US president Biden kind of mostly bans commercial spyware
Executive Order has loopholes for government spyware or American-made commercial spyware
Cyber-crime28 Mar 2023 | 11
Security
Lawyers cough up $200k after health data stolen in Microsoft Exchange pillaging
In addition to $100k given to LockBit
Security27 Mar 2023 | 5
Gone in 120 seconds: Tesla Model 3 child's play for hackers
In brief Plus OIG finds Uncle Sam fibbed over Login.gov
Research27 Mar 2023 | 33
China crisis is a TikToking time bomb
Opinion ByteDance with the devil if you dare
Security27 Mar 2023 | 60
CISA unleashes Untitled Goose Tool to honk at danger in Microsoft's cloud
Not a headline we expected to write today
CSO24 Mar 2023 | 10
GitHub publishes RSA SSH host keys by mistake, issues update
Getting connection failures? Don't panic. Get new keys
Security24 Mar 2023 | 34
French parliament says oui to AI surveillance for 2024 Paris Olympics
Liberté, égalité, reconnaissance faciale for all
Security24 Mar 2023 | 45
Uncle Sam reveals it sent cyber-soldiers to Albania to hunt for Iranian threats
'Hunt forward' teams of this sort aid with defense and learn how attackers like Tehran operate
Security24 Mar 2023 | 8
Critical infrastructure gear is full of flaws, but hey, at least it's certified
Security researchers find bugs, big and small, in every industrial box probed
CSO23 Mar 2023 | 20
Secure mail
Protection from business email compromise
Webinar
Attackers hit Bitcoin ATMs to steal $1.5 million in crypto cash
Terminal maker General Bytes shutters its cloud business after second breach in seven months
Security23 Mar 2023 | 30
Bogus ChatGPT extension steals Facebook cookies
All aboard the chatbot hype train! Next stop: Fraud
Cyber-crime23 Mar 2023 | 9
B-List celebs including Lindsay Lohan fined after crypto shill probe
Didn't disclose payments as mastermind pumped up value of tokens with fake trades
Cyber-crime23 Mar 2023 | 40
South Korea fines McDonald's for data leak from raw SMB share
British American Tobacco, Samsung, also burgered up their infosec
Security23 Mar 2023 | 2
Cisco kindly reveals proof of concept attacks for flaws in rival Netgear's kit
Maybe this is deserved given the problem's in a hidden telnet service
Research22 Mar 2023 | 24
Journalist hurt by exploding USB bomb drive
Now that's a flash bang
Cyber-crime22 Mar 2023 | 43
German political parties accused of microtargeting voters on Facebook
Country's super strong data rights under magnifying glass after half a dozen complaints filed
Security22 Mar 2023 | 16
Unknown actors deploy malware to steal data in occupied regions of Ukraine
If this is Kyiv's work, Russia can Crimea river
Security22 Mar 2023 | 24
India's absurd infosec reporting rules get just 15 followers
CERT-In was told its six-hour notification requirement was a bad idea – now it knows just how bad
Security22 Mar 2023 | 3
Xi, Putin declare intent to rule the world of AI, infosec
'Technological sovereignty is the key to sustainability' states Russian despot
Security22 Mar 2023 | 23
Popular
Gone in 120 seconds: Tesla Model 3 child's play for hackers
In brief Plus OIG finds Uncle Sam fibbed over Login.gov
Google's claims of super-human AI chip layout back under the microscope
Special report Nature probes published research as it emerges journal paper allegedly used to entice $120m cloud deal
China crisis is a TikToking time bomb
Opinion ByteDance with the devil if you dare
Google says it did not train its AI chatbot Bard on your private emails
AI In Brief ALSO: Web traffic to Microsoft Bing up 15.8 per cent since launch of GPT-4 bot, and more
Botched migration resulted in a great deal: One for the price of two
Who Me? Moving premises can have all manner of hidden traps. Here's one to watch for
Europol warns ChatGPT already helping folks commit crimes
There is no honor among chatbots
France bans all recreational apps – including TikTok – from government devices
Meanwhile the US contemplates drastic action
China's best selling smartwatch offers surveillance-as-a-service … for kids
Asia In Brief ALSO: Indian space agency completes OneWeb constellation; Singapore warns on AI weapons; AUKUS tech pact advances
Chinese web giant Baidu backs RISC-V for the datacenter
Gee, why could that be? Nah, not that. AI contender might just want better SmartNICs
No 'decoupling' here: Apple, Samsung, and Qualcomm sing China's praises
First big government expo since COVID sees CEOs galore jet in
STORIES
BreachForums shuts down ... but the RaidForums cybercrime universe will likely spawn a trilogy
Admins decide reviving crime-mart is dangerous, hint at new chapter
Cyber-crime22 Mar 2023 | 2
You just gonna take that AWS? Let Microsoft school your users on cloud security?
