US president Biden kind of mostly bans commercial spyware Executive Order has loopholes for government spyware or American-made commercial spyware Cyber-crime28 Mar 2023 | 11
Lawyers cough up $200k after health data stolen in Microsoft Exchange pillaging In addition to $100k given to LockBit Security27 Mar 2023 | 5
Gone in 120 seconds: Tesla Model 3 child's play for hackers In brief Plus OIG finds Uncle Sam fibbed over Login.gov Research27 Mar 2023 | 33
China crisis is a TikToking time bomb Opinion ByteDance with the devil if you dare Security27 Mar 2023 | 60
CISA unleashes Untitled Goose Tool to honk at danger in Microsoft's cloud Not a headline we expected to write today CSO24 Mar 2023 | 10
GitHub publishes RSA SSH host keys by mistake, issues update Getting connection failures? Don't panic. Get new keys Security24 Mar 2023 | 34
French parliament says oui to AI surveillance for 2024 Paris Olympics Liberté, égalité, reconnaissance faciale for all Security24 Mar 2023 | 45
Uncle Sam reveals it sent cyber-soldiers to Albania to hunt for Iranian threats 'Hunt forward' teams of this sort aid with defense and learn how attackers like Tehran operate Security24 Mar 2023 | 8
Critical infrastructure gear is full of flaws, but hey, at least it's certified Security researchers find bugs, big and small, in every industrial box probed CSO23 Mar 2023 | 20
Attackers hit Bitcoin ATMs to steal $1.5 million in crypto cash Terminal maker General Bytes shutters its cloud business after second breach in seven months Security23 Mar 2023 | 30
Bogus ChatGPT extension steals Facebook cookies All aboard the chatbot hype train! Next stop: Fraud Cyber-crime23 Mar 2023 | 9
B-List celebs including Lindsay Lohan fined after crypto shill probe Didn't disclose payments as mastermind pumped up value of tokens with fake trades Cyber-crime23 Mar 2023 | 40
South Korea fines McDonald's for data leak from raw SMB share British American Tobacco, Samsung, also burgered up their infosec Security23 Mar 2023 | 2
Cisco kindly reveals proof of concept attacks for flaws in rival Netgear's kit Maybe this is deserved given the problem's in a hidden telnet service Research22 Mar 2023 | 24
German political parties accused of microtargeting voters on Facebook Country's super strong data rights under magnifying glass after half a dozen complaints filed Security22 Mar 2023 | 16
Unknown actors deploy malware to steal data in occupied regions of Ukraine If this is Kyiv's work, Russia can Crimea river Security22 Mar 2023 | 24
India's absurd infosec reporting rules get just 15 followers CERT-In was told its six-hour notification requirement was a bad idea – now it knows just how bad Security22 Mar 2023 | 3
Xi, Putin declare intent to rule the world of AI, infosec 'Technological sovereignty is the key to sustainability' states Russian despot Security22 Mar 2023 | 23
Gone in 120 seconds: Tesla Model 3 child's play for hackers In brief Plus OIG finds Uncle Sam fibbed over Login.gov
Google's claims of super-human AI chip layout back under the microscope Special report Nature probes published research as it emerges journal paper allegedly used to entice $120m cloud deal
Google says it did not train its AI chatbot Bard on your private emails AI In Brief ALSO: Web traffic to Microsoft Bing up 15.8 per cent since launch of GPT-4 bot, and more
Botched migration resulted in a great deal: One for the price of two Who Me? Moving premises can have all manner of hidden traps. Here's one to watch for
France bans all recreational apps – including TikTok – from government devices Meanwhile the US contemplates drastic action
China's best selling smartwatch offers surveillance-as-a-service … for kids Asia In Brief ALSO: Indian space agency completes OneWeb constellation; Singapore warns on AI weapons; AUKUS tech pact advances
Chinese web giant Baidu backs RISC-V for the datacenter Gee, why could that be? Nah, not that. AI contender might just want better SmartNICs
No 'decoupling' here: Apple, Samsung, and Qualcomm sing China's praises First big government expo since COVID sees CEOs galore jet in
BreachForums shuts down ... but the RaidForums cybercrime universe will likely spawn a trilogy Admins decide reviving crime-mart is dangerous, hint at new chapter Cyber-crime22 Mar 2023 | 2
You just gonna take that AWS? Let Microsoft school your users on cloud security? And Google Cloud is next CSO21 Mar 2023 | 3
