Robot can rip the data out of RAM chips with chilling technology 'The more important a thing is for the world, the less security it has' says inventor Security09 Jun 2023 |
North Korea's Lazarus Group linked to Atomic Wallet heist Users' cryptocurrency wallets look unlikely to be refilled Cyber-crime08 Jun 2023 |
Barracuda tells its ESG owners to 'immediately' junk buggy kit That patch we issued? Yeah, it wasn't enough Security08 Jun 2023 | 1
Google puts $1M behind its promise to detect cryptomining malware If the chocolate factory's scans don't stop the miners, customers don't foot the bill Security08 Jun 2023 | 4
New York City latest to sue Hyundai and Kia claiming their cars are too easy to steal What started as a TikTok craze has become a 'public nuisance' Security08 Jun 2023 | 12
On the frontline of cyber threats Watch it here: the unvarnished truth about the state of data security Webinar
Microsoft says share the wealth with cyber-info for business It's better to take action than wait for attacks Security08 Jun 2023 | 8
Helping Windows 11 fight the hackers How Intel is using hardware-assisted security to beef up Microsoft OS protection Sponsored Feature
UK government to set deadline for removal of Chinese surveillance cams And compile a list of vendors considered threats to national security Security08 Jun 2023 | 27
Deepfakes being used in 'sextortion' scams, FBI warns AI technology raises the bar in an already troubling crime Cyber-crime08 Jun 2023 | 21
Clop ransomware crew sets June extortion deadline for MOVEit victims Plus: The Feds weigh in with advice, details CSO07 Jun 2023 | 2
10 years after Snowden's first leak, what have we learned? Feature Spies gonna spy Security07 Jun 2023 | 33
Police use of PayPal records under fire after raid on 'Cop City' protest fund trio Nearly anything can look like money laundering if you squint hard enough Security06 Jun 2023 | 10
Malwarebytes may not be allowed to label rival's app as 'potentially unwanted' Legal prof warns: 'This case is like a wrecking ball for internet law' Security06 Jun 2023 | 50
US govt now bans TikTok from contractors' work gear BYODALAINGTI (as long as it's not got TikTok installed) CSO06 Jun 2023 | 11
Microsoft cops $20M slap on the wrist for mishandling kids' Xbox data Pocket change, in other words Security06 Jun 2023 | 3
Identity thieves can hunt us for 'rest of our lives,' claims suit after university data leak Crooks steal Social Security numbers and post them on dark web, victims blame holes in Mercer's security Cyber-crime06 Jun 2023 | 26
Taking the art of email security to the next level AI is beefing up the cyber arsenals of both attackers and defenders Sponsored Feature
SEC drops 42 cases after staff bungle data protection Corporate watchdog fouled its info-separation regime, let the wrong people read sensitive docs CSO06 Jun 2023 | 3
British Airways, Boots, BBC payroll data stolen in MOVEit supply-chain attack Microsoft blames Russian Clop ransomware crew for theft of staff info Cyber-crime05 Jun 2023 | 25
Scientists claim >99 percent identification rate of ChatGPT content Boffins and machines write very differently – and it's easy to tell
Scientists think they may have cracked life support for Martian occupation Outdated ISS system will need an upgrade if we're to go further into space
Florida man (not that one) sold $100M-plus in counterfeit network gear Military, schools, and hospitals burned by off-brand Cisco inferno
Starlink's rocket speeds hit a 50 megabit wall for large downloads Disgruntled customers claim throttling happens any time of the day or night
Google snubbed JPEG XL so of course Apple now supports it in Safari Chocolate Factory under pressure to reverse decision to abandon image format
Red Hat to stop packaging LibreOffice for RHEL The sky isn't falling… but it's sign of bigger changes to come
What do we make of the $3,500 Apple Vision Pro? It doesn't take a magic leap to guess Kettle Tune in and hear us human-not-AI vultures get meta on the news
NASA's heavy metal Psyche asteroid trip is a go for October Team problems found last year seem to have been resolved
Crypto catastrophe strikes some Atomic Wallet users, over $35M thought stolen Victims nursing huge losses haven't the foggiest how heist happened, yet Security05 Jun 2023 | 22
Qbot malware adapts to live another day … and another … Operators stay ahead of defenders with new access methods and C2 infrastructure Research05 Jun 2023 | 3