And Google Cloud is next
CSO21 Mar 2023 | 3
Ex-Meta security staffer accuses Greece of spying on her phone
Beware of Greeks bearing GIFs
Security21 Mar 2023 | 26
Putin to staffers: Throw out your iPhones, or 'give it to the kids'
April Fools should use Russian or Chinese tech instead, Kremlin advises
Security21 Mar 2023 | 38
Google suspends top Chinese shopping app Pinduoduo
Alleges it’s infected with malware – but not the version in its own digital tat bazaar
Security21 Mar 2023 | 4
Australian FinTech takes itself offline to deal with cyber incident that caused data leak
Latitude blames a 'major vendor' for its woes. Is that a vendor? A cloud? Whoever they are, they're in trouble
Cyber-crime21 Mar 2023 | 3
Ferrari in a spin as crims steal a car-load of customer data
Speeds away from the very suggestion it would ever pay a ransom
Cyber-crime21 Mar 2023 | 8
Privacy fail: Pictures cropped, redacted by Google Pixel phones can be recovered
Updated aCropalypse Now, starring any 2018-or-later device
Security20 Mar 2023 | 36
BBC to staff: Uninstall TikTok from our corporate kit unless you can 'justify' having it
Those with 'sensitive' work-related information told to contact Beeb's security team
Security20 Mar 2023 | 69
Vessels claiming to be Chinese warships are messing with passenger planes
Australian airline Qantas warns pilots to keep calm and carry on amid reports of satnav and altimeter jamming
Security20 Mar 2023 | 144
Police pounce on 'pompompurin' – alleged mastermind of BreachForums
In Brief Crypto laundering service gets cleaned up by police and SVB mess draws in more criminals
Security20 Mar 2023 | 3
TikTok cannot be considered a private company, says Australian report
Asia In Brief ALSO: Japan ends chip supply crimp on South Korea, APAC infosec spending surges; Philippines SIM registration stalls
Security19 Mar 2023 | 19
BianLian ransomware crew goes 100% extortion after free decryptor lands
No good deed goes unpunished, or something like that
Cyber-crime19 Mar 2023 | 5
You've been pwned, how much will each stolen customer SSN cost you? How about $7.5k?
At the very least, with other costs on top
Cyber-crime18 Mar 2023 | 16
Google: Turn off Wi-Fi calling, VoLTE to protect your Android from Samsung hijack bugs
Four flaws open mobiles, cars to remote-control at baseband level with just a phone number
Patches17 Mar 2023 | 39
Eufy security cams 'ignore cloud opt-out, store unique IDs' of anyone who walks by
Gadget maker accused of 'corporate voyeurism' by gathering up footage against your wishes
Security17 Mar 2023 | 59
Feds arrest and charge exiled Chinese billionaire over massive crypto fraud
This one has it all: Donald Trump’s inner circle, a Beijing bot backlash, conspiracy theories, and more
Cyber-crime17 Mar 2023 | 21
Here's how Chinese cyber spies exploited a critical Fortinet bug
Looks to be the same baddies attacking VMware hypervisors last year
Security17 Mar 2023 | 5
FTX inner circle helped itself to $3.2B, liquidators say
SBF alone pocketed $2.2B, or so this bankruptcy paperwork goes
Cyber-crime16 Mar 2023 | 20
Got Conti? Here's the ransomware cure to avoid paying up
Kaspersky cracks the code, so get busy before the next update comes
Security16 Mar 2023 | 5
UK.gov bans TikTok from its devices as a 'precaution' over spying fears
Gov staff using it on personal mobes just fine... it's not like ministers use WhatsApp etc for business ... oh wait
Security16 Mar 2023 | 45
Hands up who DIDN'T exploit this years-old flaw to ransack a US govt web server...
