North Korea's fake IT worker scam hauled in at least $88 million over six years DoJ thinks it's found the folks that ran it, and some of the 'IT warriors' sent out to fleece employers Cyber-crime13 Dec 2024 |
Lights out for 18 more DDoS booters in pre-Christmas Operation PowerOFF push Holiday cheer comes in the form of three arrests and 27 shuttered domains Cyber-crime12 Dec 2024 | 4
Krispy Kreme Doughnut Corporation admits to hole in security Belly-busting biz says it's been hit by cowardly custards Security11 Dec 2024 | 29
US names Chinese national it alleges was behind 2020 attack on Sophos firewalls Also sanctions his employer – an outfit called Sichuan Silence linked to Ragnarok ransomware Cyber-crime11 Dec 2024 | 4
Heart surgery device maker's security bypassed, data encrypted and stolen Sounds like th-aorta get this sorted quickly Cyber-crime10 Dec 2024 | 20
Bitfinex heist gets the Netflix treatment after 'cringey couple' sentenced Streamer's trademark dramatic style takes on Bitcoin Bonnie and Clyde Cyber-crime10 Dec 2024 | 6
China's Salt Typhoon recorded top American officials' calls, says White House No word yet on who was snooped on. Any bets? CSO09 Dec 2024 | 23
OpenWrt orders router firmware updates after supply chain attack scare A couple of bugs lead to a potentially bad time CSO09 Dec 2024 | 9
Microsoft dangles $10K for hackers to hijack LLM email service Outsmart an AI, win a little Christmas cash CSO09 Dec 2024 | 12
Salt Typhoon forces FCC's hand on making telcos secure their networks Proposal pushes stricter infosec safeguards after Chinese state baddies expose vulns Security06 Dec 2024 | 4
PoC exploit chains Mitel MiCollab 0-day, auth-bypass bug to access sensitive files updated Still unpatched 100+ days later, watchTowr says Cyber-crime06 Dec 2024 | 4
Microsoft: Another Chinese cyberspy crew targeting US critical orgs 'as of yesterday' Redmond threat intel maven talks explains this persistent pain to The Reg Security06 Dec 2024 | 16
Solana blockchain's popular web3.js npm package backdoored to steal keys, funds Damage likely limited to those running bots with private PKI access Cyber-crime05 Dec 2024 | 7
British hospitals hit by cyberattacks still battling to get systems back online Updated Children's hospital and cardiac unit say criminals broke in via shared 'digital gateway service' Cyber-crime05 Dec 2024 | 21
BT Group confirms attackers tried to break into Conferencing division Sensitive data allegedly stolen from US subsidiary following Black Basta post Cyber-crime05 Dec 2024 | 8
Ransomware hangover, Putin grudge blamed for vodka maker's bankruptcy Stoli Group on the rocks in the US Security05 Dec 2024 | 35
Cops arrest suspected admin of German-language crime bazaar Drugs, botnets, forged docs, and more generated fortune for platform sellers Cyber-crime04 Dec 2024 | 23
Eurocops take down 'secure' criminal chat system known as Matrix Updated They took the red pill Cyber-crime04 Dec 2024 | 45
Major energy contractor reports 'limited' access to IT after ransomware locks files ENGlobal customers include the Pentagon as well as major oil and gas producers Security03 Dec 2024 | 11
Severity of the risk facing the UK is widely underestimated, NCSC annual review warns National cyber emergencies increased threefold this year Cyber-crime03 Dec 2024 | 18
British Army zaps drones out of the sky with laser trucks High-energy weapon proves its mettle in testing
Firefox ditches Do Not Track because nobody was listening anyway Few websites actually respect the option, says Mozilla
Microsoft hijacks keyboard shortcut to bring Copilot to your attention AI assistant goes native – sort of – for Windows Insiders
Krispy Kreme Doughnut Corporation admits to hole in security Belly-busting biz says it's been hit by cowardly custards
Three more vulns spotted in Ivanti CSA, all critical, one 10/10 Patch up, everyone – that admin portal is mighty attractive to your friendly cyberattacker
