Microsoft seizes websites used to sell phony email accounts to Scattered Spider and other crims That should solve the global cybercrime problem, right? Cyber-crime14 Dec 2023 | 8
Google pencils in limited third-party cookie purge for January One percent of Chrome users will experience the web as if using Firefox or Safari Personal Tech14 Dec 2023 | 19
Money-grubbing crooks abuse OAuth – and baffling absence of MFA – to do financial crimes Business email compromise, illicit cryptomining, phishing ... if it makes a dollar, this lot do it Cyber-crime14 Dec 2023 | 6
SAP admits attempt to adapt on-prem security for its cloud flopped Software giant learned the hard way that lift-and-shift isn’t easy Off-Prem14 Dec 2023 | 9
Final Patch Tuesday of 2023 goes out with a bang Microsoft fixed 36 flaws. Adobe addressed 212. Apple, Google, Cisco, VMware and Atlassian joined the party Patches13 Dec 2023 | 10
Cloud engineer wreaks havoc on bank network after getting fired Now he's got two years behind bars to think about his bad choices Security12 Dec 2023 | 71
BlackBerry squashes plan to spin out its IoT biz Board and incoming CEO decide reorganizing is better than splitting Security12 Dec 2023 | 5
Interpol moves against human traffickers who enslave people to scam you online Scum lure folks with promises of good jobs in crypto and then won't let them leave Cyber-crime12 Dec 2023 | 6
Proposed US surveillance regime would enlist more businesses Expanded service provider definition could force cafes and hotels to spy for the feds Security12 Dec 2023 | 10
Boffins fool AI chatbot into revealing harmful content – with 98 percent success rate This one weird trick works every time, most of the time AI + ML11 Dec 2023 | 27
2.5M patients infected with data loss in Norton Healthcare ransomware outbreak AlphV lays claims to the intrusion Security11 Dec 2023 | 6
Hollywood plays unwitting Cameo in Kremlin plot to discredit Zelensky Microsoft spots surge in pro-Russia exploits of video platform to spread propaganda Security09 Dec 2023 | 49
Polish train maker denies claims its software bricked rolling stock maintained by competitor Says it was probably hacked, which isn't good news either Security08 Dec 2023 | 88
Five Eyes nations warn Moscow's mates at the Star Blizzard gang have new phishing targets The Russians are coming! Err, they've already infiltrated UK, US inboxes Security08 Dec 2023 | 7
Attacks abuse Microsoft DHCP to spoof DNS records and steal secrets Akamai says it reported the flaws to Microsoft. Redmond shrugged Security07 Dec 2023 | 12
Belgian man charged with smuggling sanctioned military tech to Russia and China Indictments allege plot to shift FPGAs, accelerometers, and spycams Security07 Dec 2023 | 13
Australia building 'top secret' cloud to catch up and link with US, UK intel orgs Plans to share 'vast amounts of data' – very carefully Security07 Dec 2023 | 21
Dump C++ and in Rust you should trust, Five Eyes agencies urge Memory safety vulnerabilities need to be crushed with better code Public Sector07 Dec 2023 | 185
Apple and some Linux distros are open to Bluetooth attack Issue has been around since at least 2012 Security06 Dec 2023 | 14
Atlassian security advisory reveals four fresh critical flaws – in mail with dead links Bitbucket, Confluence and Jira all in danger, again. Sigh Security06 Dec 2023 | 7
Cisco intros AI to find firewall flaws, warns this sort of thing can't be free Predicts cyber crims will find binary brainboxes harder to battle Security06 Dec 2023 | 14
Boffins devise 'universal backdoor' for image models to cause AI hallucinations Data poisoning appears open to all AI + ML06 Dec 2023 | 24
Fancy Bear goes phishing in US, European high-value networks GRU-linked crew going after our code warns Microsoft - Outlook not good Security06 Dec 2023 | 4
It's ba-ack... UK watchdog publishes age verification proposals Won't somebody think of the children? Security05 Dec 2023 | 120
Amazon on the hook for predictably revolting use of concealed clothes hook spy cam Judge finds plaintiff's claim – that Amazon knew about illicit usage – credible enough for case to proceed Personal Tech05 Dec 2023 | 102
US warns Iranian terrorist crew broke into 'multiple' US water facilities There's a war on and critical infrastructure operators are still using default passwords Security04 Dec 2023 | 20
Hershey phishes! Crooks snarf chocolate lovers' creds Stealing Kit Kat maker's data?! Give me a break Security04 Dec 2023 | 48
Scores of US credit unions offline after ransomware infects backend cloud outfit Supply chain attacks: The gift that keeps on giving Cyber-crime02 Dec 2023 | 17
Today's 'China is misbehaving online' allegations come from Google, Meta Zuck boots propagandists, Big G finds surge of action directed at Taiwan Cyber-crime01 Dec 2023 | 9
Ex-school IT admin binned student, staff accounts and trashed phone system After getting the tintack, IRL BOFH went rogue Public Sector01 Dec 2023 | 56
Uh-oh, update Google Chrome – exploit already out there for one of these 6 security holes Plus: 3 critical CVEs in Zyxel NAS devices Security30 Nov 2023 | 3
Weak session keys let snoops take a byte out of your Bluetooth traffic BLUFFS spying flaw present in iPhones, ThinkPad, plenty of chipsets Research30 Nov 2023 | 12
Rogue ex-Motorola techie admits cyberattack on former employer, passport fraud Pro tip: Don't use your new work email to phish your old firm Cyber-crime30 Nov 2023 | 5
