Cybersecurity

This Windows worm evolved into slinging ransomware. Here's how to detect it

Raspberry Robin hits 1,000 orgs in just one month

Research28 Oct 2022 | 12

Google says slap some GUAC on your software supply chain

In brief Also: Iranian election hackers are back, the TSA gets regulatory on train cybersecurity, and more

Security24 Oct 2022 | 2

President Biden still wants his cybersecurity labels on those smart devices

May follow Finland and Germany in adopting Singapore's standard

Security20 Oct 2022 | 20

DuckDuckGo's macOS browser hits public beta

Remember, remember, the Microsoft trackers

Personal Tech19 Oct 2022 | 4

Millennials, Gen Z actually suck at workplace security

OK, boomer – how do I turn off cookies?

CSO19 Oct 2022 | 76

So, the US, China, and Russia walk into an infosec conference

Suffice to say things got a little awkward

CSO19 Oct 2022 | 3

China-linked Budworm burrows hole in US legislature systems

In brief Also, Senator Warren says banks need to grow the Zelle up, an AirTag does some good – if you’re a Democrat, and more

Security17 Oct 2022 | 7

Microsoft tries again to ignite interest in DevOps cloud security

Ignite Identity governance and SOCs also on the menu

Security12 Oct 2022 | 3

If you're wondering why Google blew $5b on Mandiant, this may shed some light

GCN Automating infosec knowhow, essentially

Security11 Oct 2022 | 7

It’s 2022 and netizens are only now getting serious about cybersecurity

US folks start to get the message about protecting themselves online

Security10 Oct 2022 | 12

When are we gonna stop calling it ransomware? It's just data kidnapping now

Comment It's not like the good old days with iffy cryptography and begging for keys

Security09 Oct 2022 | 20

Biden's Privacy Shield 2.0 order may not satisfy Europe

In brief Also, Albania almost called in NATO over cyber attacks, and Facebook warns of account-stealing mobile apps

Security08 Oct 2022 | 20

Top of the Pops: US authorities list the 20 hottest vulns that China's hackers love to hit

Microsoft has four entries on list of shame, Log4j tops the chart

Security07 Oct 2022 | 4

Foreign spies hijacking US mid-terms? FBI, CISA are cool as cucumbers about it

I think we can handle one little Russia. We sent two units, they're bringing any attempts down now

Security06 Oct 2022 | 40

Australian Federal Police arrest man suspected of exploiting Optus cyberattack

Customers were allegedly sent texts demanding $1,300 or face having ID used in financial crime

Security06 Oct 2022 | 1

National Cybersecurity Awareness program 18 years on: Don't click that

Technology is addressing many of the cyberthreats, but the human element will always be a factor

Security03 Oct 2022 | 3

Founder of cybersecurity firm Acronis is afraid of his own vacuum cleaner

It is the exponential changes in the course of human history that worry Serg Bell

Security03 Oct 2022 | 32

The web's cruising at 13 million new and nefarious domain names a month

Or so Akamai is dying to tell us

Research28 Sep 2022 | 10

Australia asks FBI to help find attacker who stole data from millions of users

+Comment Apparent perp claims to have deleted swiped info as carrier Optus struggles to get its story straight

Security28 Sep 2022 | 21

Significant customer data exposed in attack on Australian telco

Updated Subscribers have questions – like 'When were you going to tell us?'

Cyber-crime23 Sep 2022 | 14

Iran blocks Whatsapp, Instagram as citizens protest death of Mahsa Amini

Also: New 'magnet of threats' attackers and FBI has details on Iran's online incursion into Albania

Security23 Sep 2022 | 16

EU puts smart device manufacturers on the hook for cyber security

Requires five years of patching, 24 hour incident reporting, and proper security … for starters

Systems16 Sep 2022 | 69

Microsoft rolls out stealthy updates for 365 Apps

Good thing Redmond has a brilliant track record with patches

Applications15 Sep 2022 | 48

US school year opens with reading, writing, and ransomware

FBI warns that Vice Society threat group is ramping up attacks on the education sector

Cyber-crime07 Sep 2022 | 8

As Cybersecurity Week begins, Beijing claims US attacked Uni doing military research

National Security Agency apparently has tools that crack Solaris boxes

Security07 Sep 2022 | 10

Unhappy about excluding nation-state attacks from cyberinsurance? Get ready to pay

Lloyd's defends stance as critics say policy tweaks make it less worthwhile to spend on premiums

Security06 Sep 2022 | 23

Internet pranksters send hundreds of cabs to Moscow street, cause gridlock

'Improved algorithm' set to keep miscreants at bay, web-based taxi service promises

Offbeat02 Sep 2022 | 34

FBI: Look out, crooks stole $1.3b in cryptocurrency in just three months this year

DeFi, as in, defying belief

Cyber-crime01 Sep 2022 | 9

77% of security leaders fear we’re in perpetual cyberwar from now on

In brief Also, Charming Kittens from Iran scrape email inboxes, France could fine Google again, and more

