Some potential: How bad software updates could over-volt, brick remote servers Video PMFault – from the eggheads who brought you Plundervolt and Voltpillager Cyber-crime15 May 2023 | 3
Arm acknowledges side-channel attack but denies Cortex-M is crocked Black Hat Asia Spectre-esque exploit figures out when interesting info might be in memory Security15 May 2023 | 7
Ex-Uber CSO gets probation for covering up theft of data on millions of people Exec begged judge for leniency – and it worked Cyber-crime04 May 2023 | 18
Big Apple locals hire Russians to game New York's taxi system Scheme allegedly allowed taxi drivers to bypass airport waiting line for $10 fee Security20 Dec 2022 | 24
DraftKings gamblers lose $300,000 to credential stuffing attack Users of the sports betting site rolled the dice on reusing passwords and lost Security22 Nov 2022 | 15
Feds accuse Ukrainian of renting out PC-raiding Raccoon malware to fiends Separately, charges slapped on alleged operator of dark market, The Real Deal Cyber-crime26 Oct 2022 | 1
Former Uber CSO convicted for covering up massive 2016 data theft Passing off a ransom payment as a bug bounty? That's obstruction of justice Cyber-crime06 Oct 2022 | 14
Crypto biz Wintermute loses $160m in cyber-heist, tells us not to stress out The other Tessier-Ashpool AIs are surely disappointed Cyber-crime20 Sep 2022 | 10
Grand Theft Auto 6 maker confirms source code, vids stolen in cyber-heist So is that three or four stars? Cyber-crime19 Sep 2022 | 23
Cyberattack brings down InterContinental Hotels' booking systems Online booking systems and other services knocked offline amid network intrusion Cyber-crime06 Sep 2022 | 16
Ukraine's cyber chief comes to Black Hat in surprise visit Black Hat In Brief TL;DR: The news isn't good Security13 Aug 2022 | 6
Google location tracking to forget you were ever at that medical clinic In brief Plus: Cyber-mercenaries said to target legal world, backdoor found on web servers, and more Security02 Jul 2022 | 75
Beijing probes security at academic journal database It's easy to see why – the question is, why now? Security27 Jun 2022 | 7
Israeli air raid sirens triggered in possible cyberattack Source remains unclear, plenty suspect Iran Cyber-crime22 Jun 2022 | 2
Stolen-data market RaidForums taken down in domain seizure Suspected admin who went by 'Omnipotent' awaits UK decision on extradition to US Security12 Apr 2022 | 16
Hackers weigh in on programming languages of choice Small, self-described sample, sure. But results show shifts over time Software24 Mar 2022 | 38
Devil-may-care Lapsus$ gang is not the aspirational brand infosec needs Analysis Hitting big targets, untouchable, technically proficient. Who will it inspire next? Security17 Mar 2022 | 10
American diplomats' iPhones reportedly compromised by NSO Group intrusion software Reuters claims nine State Department employees outside the US had their devices hacked Security04 Dec 2021 | 51
BadgerDAO DeFi defunded as hackers apparently nab millions in crypto tokens Badger, badger, badger, coin theft, coin theft! Security02 Dec 2021 | 20
Ubiquiti dev charged with knocking $4bn off firm's value after insider threat spree Prosecutors claim Nickolas Sharp even posed as a whistleblower to press Legal02 Dec 2021 | 8
Microsoft president asks Congress to force private-sector orgs to admit when they've been hacked Senate intelligence committee hears ideas in light of SolarWinds disaster Security24 Feb 2021 | 28
The perils of non-disclosure? China 'cloned and used' NSA zero-day exploit for years before it was made public Check Point says Beijing 'reconstructed' Equation Group's hacking tool long before leak Security23 Feb 2021 | 39
This scumbag stole and traded victims' nude pics and vids after guessing their passwords, security answers Nicholas Faber joins accomplice Michael Fish in admitting he raided university portal for sensitive info Security11 Feb 2021 | 88