Why patching matters: Everyone seemingly had a crack at security bug
Security15 Mar 2023 | 16
Cancer patient sues hospital after ransomware gang leaks her nude medical photos
Victim offered two years of credit monitoring after highly sensitive records dumped online
Security15 Mar 2023 | 36
SVB collapse's mix of money, urgency and uncertainty makes it irresistible to scammers
Phishing, dodgy domain names, and sophisticated attacks already deployed
Security15 Mar 2023 | 1
China sought control of submarine cables to spy, says Micronesia
Outgoing president alleges Beijing is systematically bullying strategically located island paradise
Security15 Mar 2023 | 18
Microsoft: Patch this severe Outlook bug that Russian miscreants exploited
Patch Tuesday Plus: Fixes for SAP, Adobe. Android, Chrome
Patches14 Mar 2023 | 37
Microsoft squashes Windows bug exploited to inflict ransomware misery
Not-so-smart SmartScreen flagged up by Googlers
Patches14 Mar 2023 | 5
UK refreshes national security plan to stop more of China's secret-stealing cyber-tricks
A threat that needs two orgs to tackle it: the 'Integrated Security Fund' and the 'National Protective Security Authority'
CSO14 Mar 2023 | 39
LockBit brags: We'll leak thousands of SpaceX blueprints stolen from supplier
And also, Ring hit with ransomware, too? No, says Amazon
Cyber-crime13 Mar 2023 | 19
Zoll Medical says intruders had 1M+ patient, staff records at their fingertips
Names, addresses, SSNs all up for grabs
Security13 Mar 2023 | 3
CISA joins forces with Women in CyberSecurity to break up the boy's club
in brief Also, the FBI just admitted to bypassing warrants by buying cellphone location data, and this week's actionable items
Security13 Mar 2023 | 17
The UK's bad encryption law can't withstand global contempt
Opinion Any sufficiently stupid technology is indistinguishable from magical thinking
Security13 Mar 2023 | 296
India floats idea of dedicated tribunal to handle online offences
Consultation for the long-awaited Digital India Act is finally under way although the draft law's still not been revealed
Cyber-crime13 Mar 2023 | 2
Google euthanizes Chrome Cleanup Tool because it no longer has a purpose
Times have changed and unwanted software on Windows is a rarity (unless you count Windows itself)
Security11 Mar 2023 | 4
What happens if you 'cover up' a ransomware infection? For Blackbaud, a $3m charge
File under cost of doing business
CSO10 Mar 2023 | 9
Electronics market shows US-China decoupling will hike inflation and slow growth
Singapore's central bank has a gloomy vision of the future
Security10 Mar 2023 | 7
Acronis downplays intrusion after 12GB trove leaks online
Cyber-thief said goal was to 'humiliate' data-protection biz
Cyber-crime10 Mar 2023 | 8
Catholic clergy surveillance org 'outs gay priests'
Religious non-profit allegedly hoovered up location data from dating apps to ID clerics
Security10 Mar 2023 | 100
FBI and international cops catch a NetWire RAT
Malware-seekers were diverted to the Feds, severing a Croatian connection
Cyber-crime10 Mar 2023 | 4
AT&T blames marketing bods for exposing 9M accounts
Says it was old and boring data, so that's OK, then ...
Security09 Mar 2023 | 8
US House reps, staff health data swiped in cyber-heist
Data for sale via dark web, Senate in line of fire, too
Cyber-crime09 Mar 2023 | 8
Refreshed from its holiday, Emotet has gone phishing
Notorious botnet starts spamming again after a three-month pause
Research09 Mar 2023 | 2
Suspected Chinese cyber spies target unpatched SonicWall devices
They've been lurking in networks since at least 2021
Security09 Mar 2023 | 2
Dems, Repubs eye up ban on chat apps they don't like
Clock is ticking for TikTok and other foreign natter-ware
Security09 Mar 2023 | 14
Securing ways to share workplace passwords
Keeper protects your team’s credentials without slowing down business
Sponsored Feature
Boeing signs off design of anti-jamming tech that keeps satellites online
China and Russia won't be jammin' US sats no more
Security08 Mar 2023 | 27
Aussie tech worker payroll scheme operators found guilty of tax fraud
Contractors left hanging while principals splurged on luxury goods
Cyber-crime08 Mar 2023 | 19
Acer confirms server intrusion after miscreant offers 160GB cache of stolen files
Customer info safe, or so we're told
Cyber-crime08 Mar 2023 | 4
Alert: Crims hijack these DrayTek routers to attack biz
Workaround: Throw away kit? Hope there's a patch?
Security08 Mar 2023 | 4
Pro-Putin scammers trick politicians and celebrities into low-tech hoax video calls
Who needs deepfakes when you've got makeup and 'element of surprise'?