Australian cyber-op attacked ISIL with the terrifying power of Rickrolling Commanders in the field persuaded to give up, let their guard down, run around and desert their posts Security05 Jun 2023 | 10
Toyota admits to yet another cloud leak infosec in brief Also, hackers publish RaidForum user data, Google's $180k Chrome bug bounty, and this week's vulnerabilities Security05 Jun 2023 | 6
Meet TeamT5, the Taiwanese infosec outfit taking on Beijing and defeating its smears Living in the eye of the geopolitical storm is not easy, but is good for business Security05 Jun 2023 | 2
Uncle Sam wants DEF CON hackers to pwn this Moonlighter satellite in space Feature 'World's first and only' orbiting infosec playpen due to blast off Sunday Research03 Jun 2023 | 10
Malaysia goes its own Huawei, won't ban Chinese vendor from 5G network Country to have two networks as first buildout falls behind schedule Security02 Jun 2023 | 22
Microsoft stashes nearly half a billion in case LinkedIn data drama hits Irish regulators sniffing around Facebook-for-suits subsidiary have threatened fine CSO02 Jun 2023 | 12
This malicious PyPI package mixed source and compiled code to dodge detection Oh cool, something else to scan for Security02 Jun 2023 | 11
You might have been phished by the gang that stole North Korea’s lousy rocket tech US, South Korea, warn 'Kimsuky' is a very sophisticated social engineer Security02 Jun 2023 | 12
Millions of Gigabyte PC motherboards backdoored? What's the actual score? FAQ It's the 2020s and we're still running code automatically fetched over HTTP Security02 Jun 2023 | 42
Deployed publicly accessible MOVEit Transfer? Oh no. Mass exploitation underway Time to MOVEit, MOVEit. We don't like to MOVEit, MOVEit Patches01 Jun 2023 | 10
Kremlin claims Apple helped NSA spy on diplomats via iPhone backdoor Did we just time warp back to 2013? Security01 Jun 2023 | 12
The downside of frenemies Are DevOps Tools a potential risk to your software supply chain security? Webinar
Amazon Ring, Alexa accused of every nightmare IoT security fail you can imagine Staff able to watch customers in the bathroom? Tick! Obviously shabby infosec? Tick! Training AI as an excuse for data retention? Tick! Security01 Jun 2023 | 91
Ukraine war blurs lines between cyber-crims and state-sponsored attackers This RomCom is no laughing matter Cyber-crime01 Jun 2023 | 5
Dark Pink cyber-spies add info stealers to their arsenal, notch up more victims Not to be confused with K-Pop sensation BLACKPINK, gang pops military, govt and education orgs Research01 Jun 2023 | 3
Feds, you'll need a warrant for that cellphone border search Here's a story with a twist Security31 May 2023 | 50
Barracuda Email Security Gateways bitten by data thieves Act now: Sea-themed backdoor malware injected via .tar-based hole Patches31 May 2023 | 8
Criminals spent 10 days in US dental insurer's systems extracting data of 9 million LockBit gang claimed 'trophy' of spilling low income families' details. Their parents must be proud Cyber-crime31 May 2023 | 13
XFS bug in Linux kernel 6.3.3 coincides with SGI code comeback G.N.U. Silicon Graphics: a company is not dead while its name is still spoken Security31 May 2023 | 11
When the popular safeguarding tool is anything but How to stave off software supply chain attacks Webinar
Thinking straight in the SoC: How AI erases cognitive bias The whispering voice presents an alternative point of view to steer cyber security pros in the right direction Sponsored Feature
1. This crypto-coin is called Jimbo. 2. $8m was stolen from its devs in flash loan attack 3. It's asked for 90% of the digital dosh back, or else it'll beg the cops for help Cyber-crime30 May 2023 | 45
90+ orgs tell Slack to stop slacking when it comes to full encryption Protests planned for Wednesday in San Francisco and Denver CSO30 May 2023 | 8
Pegasus-pusher NSO gets new owner keen on the commercial spyware biz Investors roll the dice against government sanctions and lawsuits Security30 May 2023 | 15
New York county still dealing with ransomware eight months after attack security in brief Also: iSpoof no more, Edmodo fined more than it can pay, UK is #1 (in CC theft), and the week's critical vulns Security29 May 2023 | 8
Alien versus Predator? No, this Android spyware works together Phone-hugging code can record calls, read messages, track geolocation, access camera, other snooping Research27 May 2023 | 8
