Chinese spies suspected of 'moonlighting' as tawdry ransomware crooks Some employees steal sticky notes, others 'borrow' malicious code Cyber-crime14 Feb 2025 |
Arizona laptop farmer pleads guilty for funneling $17M to Kim Jong Un 300+ US companies, 70+ individuals hit by the fraudsters Cyber-crime12 Feb 2025 | 17
Ransomware isn't always about the money: Government spies have objectives, too Feature Analysts tell El Reg why Russia's operators aren't that careful, and why North Korea wants money AND data Cyber-crime12 Feb 2025 | 4
Crimelords and spies for rogue states are working together, says Google Only lawmakers can stop them. Plus: software needs to be more secure, but what's in it for us? Cyber-crime12 Feb 2025 | 19
Triplestrength hits victims with triple trouble: Ransomware, cloud hijacks, crypto-mining These crooks have no chill Cyber-crime11 Feb 2025 |
UK, US, Oz blast holes in LockBit's bulletproof hosting provider Zservers Huge if true: Brit Foreign Sec says Putin running a 'corrupt mafia state' Cyber-crime11 Feb 2025 | 41
Man who SIM-swapped the SEC's X account pleads guilty Said to have asked search engine 'What are some signs that the FBI is after you?' Cyber-crime11 Feb 2025 | 9
All your 8Base are belong to us: Ransomware crew busted in global sting updated Dark web site seized, four cuffed in Thailand Cyber-crime10 Feb 2025 | 3
US news org still struggling to print papers a week after 'cybersecurity event' Publications across 25 states either producing smaller issues or very delayed ones Cyber-crime10 Feb 2025 | 9
UK industry leaders unleash hurricane-grade scale for cyberattacks Freshly minted organization aims to take the guesswork out of incident severity for insurers and policy holders Cyber-crime07 Feb 2025 | 7
Apple missed screenshot-snooping malware in code that made it into the App Store, Kaspersky claims OCR plugin great for extracting crypto-wallet secrets from galleries Cyber-crime07 Feb 2025 | 7
Coordinates of millions of smartphones feared stolen, sparking yet another lawsuit against data broker Fourth time’s the harm? Personal Tech06 Feb 2025 | 6
Robocallers who phoned the FCC pretending to be from the FCC land telco in trouble Don't laugh: The $4.5m fine proposed for carrier Telnyx shows how the Trump administration will run its comms regulator Networks06 Feb 2025 | 30
Grubhub serves up security incident with a side of needing to change your password Contact info and partial payment details may be compromised Cyber-crime04 Feb 2025 |
Cyberattack on NHS causes hospitals to miss cancer care targets Healthcare chiefs say impact will persist for months Cyber-crime04 Feb 2025 | 12
Gilmore Girls fans nabbed as Eurocops dismantle two major cybercrime forums Nulled and Cracked had a Lorelai-cal rise - until Operation Talent stepped in Security02 Feb 2025 | 2
Another banner year for ransomware gangs despite takedowns by the cops And it doesn't take a crystal ball to predict the future Cyber-crime31 Jan 2025 | 6
Google to Iran: Yes, we see you using Gemini for phishing and scripting. We're onto you And you, China, Russia, North Korea ... Guardrails block malware generation Security31 Jan 2025 | 13
Ransomware attack at New York blood services provider – donors turned away during shortage crisis 400 hospitals and med centers across 15 states rely on its products Cyber-crime30 Jan 2025 | 13
Wacom says crooks probably swiped customer credit cards from its online checkout Digital canvas slinger indicates dot-com was skimmed for over a month Cyber-crime30 Jan 2025 | 3
LibreOffice still kicking at 40, now with browser tricks and real-time collab FOSDEM 2025 Standard FOSS office suite continues to evolve in interesting new directions
Feds want devs to stop coding 'unforgivable' buffer overflow vulnerabilities FBI, CISA harrumph at Microsoft and VMware in call for coders to quit baking avoidable defects into stuff
Larry Ellison wants to put all America's data, including DNA, in one big Oracle system for AI to study From the billionaire who said real-time surveillance is good for keeping us in check
IBM return-to-office order hits finance, ops teams amid push to dump staff for AI Demand described as a 'soft layoff'
AI summaries turn real news into nonsense, BBC finds Updated Research after Apple Intelligence fiasco shows bots still regularly make stuff up
After Copilot trial, government staff rated Microsoft's AI less useful than expected Not all bad news for Redmond as Australian agency also found strong ROI and some unexpected upsides
Undergrad and colleagues accidentally shred 40-year hash table gospel Student shows 'uniform hashing is optimal' was just wishful thinking