FireEye publishes details of SolarWinds hacking techniques, gives out free tool to detect signs of intrusion Instructions for spotting and keeping suspected Russians out of systems Security19 Jan 2021 | 18
Ethical power supplier People's Energy hacked, 250,000 customers' personal info accessed Financial info swiped for 15 small-biz clients, too Databases17 Dec 2020 | 32
SolarWinds’ shares drop 22 per cent. But what’s this? $286m in stock sales just before hack announced? VC firms say they weren't aware Orion code had been backdoored Security16 Dec 2020 | 31
SolarWinds: Hey, only as many as 18,000 customers installed backdoored software linked to US govt hacks Analysis Orion networking monitoring users need to take action as we summarize what the hell is going on Security15 Dec 2020 | 109
Cybersecurity giant FireEye says it was hacked by govt-backed spies who stole its crown-jewels hacking tools Not a great look Security09 Dec 2020 | 64
Hacker given three years for stealing secret Nintendo Switch blueprints, collecting child sex abuse vids Ryan Hernandez continued to raid gaming giant's systems even after FBI gave him a warning Security02 Dec 2020 | 7
Israeli spyware maker NSO channels Hollywood spy thrillers in appeal for legal immunity in WhatsApp battle In latest court bout, snooper biz seems to ask: Are you sure you want to open this can of worms? Security17 Nov 2020 | 27
Russian jailed for eight years in the US for writing code that sifted botnet logs for web banking creds for fraudsters Harvested usernames, passwords used to drain victims' coffers Security02 Nov 2020 | 9
Trump's official campaign website vandalized by hackers who 'had enough of the President's fake news' Well, that narrows down the list of suspects to just a few billion people Security28 Oct 2020 | 170
Is it Iran or Russia's hackers we need to worry about? The Russians, definitely the Russians, says US intelligence Energetic Bear team caught breaking into govt systems, no harm done to Nov 3 elections Security22 Oct 2020 | 50
Want to set up a successful bug bounty? Make sure you write it for the flaw finders and not the lawyers Plus: Experts talk voting machine security, 'warming' of relations with infosec community Security08 Oct 2020 | 5
Russian hacker, described as 'brilliant' by judge, gets seven years in a US clink for raiding LinkedIn, Dropbox Yevgeniy Nikulin, grabbed in Prague, unlikely to see his mother alive again after swiping 200m+ user records Security30 Sep 2020 | 27
Big US election coming up, security is vital and, oh look... a federal agency just got completely pwned for real Hacker had set up shop on network using stolen Office 365 accounts Security25 Sep 2020 | 30
Feeling bad about your last security audit? Check out what just happened to the US Department of Interior It starts with a backpack of $200 of electronics and poor Wi-Fi security Security17 Sep 2020 | 26
Good: US boasts it collared two in Chinese hacking bust. Bad: They aren't the actual hackers, rest are safe in China Ugly: And it's all about video game robberies at this stage Security16 Sep 2020 | 5
Dunkin' Donuts drops some dough to glaze over lawsuit accusing it of covering up customer account hacks No way to sugarcoat this: New York AG eclairs the 2015 data theft matter settled Security15 Sep 2020 | 8
Old and busted: Targeting servers and web bugs. New hotness: Pwning devs with targeted poisoned stacks 'Most developers are highly intelligent, but also highly stupid' Security04 Sep 2020 | 28
When classes are online, how do you get out of school? Florida teen cuffed, charged after crashing cyber-lessons Eight DDoS attacks targeted networks, virtual classrooms, say officials Security04 Sep 2020 | 28
BeagleBoyz: 2020's hottest country-rap band, or N. Korea hackers stealing millions. Only one way to find out... ...read the article, of course Security28 Aug 2020 | 6
Physical locks are less hackable than digital locks, right? Maybe not: Boffins break in with a microphone On the other hand, security of cloud-controlled locks 'quite horrifying' say 'cyber-physical' engineers Security21 Aug 2020 | 106