US names Chinese national it alleges was behind 2020 attack on Sophos firewalls Also sanctions his employer – an outfit called Sichuan Silence linked to Ragnarok ransomware
Linux 6.12 is the new long term supported kernel Mid-November release will be maintained for 'several years'
Cruise robotaxis parked forever, as GM decides it can't compete and wants to cut costs Pictures The Register stumbles upon the place self-driving cabs appear to be rusting away into history
Apache issues patches for critical Struts 2 RCE bug More details released after devs allowed weeks to apply fixes
Aliens, spy balloons, or drones? SUV-sized mystery objects spotted in US skies No word from the FBI about where they are hiding aliens or UFOs
Russia gives life sentence to Hydra dark web kingpin after seizing a ton of drugs No exaggeration – literally a ton. Plus, 15 co-conspirators also put behind bars Cyber-crime03 Dec 2024 | 27
Data on 760K workers from Xerox, Nokia, BofA, Morgan Stanley and more dumped online Yet another result of the MOVEit mess Cyber-crime03 Dec 2024 | 3
Russia arrests one of its own – a cybercrime suspect on FBI's most wanted list The latest in an unusual change of fortune for group once protected by the Kremlin Cyber-crime02 Dec 2024 | 58
RansomHub claims to net data hat-trick against Bologna FC Crooks say they have stolen sensitive files on managers and players Cyber-crime30 Nov 2024 | 2
Ransom gang claims attack on NHS Alder Hey Children's Hospital Second alleged intrusion on English NHS org systems this week Cyber-crime29 Nov 2024 | 21
NHS major 'cyber incident' forces hospitals to use pen and paper Systems are isolated and pulled offline, while scheduled procedures are canceled Cyber-crime28 Nov 2024 | 56
The only thing worse than being fired is scammers fooling you into thinking you're fired Scumbags play on victims' worst fears in phishing campaign referencing UK Employment Tribunal Cyber-crime28 Nov 2024 | 50
Telco engineer who spied on US employer for Beijing gets four years in the clink Provides insight to how China gets inside US systems, perhaps at Verizon and Infosys Cyber-crime27 Nov 2024 | 15
Man accused of hilariously bad opsec as alleged cybercrime spree detailed Complaint claims he trespassed, gave himself discounts, and sorted CCTV access… Cyber-crime26 Nov 2024 | 24
Another 'major cyber incident' at a UK hospital, outpatients asked to stay away Third time this year an NHS unit's IT systems have come under attack Cyber-crime26 Nov 2024 | 53
Supply chain management vendor Blue Yonder succumbs to ransomware And it looks like major UK retailers that rely on it are feeling the pinch Cyber-crime26 Nov 2024 | 9
China has utterly pwned 'thousands and thousands' of devices at US telcos Senate Intelligence Committee chair says his 'hair is on fire' as execs front the White House Cyber-crime25 Nov 2024 | 51
Andrew Tate's site ransacked, subscriber data stolen He'll just have to take this one on the chin Cyber-crime22 Nov 2024 | 106
SafePay ransomware gang claims Microlise attack that disrupted prison van tracking Fledgling band of crooks says it stole 1.2 TB of data Cyber-crime22 Nov 2024 | 3
Chinese ship casts shadow over Baltic subsea cable snipfest Danish military confirms it is monitoring as Swedish police investigate. Cloudflare says impact was 'minimal' Networks21 Nov 2024 | 47
Now Online Safety Act is law, UK has 'priorities' – but still won't explain 'spy clause' Draft doc struggles to describe how theoretically encryption-busting powers might be used Cyber-crime21 Nov 2024 | 59
Five Scattered Spider suspects indicted for phishing spree and crypto heists DoJ also shutters allleged crimeware and credit card mart PopeyeTools Cyber-crime21 Nov 2024 | 3
Mega US healthcare payments network restores system 9 months after ransomware attack Change Healthcare’s $2 billion recovery is still a work in progress Cyber-crime20 Nov 2024 | 5
Healthcare org Equinox notifies 21K patients and staff of data theft Ransomware scum LockBit claims it did the dirty deed Cyber-crime20 Nov 2024 | 1