Why SAP may be mulling 2030 end of maintenance for legacy ERP Users' sluggish migration of critical apps mean current deadline not workable, says analyst
February's Patch Tuesday sees Microsoft offer just 63 fixes Patch Tuesday Don't relax just yet: Redmond has made some certificate-handling changes that could trip unprepared admins
Mysterious Palo Alto firewall reboots? You're not alone Limited-edition hotfix to get wider release before end of month
'Bro delete the chat': Feel the panic shortly before cops bust major online fraud ring Mastermind begs colluders to bury evidence later used to imprison him Cyber-crime29 Jan 2025 | 21
Baguette bandits strike again with ransomware and a side of mockery Big-game hunting to the extreme Cyber-crime28 Jan 2025 | 6
Security pros more confident about fending off ransomware, despite being battered by attacks Data leak, shmata leak. It will all work out, right? Cyber-crime28 Jan 2025 | 4
DeepSeek limits new accounts amid cyberattack Updated Chinese AI startup grapples with consequences of sudden popularity Cyber-crime27 Jan 2025 | 43
Google takes action after coder reports 'most sophisticated attack I've ever seen' Latest trope is tricky enough to fool even the technical crowd… almost Cyber-crime27 Jan 2025 | 32
AI chatbot startup founder, lawyer wife accused of ripping off investors in $60M fraud GameOn? It's looking more like game over for that biz Cyber-crime24 Jan 2025 | 30
North Korean dev who renamed himself 'Bane' accused of IT worker fraud caper 5 indicted as FBI warns North Korea dials up aggression, plus Russian devs allegedly get in on the act Cyber-crime24 Jan 2025 | 2
China and friends claim success in push to stamp out tech support cyber-scam slave camps Paint a target on Myanmar, pledge more info-sharing to get the job done Cyber-crime24 Jan 2025 | 12
FortiGate config leaks: Victims' email addresses published online Experts warn not to take SNAFU lightly as years-long compromises could remain undetected Cyber-crime23 Jan 2025 | 8
Trump 'waved a white flag to Chinese hackers' as Homeland Security axed cyber advisory boards And: America 'has never been less secure,' retired rear admiral tells Congress Security22 Jan 2025 | 94
Supply chain attack hits Chrome extensions, could expose millions Threat actor exploited phishing and OAuth abuse to inject malicious code Cyber-crime22 Jan 2025 | 6
Ransomware scum make it personal for Reg readers by impersonating tech support That invitation to a Teams call on which IT promises to mop up a spamstorm may not be what it seems CSO22 Jan 2025 | 18
PowerSchool theft latest: Decades of Canadian student records, data from 40-plus US states feared stolen Updated Lawsuits pile up after database accessed by miscreants Cyber-crime22 Jan 2025 | 31
HPE probes IntelBroker's bold data theft boasts Incident response protocols engaged following claims of source code burglary Cyber-crime21 Jan 2025 |
Ransomware attack forces Brit high school to shut doors Students have work to complete at home in the meantime Cyber-crime20 Jan 2025 | 103
Fortinet: FortiGate config leaks are genuine but misleading Competition hots up with Ivanti over who can have the worst start to a year Cyber-crime17 Jan 2025 | 5
Medusa ransomware group claims attack on UK's Gateshead Council Pastes allegedly stolen documents on leak site with £600K demand Cyber-crime17 Jan 2025 | 13
Russia's Star Blizzard phishing crew caught targeting WhatsApp accounts updated FSB cyberspies venture into a new app for espionage, Microsoft says Security16 Jan 2025 | 4
Enzo Biochem settles lawsuit over 2023 ransomware attack for $7.5M That's in addition to the $4.5M fine paid to three state AGs last year Cyber-crime16 Jan 2025 | 1
Crypto klepto North Korea stole $659M over just 5 heists last year US, Japan, South Korea vow to intensify counter efforts Cyber-crime15 Jan 2025 | 13
FBI wipes Chinese PlugX malware from thousands of Windows PCs in America Hey, Xi: Zài jiàn! Cyber-crime14 Jan 2025 | 31
UK floats ransomware payout ban for public sector Stronger proposals may also see private sector applying for a payment 'license' Cyber-crime14 Jan 2025 | 25
Microsoft sues 'foreign-based' cyber-crooks, seizes sites used to abuse AI Scumbags stole API keys, then started a hacking-as-a-service biz, it is claimed Security13 Jan 2025 | 4
Chinese cyber-spies peek over shoulder of officials probing real-estate deals near American military bases Gee, wonder why Beijing is so keen on the – checks notes – Committee on Foreign Investment in the US Cyber-crime10 Jan 2025 | 7
Drug addiction treatment service admits attackers stole sensitive patient data Details of afflictions and care plastered online Cyber-crime10 Jan 2025 | 8