CSO27 Aug 2022 | 32

80,000 internet-connected cameras still vulnerable after critical patch offered

Just more IoT conscripts for the botnet armies

Patches24 Aug 2022 | 15

Attacker snags account details from streaming service Plex

'Limited subset' of users have emails, usernames, and hashed passwords stolen from the platform

Cyber-crime24 Aug 2022 | 18

Smartphone gyroscopes threaten air-gapped systems, researcher finds

Network interface card LEDs are a risk too by blinking in Morse code

CSO23 Aug 2022 | 54

LockBit gang hit by DDoS attack after threatening to leak Entrust ransomware data

Prolific group pummeled days after claiming to be file thief behind attack on cybersecurity vendor

Cyber-crime22 Aug 2022 | 7

Zoom patches make-me-root security flaw, patches patch

In brief Plus: See if in-app browsers are monitoring you, a novel industrial network attack technique, and more

Security22 Aug 2022 | 21

Ransomware attack on UK water company clouded by confusion

Clop gang thought it hit Thames Water – but real victim was elsewhere

Cyber-crime18 Aug 2022 | 44

PC store told it can't claim full cyber-crime insurance after social-engineering attack

Two different kinds of fraud, says judge while throwing out lawsuit against insurer

CSO16 Aug 2022 | 4

Ukraine's cyber chief comes to Black Hat in surprise visit

Black Hat In Brief TL;DR: The news isn't good

Security13 Aug 2022 | 6

Higher risks and premiums are creating critical gap in cyber insurance

Black Hat Most organizations don’t have the financial resources necessary to address ransomware and other cyberattacks, BlackBerry says

Security11 Aug 2022 | 4

AWS and Splunk partner for faster cyberattack response

Black Hat OCSF initiative will give enterprise security teams an open standard for moving and analyzing threat data

Security11 Aug 2022 |

Don't be surprised if your organization suffers multiple cyberattacks

Black Hat Failing to fix flaws, a crowded threat group scene, RaaS, and dependencies among crooks are fueling the trend

Security11 Aug 2022 | 5

Malicious deepfakes used in attacks up 13% from last year, VMware finds

Plus: Crooks swimming around your network, looking for a way in, says Incident Response Threat Report

Security09 Aug 2022 |

US treasury whips up sanctions for crypto mixer Tornado Cash

Being the money launderer for North Korea’s Lazarus Group comes at a price

Cyber-crime08 Aug 2022 | 21

DuckDuckGo says Hell, Hell, No to those Microsoft trackers after web revolt

In brief Plus: That Twitter privacy leak, scammers send Ubers for victims, critical flaw in Cisco gear, and more

Security06 Aug 2022 | 38

Warning! Critical flaws found in US Emergency Alert System

DEF CON may be about to blow lid off security hole

Patches05 Aug 2022 | 14

Microsoft widens enterprise access to its threat intelligence pool

Organizations can be more proactive in tracking threats, finding holes in their protection

Security03 Aug 2022 |

Akamai: We stopped record DDoS attack in Europe

A 'sophisticated, global botnet' held an Eastern European biz under siege over 30 days

Cyber-crime01 Aug 2022 | 12

Tim Hortons offers free coffee and donut to settle data privacy invasion claims

In brief Also, malicious VBA macros are out and container files are in, Robin Banks helps criminals rob banks, and more

Security30 Jul 2022 | 36

Decentralized IPFS networks forming the 'hotbed of phishing'

P2P file system makes it more difficult to detect and take down malicious content

Security29 Jul 2022 | 23

Businesses confess: We pass cyberattack costs onto customers

Cover an average of $4.4 million per raid ourselves? No chance, mate

Security29 Jul 2022 | 21

LockBit ransomware gang claims it ransacked Italy’s tax agency

Miscreants boast of 78GB haul, officials say everything's fine

Security26 Jul 2022 | 7

DoJ approves Google's acquisition of Mandiant

In Brief Plus: Ukrainian fake news and Uber admits covering up data breach

Security25 Jul 2022 | 2

DataDome looks to CAPTCHA the moment with test of humanity that doesn't hurt

As the verification technology weathers ongoing criticism from users, one anti-bot security vendor rolls out its own tool

Security21 Jul 2022 | 15

Botnet malware disguises itself as password cracker for industrial controllers

Can't get into that machine? No problem, just trust this completely sketchy looking tool

Research18 Jul 2022 | 8

Albanian government websites go dark after cyberattack

Updated Citizen services only moved online in May. What could possibly go wrong?

Security18 Jul 2022 | 3

North Koreans spotted harassing SMBs with malware

In brief Also: Lawyers told to dissuade clients from paying off ransomware crooks, and more

Security16 Jul 2022 | 16

How data on a billion people may have leaked from a Chinese police dashboard

Record-breaking dump thanks to password-less Kibana endpoint?

Research10 Jul 2022 | 24