Ex-Meta security staffer accuses Greece of spying on her phone Beware of Greeks bearing GIFs Security21 Mar 2023 | 26
Putin to staffers: Throw out your iPhones, or 'give it to the kids' April Fools should use Russian or Chinese tech instead, Kremlin advises Security21 Mar 2023 | 38
Google suspends top Chinese shopping app Pinduoduo Alleges it’s infected with malware – but not the version in its own digital tat bazaar Security21 Mar 2023 | 4
Australian FinTech takes itself offline to deal with cyber incident that caused data leak Latitude blames a 'major vendor' for its woes. Is that a vendor? A cloud? Whoever they are, they're in trouble Cyber-crime21 Mar 2023 | 3
Ferrari in a spin as crims steal a car-load of customer data Speeds away from the very suggestion it would ever pay a ransom Cyber-crime21 Mar 2023 | 8
Privacy fail: Pictures cropped, redacted by Google Pixel phones can be recovered Updated aCropalypse Now, starring any 2018-or-later device Security20 Mar 2023 | 36
BBC to staff: Uninstall TikTok from our corporate kit unless you can 'justify' having it Those with 'sensitive' work-related information told to contact Beeb's security team Security20 Mar 2023 | 69
Vessels claiming to be Chinese warships are messing with passenger planes Australian airline Qantas warns pilots to keep calm and carry on amid reports of satnav and altimeter jamming Security20 Mar 2023 | 144
Police pounce on 'pompompurin' – alleged mastermind of BreachForums In Brief Crypto laundering service gets cleaned up by police and SVB mess draws in more criminals Security20 Mar 2023 | 3
TikTok cannot be considered a private company, says Australian report Asia In Brief ALSO: Japan ends chip supply crimp on South Korea, APAC infosec spending surges; Philippines SIM registration stalls Security19 Mar 2023 | 19
BianLian ransomware crew goes 100% extortion after free decryptor lands No good deed goes unpunished, or something like that Cyber-crime19 Mar 2023 | 5
You've been pwned, how much will each stolen customer SSN cost you? How about $7.5k? At the very least, with other costs on top Cyber-crime18 Mar 2023 | 16
Google: Turn off Wi-Fi calling, VoLTE to protect your Android from Samsung hijack bugs Four flaws open mobiles, cars to remote-control at baseband level with just a phone number Patches17 Mar 2023 | 39
Eufy security cams 'ignore cloud opt-out, store unique IDs' of anyone who walks by Gadget maker accused of 'corporate voyeurism' by gathering up footage against your wishes Security17 Mar 2023 | 59
Feds arrest and charge exiled Chinese billionaire over massive crypto fraud This one has it all: Donald Trump’s inner circle, a Beijing bot backlash, conspiracy theories, and more Cyber-crime17 Mar 2023 | 21
Here's how Chinese cyber spies exploited a critical Fortinet bug Looks to be the same baddies attacking VMware hypervisors last year Security17 Mar 2023 | 5
FTX inner circle helped itself to $3.2B, liquidators say SBF alone pocketed $2.2B, or so this bankruptcy paperwork goes Cyber-crime16 Mar 2023 | 20
Got Conti? Here's the ransomware cure to avoid paying up Kaspersky cracks the code, so get busy before the next update comes Security16 Mar 2023 | 5
UK.gov bans TikTok from its devices as a 'precaution' over spying fears Gov staff using it on personal mobes just fine... it's not like ministers use WhatsApp etc for business ... oh wait Security16 Mar 2023 | 45
Hands up who DIDN'T exploit this years-old flaw to ransack a US govt web server... Why patching matters: Everyone seemingly had a crack at security bug Security15 Mar 2023 | 16
Cancer patient sues hospital after ransomware gang leaks her nude medical photos Victim offered two years of credit monitoring after highly sensitive records dumped online Security15 Mar 2023 | 36
SVB collapse's mix of money, urgency and uncertainty makes it irresistible to scammers Phishing, dodgy domain names, and sophisticated attacks already deployed Security15 Mar 2023 | 1
China sought control of submarine cables to spy, says Micronesia Outgoing president alleges Beijing is systematically bullying strategically located island paradise Security15 Mar 2023 | 18
Microsoft: Patch this severe Outlook bug that Russian miscreants exploited Patch Tuesday Plus: Fixes for SAP, Adobe. Android, Chrome Patches14 Mar 2023 | 37