Security pros baited with fake Windows LDAP exploit traps Tricky attackers trying yet again to deceive the good guys on home territory Cyber-crime09 Jan 2025 | 7
Japanese police claim China ran five-year cyberattack campaign targeting local orgs ‘MirrorFace’ group found ways to run malware in the Windows sandbox, which may be worrying Security09 Jan 2025 | 6
Database tables of student, teacher info stolen from PowerSchool in cyberattack Class act: Cloud biz only serves 60M-plus folks globally, no biggie Cyber-crime09 Jan 2025 | 23
UN's aviation agency confirms attack on recruitment database Various data points compromised but no risk to flight security Cyber-crime08 Jan 2025 | 4
Turbulence at UN aviation agency as probe into potential data theft begins Crime forum-dweller claims to have leaked 42,000 documents packed with personal info Cyber-crime07 Jan 2025 |
Charter, Consolidated, Windstream reportedly join China's Salt Typhoon victim list Slow drip of compromised telecom networks continues Cyber-crime06 Jan 2025 | 4
After China's Salt Typhoon, the reconstruction starts now Opinion If 40 years of faulty building gets blown down, don’t rebuild with the rubble Cyber-crime06 Jan 2025 | 41
Encryption backdoor debate 'done and dusted,' former White House tech advisor says interview When the FBI urges E2EE, you know it's serious business Cyber-crime04 Jan 2025 | 74
Atos denies Space Bears' ransomware claims – with a 'but' updated Points finger at third-party infrastructure being breached Cyber-crime04 Jan 2025 | 3
Chinese cyber-spies reportedly targeted sanctions intel in US Treasury raid OFAC, Office of the Treasury Secretary feared hit in data-snarfing swoop CSO02 Jan 2025 | 3
US Army soldier who allegedly stole Trump's AT&T call logs arrested Brings the arrest count related to the Snowflake hacks to 3 Cyber-crime01 Jan 2025 | 16
US Treasury Department outs the blast radius of BeyondTrust's key leak Data pilfered as miscreants roamed affected workstations Cyber-crime31 Dec 2024 | 16
China's cyber intrusions took a sinister turn in 2024 From targeted espionage to pre-positioning - not that they are mutually exclusive Security31 Dec 2024 | 9
More telcos confirm China Salt Typhoon security breaches as White House weighs in Intrusions allowed Beijing to 'geolocate millions of individuals, record phone calls at will' Cyber-crime30 Dec 2024 | 36
It's only a matter of time before LLMs jump start supply-chain attacks Interview 'The greatest concern is with spear phishing and social engineering' Security29 Dec 2024 | 58
How cops taking down LockBit, ALPHV led to RansomHub's meteoric rise Cut off one head, two more grow back in its place Cyber-crime28 Dec 2024 | 4
How Androxgh0st rose from Mozi's ashes to become 'most prevalent malware' Botnet's operators 'driven by similar interests as that of the Chinese state' Cyber-crime24 Dec 2024 | 3
What do ransomware and Jesus have in common? A birth month and an unwillingness to die Feature 35 years since AIDS first borked a PC and we're still no closer to a solution Cyber-crime24 Dec 2024 | 23
Suspected LockBit dev, facing US extradition, 'did it for the money' Dual Russian-Israeli national arrested in August Cyber-crime23 Dec 2024 | 18
UK ICO not happy with Google's plans to allow device fingerprinting Infosec in brief Also, Ascension notifies 5.6M victims, Krispy Kreme bandits come forward, LockBit 4.0 released, and more Security23 Dec 2024 | 75
Don't fall for a mail asking for rapid Docusign action – it may be an Azure account hijack phish Recent campaign targeted 20,000 folk across UK and Europe with this tactic, Unit 42 warns Cyber-crime19 Dec 2024 | 17
Phishers cast wide net with spoofed Google Calendar invites Not that you needed another reason to enable the 'known senders' setting Cyber-crime18 Dec 2024 | 17
Interpol wants everyone to stop saying 'pig butchering' Victims' feelings might get hurt, global cops contend, and that could hinder reporting Cyber-crime17 Dec 2024 | 45
Ransomware scum blow holes in Cleo software patches, Cl0p (sort of) claims responsibility But can you really take crims at their word? Security16 Dec 2024 | 1
Trump administration wants to go on cyber offensive against China The US has never attacked Chinese critical infrastructure before, right? Cyber-crime16 Dec 2024 | 25
Deloitte says cyberattack on Rhode Island benefits portal carries 'major security threat' Personal and financial data probably stolen Cyber-crime16 Dec 2024 | 2
Scumbag gets 30 years in the clink for running CSAM dark-web chatrooms, abusing kids 'Today’s sentencing is more than just a punishment. It’s a message' Cyber-crime13 Dec 2024 | 42