You there. Person, corp, state. Doesn't matter. You better not shoot down or hack a drone. That's our job – US govt DoJ, FAA, FCC, Homeland Security warning highlights legal mess Science19 Aug 2020 | 33
You weren't hacked because you lacked space-age network defenses. Nor because cyber-gurus picked on you. It's far simpler than that Three little words: Patches, passwords, policies Security13 Aug 2020 | 36
How did you spend your time at university? Pizza, booze, sleeping? This Oxford student is snooping on satellites DEF CON Bug-hunter details how his team slurped data… IN SPAAAAACE Security07 Aug 2020 | 22
When it comes to hacking societies, Russia remains the master at sowing discord and disinformation online Black Hat China can't hold a candle to GRU's shenanigans, says expert Security06 Aug 2020 | 53
America was getting on top of its electronic voting machine security – then suddenly... A wild pandemic appears Black Hat 'We need to prepare for a number of scenarios that may not come to fruition' says Prof Blaze Security05 Aug 2020 | 12
Doctor, doctor, got some sad news, there's been a bad case of hacking you: UK govt investigates email fail Former trade minister Dr. Liam Fox named as source of leaked trade docs Security04 Aug 2020 | 80
Bad: US govt says Chinese duo hacked, stole blueprints from just about everyone. Also bad: They extorted cash Including COVID-19 research, it is claimed. And they'll almost certainly never face an American court Security21 Jul 2020 | 27
Hey there, want to break into computers like an Iranian hacker crew? IBM finds 40GB of videos that include how-tos In Brief Plus: BitTorrent CEO puts a $1m bounty on Twitter hackers OSes20 Jul 2020 | 4
Report: CIA runs secret cyberwar with little oversight after Trump gave the OK, say US government officials Details start to emerge on real-world impact of Prez-signed secret memo Security16 Jul 2020 | 54
Collabera hacked: IT staffing'n'services giant hit by ransomware, employee personal data stolen Exclusive Crooks made off with everything needed for ID theft Security14 Jul 2020 | 10
Guilty: Russian miscreant who hacked LinkedIn, Dropbox, Formspring, stole 200-million-plus account records Yevgeniy Nikulin faces up to 10 years in a US cooler Security14 Jul 2020 | 10
It’s happened again: AT&T sued for allegedly transferring victim's number to thieves in $1.9m cryptocoin heist Man claims life savings lost in theft aided by telco staff Security01 Jul 2020 | 25
US govt: Julian Assange tried to recruit hacker to steal hush-hush dirt and we should know – the hacker was an informant WikiLeaker accused of tapping up LulzSec's Sabu as a source Security25 Jun 2020 | 47
Facebook pays for exploit to catch a predator, voting software security under the microscope... Roundup ... and more in this rapid-fire summary of infosec news Security14 Jun 2020 | 5
Someone got so fed up with GE fridge DRM – yes, fridge DRM – they made a whole website on how to bypass it Water filter system requires RFID-chipped part Personal Tech13 Jun 2020 | 177
That string of supercomputer hacks last week? Of course it was a crypto-coin-mining get-rich-quick scheme Stuck for compute power to craft digital funbucks? Go where the big beasts slumber HPC19 May 2020 | 13
I know what you leased last summer: Asset database leak hits Capita, Rolls-Royce, Tesco (every little helps, eh?) Roundup Plus: Pop's Lady Gaga popped in hack, and more OSes18 May 2020 |
Senator demands deep probe into spyware-for-cops after NSO Group touts hacking toolkit to American plod Updated 'Aggressive oversight' needed, Congress urged Security13 May 2020 | 8
Spyware slinger NSO to Facebook: Pretty funny you're suing us in California when we have no US presence and use no American IT services... Malware maker urges judge to dump lawsuit over WhatsApp phone snooping Security01 May 2020 | 46