Microsoft squashes Windows bug exploited to inflict ransomware misery Not-so-smart SmartScreen flagged up by Googlers Patches14 Mar 2023 | 5
UK refreshes national security plan to stop more of China's secret-stealing cyber-tricks A threat that needs two orgs to tackle it: the 'Integrated Security Fund' and the 'National Protective Security Authority' CSO14 Mar 2023 | 39
LockBit brags: We'll leak thousands of SpaceX blueprints stolen from supplier And also, Ring hit with ransomware, too? No, says Amazon Cyber-crime13 Mar 2023 | 19
Zoll Medical says intruders had 1M+ patient, staff records at their fingertips Names, addresses, SSNs all up for grabs Security13 Mar 2023 | 3
CISA joins forces with Women in CyberSecurity to break up the boy's club in brief Also, the FBI just admitted to bypassing warrants by buying cellphone location data, and this week's actionable items Security13 Mar 2023 | 17
The UK's bad encryption law can't withstand global contempt Opinion Any sufficiently stupid technology is indistinguishable from magical thinking Security13 Mar 2023 | 296
India floats idea of dedicated tribunal to handle online offences Consultation for the long-awaited Digital India Act is finally under way although the draft law's still not been revealed Cyber-crime13 Mar 2023 | 2
Google euthanizes Chrome Cleanup Tool because it no longer has a purpose Times have changed and unwanted software on Windows is a rarity (unless you count Windows itself) Security11 Mar 2023 | 4
What happens if you 'cover up' a ransomware infection? For Blackbaud, a $3m charge File under cost of doing business CSO10 Mar 2023 | 9
Electronics market shows US-China decoupling will hike inflation and slow growth Singapore's central bank has a gloomy vision of the future Security10 Mar 2023 | 7
Acronis downplays intrusion after 12GB trove leaks online Cyber-thief said goal was to 'humiliate' data-protection biz Cyber-crime10 Mar 2023 | 8
Catholic clergy surveillance org 'outs gay priests' Religious non-profit allegedly hoovered up location data from dating apps to ID clerics Security10 Mar 2023 | 100
FBI and international cops catch a NetWire RAT Malware-seekers were diverted to the Feds, severing a Croatian connection Cyber-crime10 Mar 2023 | 4
AT&T blames marketing bods for exposing 9M accounts Says it was old and boring data, so that's OK, then ... Security09 Mar 2023 | 8
US House reps, staff health data swiped in cyber-heist Data for sale via dark web, Senate in line of fire, too Cyber-crime09 Mar 2023 | 8
Refreshed from its holiday, Emotet has gone phishing Notorious botnet starts spamming again after a three-month pause Research09 Mar 2023 | 2
Suspected Chinese cyber spies target unpatched SonicWall devices They've been lurking in networks since at least 2021 Security09 Mar 2023 | 2
Dems, Repubs eye up ban on chat apps they don't like Clock is ticking for TikTok and other foreign natter-ware Security09 Mar 2023 | 14
Securing ways to share workplace passwords Keeper protects your team’s credentials without slowing down business Sponsored Feature
Boeing signs off design of anti-jamming tech that keeps satellites online China and Russia won't be jammin' US sats no more Security08 Mar 2023 | 27
Aussie tech worker payroll scheme operators found guilty of tax fraud Contractors left hanging while principals splurged on luxury goods Cyber-crime08 Mar 2023 | 19
Acer confirms server intrusion after miscreant offers 160GB cache of stolen files Customer info safe, or so we're told Cyber-crime08 Mar 2023 | 4
Alert: Crims hijack these DrayTek routers to attack biz Workaround: Throw away kit? Hope there's a patch? Security08 Mar 2023 | 4
Pro-Putin scammers trick politicians and celebrities into low-tech hoax video calls Who needs deepfakes when you've got makeup and 'element of surprise'? Security07 Mar 2023 | 13
EPA orders US states to check cyber security of public water supplies Don’t let miscreants poison the wells Security06 Mar 2023 | 8
DoppelPaymer ransomware suspects cuffed, alleged ringleaders escape Millions extorted from victims, one attack left hospital patient dead Cyber-crime06 Mar 2023 | 4
Where are the women in cyber security? On the dark side, study suggests In Brief Also, Royal ransomware metastasizes to other critical sectors, and this week's critical vulnerabilities Security06 Mar 2023 | 44