US govt pushes spyware to other countries? Senator Wyden would like a word Uncle Sam confirms it's saying nothing Security26 May 2023 | 8
BlackByte ransomware crew lists city of Augusta after cyber 'incident' Mayor promises to comment on Friday Cyber-crime26 May 2023 | 2
It's 2023 and Sri Lanka doesn't have a cyber security authority All should change this year as the country passes its Cyber Security Bill Security26 May 2023 | 2
Spotted: Suspected Russian malware designed to disrupt Euro, Asia energy grids For simulation or for real, we don't like the vibes from this CosmicEnergy Research25 May 2023 | 8
So the FBI 'persistently' abused its snoop powers. What's to worry about? Register Kettle When is warrantless surveillance warranted? Security25 May 2023 | 5
Facial recog system used by Met Police shows racial bias at low thresholds Tech used at King's Coronation employs higher thresholds on once-only watch-lists, Met tells MPs Security25 May 2023 | 20
Five Eyes and Microsoft accuse China of attacking US infrastructure again Defeating Volt Typhoon will be hard, because the attacks look like legit Windows admin activity Cyber-crime25 May 2023 | 10
This legit Android app turned into mic-snooping malware – and Google missed it File-stealing nasty in my Play store? Preposterous!!1 Cyber-crime24 May 2023 | 19
Philly Inquirer says Cuba ransomware gang's data leak claims are fake news Now that's a Rocky relationship Cyber-crime24 May 2023 |
IT security analyst admits hijacking cyber attack to pocket ransom payments Ashley Liles altered blackmail emails in bid to make off with £300,000 in Bitcoin Cyber-crime24 May 2023 | 22
US bans North Korean outsourcer and its feisty freelancers They do your work – usually from Russia and China – then send their wages home to pay for missiles Cyber-crime24 May 2023 | 3
Apria Healthcare says potentially 2M people caught up in IT security breach Took two years to tell us 'small number of emails' accessed Cyber-crime23 May 2023 | 5
Dish confirms 300,000 people's data was exposed in February's attack But don't worry – we know it was deleted. Hmm. How would you know that? Cyber-crime23 May 2023 | 4
TikTok to let Oracle view source code, algorithm, and content moderation It's all in the name of national security as Trump-era collab continues in Project Texas Security23 May 2023 | 10
Ads for lucrative jobs in Asia fail to mention chance of slavery as crypto-scammer FBI warns jobseekers to be very skeptical of working holidays in Cambodia Cyber-crime23 May 2023 | 16
China hasn't told Micron why it failed security review, or what its ban means US memory-maker forecasts single-digit revenue impact, and ongoing gloom in PC and smartmobe markets Security23 May 2023 | 6
Uncle Sam strangles criminals' cashflow by reining in money mules Tech support scammer among those targeted by recent crackdowns Cyber-crime23 May 2023 | 7
Google settles location tracking lawsuit for only $39.9M in brief Also, more OEM Android malware, Google's bug reports (mostly) ditch CVEs, and this week's critical vulns Security22 May 2023 | 7
More UK councils caught by Capita's open AWS bucket blunder As for March megabreach? M&S and Guinness maker Diageo warn pension members about data risks Cyber-crime22 May 2023 | 35
Fighting the five Hear SANS cyber security experts share advice on how to defend your organization against the latest threats Sponsored Post
Rigorous dev courageously lied about exec's NSFW printouts – and survived long enough to quit with dignity Who, Me? Log files don't lie and in this case one nasty incident spoke to a far deeper malaise Security22 May 2023 | 85
Teen in court after '$600K swiped from DraftKings gamblers' Bet he didn't expect these computer hacking charges Cyber-crime19 May 2023 | 17
Russian IT guy sent to labor camp for DDoSing Kremlin websites Pro-Ukraine techie gets hard time Cyber-crime19 May 2023 | 25
UK's GDPR replacement could wipe out oversight of live facial recognition Question not whether UK police should use facial recog, but how, says surveillance chief Security19 May 2023 | 102
Apple warns of three WebKit vulns under active exploitation, dozens more CVEs across its range High school student and Amnesty International named among bug-finders Security19 May 2023 | 13
