter’s the new post-exploit menace in town
No malware crew linked to this latest red-teaming tool yet
Research23 Sep 2024 |
Apple's latest macOS release is breaking security software, network connections
Infosec In Brief PLUS: Payer of $75M ransom reportedly identified; Craigslist founder becomes security philanthropist, and more
Security23 Sep 2024 | 22
US indicts two over socially engineered $230M+ crypto heist
Just one victim milked of nearly a quarter of a billion bucks
Cyber-crime20 Sep 2024 | 26
Ivanti patches exploited admin command execution flaw
Fears over chained attacks affecting EOL product
Patches20 Sep 2024 | 8
Cybercrooks strut away with haute couture Harvey Nichols data
Nothing high-end about the sparsely detailed, poorly publicized breach
Cyber-crime20 Sep 2024 | 10
CISA boss: Makers of insecure software must stop enabling today's cyber villains
Write better code, urges Jen Easterly. And while you're at it, give crime gangs horrible names like 'Evil Ferret'
Software20 Sep 2024 | 93
Valencia Ransomware explodes on the scene, claims California city, fashion giant, more as victims
Boasts 'appear to be credible' experts tell El Reg
Cyber-crime19 Sep 2024 | 7
No way? Big Tech's 'lucrative surveillance' of everyone is terrible for privacy, freedom
Says Lina Khan in latest push to rein in Meta, Google, Amazon and pals
Personal Tech19 Sep 2024 | 26
Iran's cyber-goons emailed stolen Trump info to Team Biden – which ignored them
To be fair, Joe was probably taking a nap
Cyber-crime19 Sep 2024 | 50
1 in 10 orgs dumping their security vendors after CrowdStrike outage
Many left reeling from July's IT meltdown, but not to worry, it was all unavoidable
Security19 Sep 2024 | 8
Thousands of orgs at risk of knowledge base data leaks via ServiceNow misconfigurations
Updated Better check your widgets, people
Research19 Sep 2024 | 7
UK activists targeted with Pegasus spyware ask police to charge NSO Group
4 file complaint with London's Met, alleging malware maker helped autocratic states violate their privacy
Security19 Sep 2024 | 13
Tor insists its network is safe after German cops convict CSAM dark-web admin
Outdated software blamed for cracks in the armor
Cyber-crime19 Sep 2024 | 25
FBI boss says China 'burned down' 260,000-device botnet when confronted by Feds
Plus: Wray tells how bureau helps certain victims negotiate with ransomware crooks
Cyber-crime18 Sep 2024 | 22
Deja blues... LockBit boasts once again of ransoming IRS-authorized eFile.com
Add 'ransomware' to the list of certainties in life?
Cyber-crime18 Sep 2024 | 1
Putin really wants Trump back in the White House
US govt, Microsoft report on Kremlin trolls' latest antics to Make America Grate Again
Research18 Sep 2024 | 268
Lebanon now hit with deadly walkie-talkie blasts as Israel declares ‘new phase’ of war
Updated Second wave of exploding gear kills at least 14 today
Security18 Sep 2024 | 185
Chinese spies spent months inside aerospace engineering firm's network via legacy IT
Exclusive Getting sloppy, Xi
CSO18 Sep 2024 | 32
Cops across the world arrest 51 in orchestrated takedown of Ghost crime platform
Italian mafia mobsters and Irish crime families scuppered by international cops
Cyber-crime18 Sep 2024 | 18
Despite Russia warnings, Western critical infrastructure remains unprepared
Feature 'Lives will be lost' as Moscow ramps up offensive cyber military units
Cyber-crime18 Sep 2024 | 29
Australian Police conducted supply chain attack on criminal collaborationware
Sting led to cuffing of alleged operator behind Ghost – an app for drug trafficking, money laundering, and violence-as-a-service
Cyber-crime18 Sep 2024 | 9
WhatsApp still working on making View Once chats actually disappear for all
Updated So far it's more like View Forever
Patches18 Sep 2024 | 16
VMware patches remote make-me-root holes in vCenter Server, Cloud Foundation
Bug reports made in China
Virtualization17 Sep 2024 | 1
Google Cloud Document AI flaw (still) allows data theft despite bounty payout
Updated Chocolate Factory downgrades risk, citing the need for attacker access
Security17 Sep 2024 |
Lebanon: At least nine dead, thousands hurt after Hezbollah pagers explode
Eight-year-old among those slain, Israel blamed, Iran's Lebanese ambassador wounded, it's said
Security17 Sep 2024 | 189
Rhysida ransomware gang ships off Port of Seattle data for $6M