Russian suspected Phobos ransomware admin extradited to US over $16M extortion This malware is FREE for EVERY crook ($300 decryption keys sold separately) Cyber-crime19 Nov 2024 | 5
Crook breaks into AI biz, points $250K wire payment at their own account Fastidious attacker then tidied up email trail behind them Cyber-crime19 Nov 2024 | 12
T-Mobile US 'monitoring' China's 'industry-wide attack' amid fresh security breach fears updated Un-carrier said to be among those hit by Salt Typhoon, including AT&T, Verizon Networks18 Nov 2024 | 2
Swiss cheesed off as postal service used to spread malware QR codes arrive via an age-old delivery system Bootnotes16 Nov 2024 | 39
Bloke behind Helix Bitcoin launderette jailed for three years, hands over $400M Digital money laundering pays, until it doesn't Cyber-crime16 Nov 2024 | 7
Mystery Palo Alto Networks hijack-my-firewall zero-day now officially under exploit Yank access to management interface, stat CSO15 Nov 2024 | 28
Keyboard robbers steal 171K customers' data from AnnieMac mortgage house Names and social security numbers of folks looking for the biggest loan of their lives exposed Cyber-crime15 Nov 2024 | 6
Bitfinex burglar bags 5 years behind bars for Bitcoin heist A nervous wait for rapper wife who also faces a stint in the clink Cyber-crime15 Nov 2024 | 4
Cybercriminal devoid of boundaries gets 10-year prison sentence Serial extortionist of medical facilities stooped to cavernous lows in search of small payouts Cyber-crime14 Nov 2024 | 6
Kids' shoemaker Start-Rite trips over security again, spilling customer card info Updated Full details exposed, putting shoppers at serious risk of fraud Cyber-crime14 Nov 2024 | 14
Data broker amasses 100M+ records on people – then someone snatches, sells it We call this lead degeneration Cyber-crime13 Nov 2024 | 18
Ransomware fiends boast they've stolen 1.4TB from US pharmacy network American Associated Pharmacies yet to officially confirm infection Cyber-crime13 Nov 2024 | 1
Air National Guardsman gets 15 years after splashing classified docs on Discord 22-year-old talked of 'culling the weak minded' – hmm! Cyber-crime13 Nov 2024 | 93
Here's what we know about the suspected Snowflake data extortionists A Canadian and an American living in Turkey 'walk into' cloud storage environments… Cyber-crime12 Nov 2024 | 5
'Cybersecurity issue' at Food Lion parent blamed for US grocery mayhem Stores still open, but customers report delayed deliveries, invoicing issues, and more at Stop & Shop and others Cyber-crime12 Nov 2024 | 2
Amazon confirms employee data exposed in leak linked to MOVEit vulnerability Over 5 million records from 25 organizations posted to black hat forum Cyber-crime12 Nov 2024 | 2
FBI issues warning as crooks ramp up emergency data request scams Just because it's .gov doesn't mean that email is trustworthy Cyber-crime11 Nov 2024 | 12
Dark web crypto laundering kingpin sentenced to 12.5 years in prison Prosecutors hand Russo-Swede a half-billion bill Cyber-crime11 Nov 2024 | 24
Alleged Snowflake attacker gets busted by Canadians – politely, we assume Infosec in brief Also: Crypto hacks will continue; CoD hacker gets thousands banned, and more Security11 Nov 2024 |
Scattered Spider, BlackCat claw their way back from criminal underground We all know by now that monsters never die, right? Cyber-crime08 Nov 2024 | 1
Winos4.0 abuses gaming apps to infect, control Windows machines 'Multiple' malware samples likely targeting education orgs Security08 Nov 2024 | 6
Operation Synergia II sees Interpol swoop on global cyber crims 22,000 IP addresses taken down, 59 servers seized, 41 arrests in 95 countries Cyber-crime06 Nov 2024 | 3
Cyberattackers stole Microlise staff data following DHL, Serco disruption Experts say incident has 'all the hallmarks of ransomware' Cyber-crime06 Nov 2024 | 5
China's Volt Typhoon reportedly breached Singtel in 'test-run' for US telecom attacks updated Alleged intrusion spotted in June Security06 Nov 2024 | 5