Cisco squashes critical bugs in small biz switches You'll want to patch these as proof-of-concept exploit code is out there already Patches18 May 2023 |
Microsoft decides it will be the one to choose which secure login method you use Certificate-based authentication comes first and phones last CSO18 May 2023 | 55
Six million patients' data feared stolen from PharMerica Cue the inevitable class action lawsuit Cyber-crime18 May 2023 | 5
'Strictly limit' remote desktop – unless you like catching BianLian ransomware Do it or don't. We're not cops. But the FBI are, and they have this to say CSO17 May 2023 | 32
Another security calamity for Capita: An unsecured AWS bucket Colchester City Council says it and others caught up in new incident, reckons benefits data of local citizens exposed Security17 May 2023 | 31
Don't panic. Google offering scary .zip and .mov domains is not the end of the world Comment Did we forget about .pl, .sh and oh yeah, .com ? CSO17 May 2023 | 80
Upstart encryption app walks back privacy claims, pulls from stores after probe Try not leaving a database full of user info, chats, keys exposed, eh? Research17 May 2023 | 40
Ransomware-as-a-service groups rain money on their affiliates Qilin gang crims can earn up to 85 percent of extortion cash, or jail Cyber-crime17 May 2023 | 4
Feds offer $10m reward for info on alleged Russian ransomware crim Infecting cops' computers is one way to put a target on your back Cyber-crime17 May 2023 | 1
US Dept of Transport security breach exposes info on a quarter-million people Not the first time Uncle Sam has had the wheels come off its IT systems Security16 May 2023 | 4
Compliance automation to confound cyber criminals How you can streamline the auditing process while improving compliance and security Sponsored Post
Cops crack gang that used bots to book and resell immigration appointments Keeping files that mention 'robot rental' may not have been the best way to cover their tracks Cyber-crime16 May 2023 | 24
FTC sues VoIP provider over 'billions of illegal robocalls' XCast knew it was breaking the law and didn't hold back, watchdog says Cyber-crime16 May 2023 | 39
Intel says Friday's mystery 'security update' microcode isn't really a security update We're all for encouraging people to squash bugs but this is an odd way to do it Patches15 May 2023 | 7
Extra! Extra! Don’t quite read all about it: Cyber attack hits Philadelphia Inquirer Breaking news, literally Cyber-crime15 May 2023 |
Some potential: How bad software updates could over-volt, brick remote servers Video PMFault – from the eggheads who brought you Plundervolt and Voltpillager Cyber-crime15 May 2023 | 3
No more macros? No problem, say miscreants, we'll adapt Microsoft blocking 'net scripts sparked 'monumental shift' in attacks CSO15 May 2023 | 10
An important system on project [REDACTED] was all [REDACTED] up Who Me? Luckily, [REDACTED] was there to save the day Security15 May 2023 | 45
Ransomware corrupts data, so backups can be faster and cheaper than paying up Smash and grab raids don’t leave time for careful encryption Cyber-crime15 May 2023 | 31
Arm acknowledges side-channel attack but denies Cortex-M is crocked Black Hat Asia Spectre-esque exploit figures out when interesting info might be in memory Security15 May 2023 | 7
Toyota's bungling of customer privacy is becoming a pattern in brief Also: 3D printing gun mods = jail time; France fines Clearview AI for ignoring fine; this week's critical vulns, and more Security15 May 2023 | 33
'Top three Balkans drug kingpins' arrested after cops crack their Sky ECC chats Maybe try carrier pigeons instead Cyber-crime13 May 2023 | 27
Why Microsoft just patched a patch that squashed an under-attack Outlook bug Let's take a quick dive into Windows API Patches12 May 2023 | 45
Ex-Ubiquiti dev jailed for 6 years after stealing internal corp data, extorting bosses Momentary lapse in VPN led to stretch in the cooler, $1.6m bill Cyber-crime12 May 2023 | 8
Britain's largest private pension scheme reveals scale of Capita break-in USS says burgled biz reckons data on 470,000 'active, deferred and retired' members may have been accessed Cyber-crime12 May 2023 | 38
Activists gatecrash Capita's AGM to protest GPS tracking contract Outsourcer asked to take 'principled stance' Security12 May 2023 | 23
UK cops score legal win in EncroChat snooping op But tribunal punts on whether data was intercepted in transit Cyber-crime12 May 2023 | 11