North Korea's fake IT worker scam hauled in at least $88M over six years DoJ thinks it's found the folks that ran it, and some of the 'IT warriors' sent out to fleece employers Cyber-crime13 Dec 2024 | 2
Lights out for 18 more DDoS booters in pre-Christmas Operation PowerOFF push Holiday cheer comes in the form of three arrests and 27 shuttered domains Cyber-crime12 Dec 2024 | 5
Krispy Kreme Doughnut Corporation admits to hole in security Belly-busting biz says it's been hit by cowardly custards Security11 Dec 2024 | 33
US names Chinese national it alleges was behind 2020 attack on Sophos firewalls Also sanctions his employer – an outfit called Sichuan Silence linked to Ragnarok ransomware Cyber-crime11 Dec 2024 | 4
Heart surgery device maker's security bypassed, data encrypted and stolen Sounds like th-aorta get this sorted quickly Cyber-crime10 Dec 2024 | 20
Bitfinex heist gets the Netflix treatment after 'cringey couple' sentenced Streamer's trademark dramatic style takes on Bitcoin Bonnie and Clyde Cyber-crime10 Dec 2024 | 6
China's Salt Typhoon recorded top American officials' calls, says White House No word yet on who was snooped on. Any bets? CSO09 Dec 2024 | 24
OpenWrt orders router firmware updates after supply chain attack scare A couple of bugs lead to a potentially bad time CSO09 Dec 2024 | 9
Microsoft dangles $10K for hackers to hijack LLM email service Outsmart an AI, win a little Christmas cash CSO09 Dec 2024 | 12
Salt Typhoon forces FCC's hand on making telcos secure their networks Proposal pushes stricter infosec safeguards after Chinese state baddies expose vulns Security06 Dec 2024 | 4
PoC exploit chains Mitel MiCollab 0-day, auth-bypass bug to access sensitive files updated Still unpatched 100+ days later, watchTowr says Cyber-crime06 Dec 2024 | 4
Microsoft: Another Chinese cyberspy crew targeting US critical orgs 'as of yesterday' Redmond threat intel maven talks explains this persistent pain to The Reg Security06 Dec 2024 | 16
Solana blockchain's popular web3.js npm package backdoored to steal keys, funds Damage likely limited to those running bots with private PKI access Cyber-crime05 Dec 2024 | 7
British hospitals hit by cyberattacks still battling to get systems back online Updated Children's hospital and cardiac unit say criminals broke in via shared 'digital gateway service' Cyber-crime05 Dec 2024 | 21
BT Group confirms attackers tried to break into Conferencing division Sensitive data allegedly stolen from US subsidiary following Black Basta post Cyber-crime05 Dec 2024 | 8
Ransomware hangover, Putin grudge blamed for vodka maker's bankruptcy Stoli Group on the rocks in the US Security05 Dec 2024 | 35
Cops arrest suspected admin of German-language crime bazaar Drugs, botnets, forged docs, and more generated fortune for platform sellers Cyber-crime04 Dec 2024 | 24
Eurocops take down 'secure' criminal chat system known as Matrix Updated They took the red pill Cyber-crime04 Dec 2024 | 46
Major energy contractor reports 'limited' access to IT after ransomware locks files ENGlobal customers include the Pentagon as well as major oil and gas producers Security03 Dec 2024 | 11
Severity of the risk facing the UK is widely underestimated, NCSC annual review warns National cyber emergencies increased threefold this year Cyber-crime03 Dec 2024 | 18
Russia gives life sentence to Hydra dark web kingpin after seizing a ton of drugs No exaggeration – literally a ton. Plus, 15 co-conspirators also put behind bars Cyber-crime03 Dec 2024 | 27
Data on 760K workers from Xerox, Nokia, BofA, Morgan Stanley and more dumped online Yet another result of the MOVEit mess Cyber-crime03 Dec 2024 | 3
Russia arrests one of its own – a cybercrime suspect on FBI's most wanted list The latest in an unusual change of fortune for group once protected by the Kremlin Cyber-crime02 Dec 2024 | 58
RansomHub claims to net data hat-trick against Bologna FC Crooks say they have stolen sensitive files on managers and players Cyber-crime30 Nov 2024 | 2
Ransom gang claims attack on NHS Alder Hey Children's Hospital Second alleged intrusion on English NHS org systems this week Cyber-crime29 Nov 2024 | 21
NHS major 'cyber incident' forces hospitals to use pen and paper Systems are isolated and pulled offline, while scheduled procedures are canceled Cyber-crime28 Nov 2024 | 56
The only thing worse than being fired is scammers fooling you into thinking you're fired Scumbags play on victims' worst fears in phishing campaign referencing UK Employment Tribunal Cyber-crime28 Nov 2024 | 50
Telco engineer who spied on US employer for Beijing gets four years in the clink Provides insight to how China gets inside US systems, perhaps at Verizon and Infosys Cyber-crime27 Nov 2024 | 15