Security07 Mar 2023 | 13
EPA orders US states to check cyber security of public water supplies
Don’t let miscreants poison the wells
Security06 Mar 2023 | 8
DoppelPaymer ransomware suspects cuffed, alleged ringleaders escape
Millions extorted from victims, one attack left hospital patient dead
Cyber-crime06 Mar 2023 | 4
Where are the women in cyber security? On the dark side, study suggests
In Brief Also, Royal ransomware metastasizes to other critical sectors, and this week's critical vulnerabilities
Security06 Mar 2023 | 44
Secret Service, ICE break the law over and over with fake cell tower spying
Investigations 'at risk' from sloppy surveillance uncovered by audit probe
Security04 Mar 2023 | 28
Snap CISO: I rate software supply chain risk 9.9 out of 10
SCSW 'Understanding your inventory is absolutely No. 1' he tells The Reg
Security04 Mar 2023 | 8
FTC: BetterHelp pushed users to share mental health info then gave it to Facebook
Feds propose $7.8M payment and ban on revealing 'sensitive' data to settle complaint
Security03 Mar 2023 | 22
Frankenstein malware stitched together from code of others disguised as PyPI package
Crime-as-a-service vendors mix and match components as needed by client
Research03 Mar 2023 | 3
Warning on SolarWinds-like supply-chain attacks: 'They're just getting bigger'
SCSW Industry hasn't 'improved much at all' Mandiant's Eric Scales tells us
Cyber-crime03 Mar 2023 | 22
German Digital Affairs Committee hearing heaps scorn on Chat Control
Proposal to break encryption to scan messages for abuse material challenged as illegal and unworkable
Security03 Mar 2023 | 22
Pushers of insecure software in Biden's crosshairs
Analysis Just-revealed US cybersecurity strategy 'has fangs' for catching crafty criminals and crummy coders
Security03 Mar 2023 | 20
CI/CD: Necessary for modern software development, yet it carries a lot of risk
SCSW With great speed comes great insecurity
CSO02 Mar 2023 | 9
Intruder alert: WH Smith hit by another cyber attack
Less than a year after Funky Pigeon leaked data of greetings cards biz
Cyber-crime02 Mar 2023 | 14
Forget ChatGPT, the most overhyped security tool is technology itself, Wiz warns
Interview Infosec also needs to widen its talent pool or miss out
Security02 Mar 2023 | 17
It's official: BlackLotus malware can bypass Secure Boot on Windows machines
The myth 'is now a reality'
Security01 Mar 2023 | 44
PlugX RAT masquerades as legit Windows debugger to slip past security
DLL side-loading does the trick, again
Security01 Mar 2023 | 3
Google: You get crypto, you get crypto, almost everyone gets email crypto!
Personal Gmail users still out of luck
Security01 Mar 2023 | 10
US government sets a 30-day deadline for wiping TikTok from feds' phones
Last chance to film yourself doing a ByteDance, in the US and abroad
Security01 Mar 2023 | 14
US cybersecurity chief: Software makers shouldn't lawyer their way out of security responsibilities
SCSW Who apart from Microsoft is happy with the ship now, oh just fix it later approach?
Security28 Feb 2023 | 30
Dish: Someone snatched our data, if you're wondering why our IT systems went down
Outage-hit telco still won't confirm ransomware infection, or if it's paying up
Cyber-crime28 Feb 2023 | 4
News Corp outfoxed by IT intruders for years
All the news that's fit to pwn
Cyber-crime28 Feb 2023 | 37
Russian hacktivists DDoS hospitals, with pathetic results
Not that we're urging them to try harder or anything
Security28 Feb 2023 | 10
US Marshals Service leaks ‘law enforcement sensitive information’ in ransomware incident
It’s not just another data breach when the victim oversees witness protection programs
Cyber-crime28 Feb 2023 | 5
Feeling VEXed by software supply chain security? You’re not alone
SCSW Chainguard CEO explains how to secure code given crims know to poison it at the source
CSO28 Feb 2023 |
Dish multi-day outage rolls on as ransomware fears grow
Techies 'hard at work' and all of that
Security27 Feb 2023 | 3
China makes it even harder for data to leave its shores
Many foreign companies had already given up – now there's more red tape
Security27 Feb 2023 | 7
Russian charged with smuggling US counterintel tech to Motherland
In brief Also, don't download that 'ChatGPT Windows client,' and this week's critical vulnerabilities to keep an eye on
Cyber-crime27 Feb 2023 | 8
Microsoft: For better security, scan more Exchange server objects
Software giant takes some files and processes off the exclusion list
Security26 Feb 2023 | 9
'Ethical hacker' among ransomware suspects cuffed by Dutch cops
Beware the Dark Side
Security25 Feb 2023 | 16
Telus source code, staff info for sale on dark web forum
$50k buys you '1,000 unique repositories' that may or may not be legit
Security25 Feb 2023 | 8
Bitcoin mining rig found stashed in school crawlspace
Pics Don't blame the kids! Ex-city employee charged with $17k power theft
Cyber-crime24 Feb 2023 | 84
Biting the hand that feeds IT