Auction acts as payback after authority publicly refuses to pay up
Cyber-crime17 Sep 2024 | 2
Predator spyware kingpins added to US sanctions list
Designations come as new infrastructure spins up in Africa
Security17 Sep 2024 | 2
China claims Starlink signals can reveal stealth aircraft – and what that really means
If this really was that useful, they wouldn't be telling us
Security17 Sep 2024 | 98
Chinese national accused by Feds of spear-phishing for NASA, military source code
May have reeled in blueprints related to weapons development
Cyber-crime17 Sep 2024 | 6
Microsoft confirms IE bug squashed in Patch Tuesday was exploited zero-day
Analysis The C in these CVEs stands for Confusing
Security17 Sep 2024 | 8
The empire of C++ strikes back with Safe C++ blueprint
You pipsqueaks want memory safety? We'll show you memory safety! We'll borrow that borrow checker
Applications16 Sep 2024 | 112
Snowflake slams 'more MFA' button again – months after Ticketmaster, Santander breaches
Now it's the default for all new accounts
Security16 Sep 2024 | 2
Germany’s CDU still struggling to restore data months after June cyberattack
Putting a spanner in work for plans of opposition party to launch a comeback during next year's elections
Cyber-crime16 Sep 2024 | 1
Prison just got rougher as band of heinously violent cybercrims sentenced to lengthy stints
Orchestrators of abductions, torture, crypto thefts, and more get their comeuppance
Cyber-crime16 Sep 2024 | 20
China’s quantum* crypto tech may be unhackable, but it's hardly a secret
Opinion * Quite Unlikely A New Technology’s Useful, Man
Security16 Sep 2024 | 52
23andMe settles class-action breach lawsuit for $30 million
Infosec In Brief Also: Apple to end NSO Group lawsuit; Malicious Python dev job offers; Dark web kingpins busted; and more
Security16 Sep 2024 | 20
Feeld dating app's security too open-minded as private data swings into public view
No love for months-long wait to fix this, either
Research13 Sep 2024 | 7
Cambodian senator sanctioned by US over alleged forced labor cyber-scam camps
Do not go on holiday to the O Smach Resort
Cyber-crime13 Sep 2024 | 8
Australia’s government spent the week boxing Big Tech
With social media age limits, anti-scam laws, privacy tweaks, and misinformation rules Elon Musk labelled 'fascist'
Public Sector13 Sep 2024 | 41
Feds pull plug on domains linked to import of Chinese gun conversion devices
Illegal goods allegedly shipped to the US labeled as toys or jewels
Cyber-crime13 Sep 2024 | 30
Fortinet admits miscreant got hold of customer data in the cloud
That would explain this 440GB leak, then
Cyber-crime13 Sep 2024 | 5
'Hadooken' Linux malware targets Oracle WebLogic servers
Nastyware seeks creds, mines crypto, and plants ransomware that isnt deployed - for now?
Security13 Sep 2024 | 3
I stole 20 GB of data from Capgemini – and now I'm leaking it, says cybercrook
Updated Allegedly pilfered database has source code, private keys, staff info, T-Mobile VM logs, more
Cyber-crime12 Sep 2024 | 20
Mastercard splurges $2.65B on another big cyber purchase – Recorded Future
Oh, turns out there are some things money can buy
Security12 Sep 2024 | 4
Adobe fixed Acrobat bug, neglected to mention whole zero-day exploit thing
SaaS seller sets severity to 'critical'
Patches12 Sep 2024 | 4
Google Chrome gets a mind of its own for some security fixes
Browser becomes more proactive about trimming unneeded permissions and deceptive notifications
Security12 Sep 2024 | 11
Transport for London confirms 5,000 users' bank data exposed, pulls large chunks of IT infra offline
NCA confirms arrest of 17-year-old 'on suspicion of Computer Misuse Act offences' – now bailed
Cyber-crime12 Sep 2024 | 66
EU kicks off an inquiry into Google's AI model
Privacy regulator taking a closer look at data privacy and PaLM 2
Security12 Sep 2024 | 8
About that Windows Installer 'make me admin' security hole. Here's how it's exploited
What kind of OS can be hijacked by clicking a link at just the right time? Microsoft's
Patches12 Sep 2024 | 23
Mind your header! There's nothing refreshing about phishers' latest tactic
It could lead to a costly BEC situation
Research12 Sep 2024 | 2
If HDMI screen rips aren't good enough for you pirates, DeCENC is another way to beat web video DRM
Academically interesting technique for poking holes in paywalled tech specs
Research12 Sep 2024 | 36
Biting the hand that feeds IT