Secret Service, ICE break the law over and over with fake cell tower spying Investigations 'at risk' from sloppy surveillance uncovered by audit probe Security04 Mar 2023 | 28
Snap CISO: I rate software supply chain risk 9.9 out of 10 SCSW 'Understanding your inventory is absolutely No. 1' he tells The Reg Security04 Mar 2023 | 8
FTC: BetterHelp pushed users to share mental health info then gave it to Facebook Feds propose $7.8M payment and ban on revealing 'sensitive' data to settle complaint Security03 Mar 2023 | 22
Frankenstein malware stitched together from code of others disguised as PyPI package Crime-as-a-service vendors mix and match components as needed by client Research03 Mar 2023 | 3
Warning on SolarWinds-like supply-chain attacks: 'They're just getting bigger' SCSW Industry hasn't 'improved much at all' Mandiant's Eric Scales tells us Cyber-crime03 Mar 2023 | 22
German Digital Affairs Committee hearing heaps scorn on Chat Control Proposal to break encryption to scan messages for abuse material challenged as illegal and unworkable Security03 Mar 2023 | 22
Pushers of insecure software in Biden's crosshairs Analysis Just-revealed US cybersecurity strategy 'has fangs' for catching crafty criminals and crummy coders Security03 Mar 2023 | 20
CI/CD: Necessary for modern software development, yet it carries a lot of risk SCSW With great speed comes great insecurity CSO02 Mar 2023 | 9
Intruder alert: WH Smith hit by another cyber attack Less than a year after Funky Pigeon leaked data of greetings cards biz Cyber-crime02 Mar 2023 | 14
Forget ChatGPT, the most overhyped security tool is technology itself, Wiz warns Interview Infosec also needs to widen its talent pool or miss out Security02 Mar 2023 | 17
It's official: BlackLotus malware can bypass Secure Boot on Windows machines The myth 'is now a reality' Security01 Mar 2023 | 44
PlugX RAT masquerades as legit Windows debugger to slip past security DLL side-loading does the trick, again Security01 Mar 2023 | 3
Google: You get crypto, you get crypto, almost everyone gets email crypto! Personal Gmail users still out of luck Security01 Mar 2023 | 10
US government sets a 30-day deadline for wiping TikTok from feds' phones Last chance to film yourself doing a ByteDance, in the US and abroad Security01 Mar 2023 | 14
US cybersecurity chief: Software makers shouldn't lawyer their way out of security responsibilities SCSW Who apart from Microsoft is happy with the ship now, oh just fix it later approach? Security28 Feb 2023 | 30
Dish: Someone snatched our data, if you're wondering why our IT systems went down Outage-hit telco still won't confirm ransomware infection, or if it's paying up Cyber-crime28 Feb 2023 | 4
News Corp outfoxed by IT intruders for years All the news that's fit to pwn Cyber-crime28 Feb 2023 | 37
Russian hacktivists DDoS hospitals, with pathetic results Not that we're urging them to try harder or anything Security28 Feb 2023 | 10
US Marshals Service leaks ‘law enforcement sensitive information’ in ransomware incident It’s not just another data breach when the victim oversees witness protection programs Cyber-crime28 Feb 2023 | 5
Feeling VEXed by software supply chain security? You’re not alone SCSW Chainguard CEO explains how to secure code given crims know to poison it at the source CSO28 Feb 2023 |
Dish multi-day outage rolls on as ransomware fears grow Techies 'hard at work' and all of that Security27 Feb 2023 | 3
China makes it even harder for data to leave its shores Many foreign companies had already given up – now there's more red tape Security27 Feb 2023 | 7
Russian charged with smuggling US counterintel tech to Motherland In brief Also, don't download that 'ChatGPT Windows client,' and this week's critical vulnerabilities to keep an eye on Cyber-crime27 Feb 2023 | 8
Microsoft: For better security, scan more Exchange server objects Software giant takes some files and processes off the exclusion list Security26 Feb 2023 | 9
'Ethical hacker' among ransomware suspects cuffed by Dutch cops Beware the Dark Side Security25 Feb 2023 | 16
Telus source code, staff info for sale on dark web forum $50k buys you '1,000 unique repositories' that may or may not be legit Security25 Feb 2023 | 8
Bitcoin mining rig found stashed in school crawlspace Pics Don't blame the kids! Ex-city employee charged with $17k power theft Cyber-crime24 Feb 2023 | 84