Uncle Sam probes cyberattack on Pennsylvania water system by suspected Iranian crew CISA calls for stronger IT defenses as Texas district also hit by ransomware crew Cyber-crime29 Nov 2023 | 9
Japan's space agency suffers cyber attack, points finger at Active Directory JAXA is having a tough time in cyberspace and outer space, the latter thanks to an electrical glitch Cyber-crime29 Nov 2023 | 4
Ukraine cyber spies claim Putin's planes are in peril as sanctions bite Aeroflot fleet still has a smoking section, but not for tobacco Public Sector28 Nov 2023 | 112
'Serial cybercriminal and scammer' jailed for 8 years, told to pay back $1.2M Crook did everything from SIM swaps to fake verified badge scams Cyber-crime28 Nov 2023 | 3
Mirai malware infects routers and cameras for new botnet Akamai sounds the alarm – won't name the manufacturers yet Cyber-crime23 Nov 2023 | 1
New Relic warns customers it's experienced a cyber … something Users told to hold tight and await instructions as investigation continues Security23 Nov 2023 | 6
How to give Windows Hello the finger and login as someone on their stolen laptop Not that we're encouraging anyone to defeat this fingerprint authentication Research22 Nov 2023 | 90
Microsoft's bug bounty turns 10. Are these kinds of rewards making code more secure? Interview Katie Moussouris, who pioneered Redmond's program, says folks are focusing on the wrong thing CSO22 Nov 2023 | 9
Top Ukrainian cyber officials fired after allegedly pocketing kickbacks from govt IT deals Duo probed over alleged $2M embezzlement plot Public Sector21 Nov 2023 | 2
MOVEit victim count latest: 2.6K+ orgs hit, 77M+ people's data stolen Real-life impact of buggy software laid bare – plus: Avast tries to profit from being caught up in attacks Cyber-crime20 Nov 2023 | 13
What's really going on with Chrome's June crackdown on extensions – and why your ad blocker may or may not work Special report Manifest V3 transition deemed 'far from terrible' and yet not great for content filters Personal Tech18 Nov 2023 | 97
Look out, Scattered Spider. FBI pumps 'significant' resources into snaring data-theft crew Absence of arrests doesn't mean nothing's happening, cyber-cops insist Cyber-crime17 Nov 2023 | 4
How much to clean up a ransomware infection? For Rackspace, about $11M And that's not counting the incoming lawsuits. Thank goodness for insurance, eh? CSO16 Nov 2023 | 7
Rights warriors claim online ad auction data a danger to national security 'The industry can not be allowed to put elected leaders, military personnel at risk' Personal Tech16 Nov 2023 | 18
Hundreds of websites cloned to run ads for Chinese football gambling outfits Linked to org that UK authorities found once failed its anti-money-laundering obligations Security16 Nov 2023 | 1
Clorox CISO flushes self after multimillion-dollar cyberattack Plus: Ransomware crooks file SEC complaint against victim CSO16 Nov 2023 | 23
Google, Amazon, Microsoft make the Mozilla naughty list for Christmas shopping Big Tech's toys have privacy problems. Why not buy utterly unconnected dead-tree books instead? Personal Tech15 Nov 2023 | 11
Another month, another bunch of fixes for Microsoft security bugs exploited in the wild Patch Tuesday Plus: VMware closes critical hole, Adobe fixes a whopping 76 flaws Patches15 Nov 2023 | 17
AMD SEV OMG: Trusted execution in VMs undone by bad hypervisors' cache meddling Let's do the CacheWarp again Research14 Nov 2023 | 7
Intel emits patch to squash chip bug that lets any guest VM crash host servers Sapphire Rapids, Alder Lake, Raptor Lake chip families treated for 'Redundant Prefix' Patches14 Nov 2023 | 1
Bug hunters on your marks: TETRA radio encryption algorithms to enter public domain Emergency comms standard had five nasty flaws but will be opened to academic research Security14 Nov 2023 | 10
VMware revealed Symantec SASE integration plan before Broadcom finished buying it Still no word on when the deal will happen, or what’s holding it up Virtualization14 Nov 2023 | 1
Passive SSH server private key compromise is real ... for some vulnerable gear OpenSSL, LibreSSL, OpenSSH users, don't worry – you can sit this one out Research14 Nov 2023 | 12
When it comes to personal data, we're on a highway to hell Kettle Register journos tackle cars harvesting info, Meta and YouTube being taken to task over privacy, and more Personal Tech13 Nov 2023 | 16
Introducing the tech that keeps the lights on Opinion Genuinely new ideas are rare in IT – this superhero is ready to make a real difference Security13 Nov 2023 | 21
Australia declares 'nationally significant cyber incident' after port attack Asia in brief PLUS: Citrix quits China; Cambodia deports Japanese scammers; Chinese tech CEO disappears; and more Security13 Nov 2023 | 3
Google dragged to UK watchdog over Chrome's upcoming IP address cloaking Exclusive Marketers tell antitrust cops privacy proxy will make it harder to protect kids online, etc etc Personal Tech11 Nov 2023 | 95
Impatient LockBit says it's leaked 50GB of stolen Boeing files after ransom fails to land Aerospace titan pores over data to see if dump is legit Cyber-crime10 Nov 2023 | 29
Microsoft hits Alt+F4 on internal ChatGPT access over security jitters, irony ensues Apparently the move was in error AI + ML10 Nov 2023 | 14