Scumbag puts 'stolen' Nokia source code, SSH and RSA keys, more up for sale Data pinched from pwned outside supplier, thief claims Cyber-crime06 Nov 2024 | 6
Schneider Electric ransomware crew demands $125k paid in baguettes Hellcat crew claimed to have gained access via the company's Atlassian Jira system Cyber-crime05 Nov 2024 | 46
A Kansas pig butchering: CEO who defrauded bank, church, friends gets 24 years FBI recovers just $8M after scam crashes Heartland Tri-State Bank Cyber-crime05 Nov 2024 | 17
Columbus, Ohio, confirms 500K people affected by Rhysida ransomware attack Victims were placed in serious danger following highly sensitive data dump Cyber-crime04 Nov 2024 | 5
Public sector cyber break-ins: Our money, our lives, our right to know Opinion Is that a walrus in your server logs, or aren't you pleased to see me? Cyber-crime04 Nov 2024 | 24
Six IT contractors accused of swindling Uncle Sam out of millions Infosec in brief Also, ecommerce fraud ring disrupted, another Operation Power Off victory, Sino SOHO botnet spotted, and more Security03 Nov 2024 | 11
UK councils bat away DDoS barrage from pro-Russia keyboard warriors Local authority websites downed in response to renewed support for Ukraine Cyber-crime01 Nov 2024 | 34
LottieFiles supply chain attack exposes users to malicious crypto wallet drainer A scary few Halloween hours for team behind hugely popular web plugin Cyber-crime31 Oct 2024 | 11
Tower PC case allegedly used as 'creative cavity' by drug importer Motherboard missing, leaving space for a million hits of meth Cyber-crime31 Oct 2024 | 58
Chinese attackers accessed Canadian government networks – for five years India makes it onto list of likely threats for the first time Cybersecurity Month31 Oct 2024 | 15
Fired Disney staffer accused of hacking menu to add profanity, wingdings, removes allergen info If you're gonna come at the mouse, you need to be better at hiding your tracks Security30 Oct 2024 | 58
Russian spies use remote desktop protocol files in unusual mass phishing drive The prolific Midnight Blizzard crew cast a much wider net in search of scrummy intel Cyber-crime30 Oct 2024 | 18
Uncle Sam outs a Russian accused of developing Redline infostealing malware Or: why using the same iCloud account for malware development and gaming is a bad idea Cyber-crime29 Oct 2024 | 4
Belgian cops cuff 2 suspected cybercrooks in Redline, Meta infostealer sting US also charges an alleged Redline dev, no mention of an arrest Cyber-crime29 Oct 2024 | 1
Feds investigate China's Salt Typhoon amid campaign phone hacks 'They're taunting us,' investigator says and it looks like it's working Security28 Oct 2024 | 7
Brazen crims selling stolen credit cards on Meta's Threads Exclusive The platform 'continues to take action' against illegal posts, we're told Cyber-crime28 Oct 2024 | 20
Dutch cops pwn the Redline and Meta infostealers, leak 'VIP' aliases Legal proceedings underway with more details to follow Cybersecurity Month28 Oct 2024 | 5
Putin's pro-Trump trolls accuse Harris of poaching rhinos Plus: Iran's IRGC probes election-related websites in swing states Security25 Oct 2024 | 85
Ransomware's ripple effect felt across ERs as patient care suffers 389 US healthcare orgs infected this year alone Cybersecurity Month24 Oct 2024 | 1
Voice-enabled AI agents can automate everything, even your phone scams All for the low, low price of a mere dollar Security24 Oct 2024 | 28
Samsung phone users under attack, Google warns Don't ignore this nasty zero day exploit says TAG Cyber-crime24 Oct 2024 | 10
'Satanic' data thief claims to have slipped into 350M Hot Topic shoppers info We know where you got your skinny jeans - big deal Cyber-crime23 Oct 2024 | 2
Akira ransomware is encrypting victims again following pure extortion fling Crooks revert to old ways for greater efficiency Cybersecurity Month22 Oct 2024 | 2
Pixel perfect Ghostpulse malware loader hides inside PNG image files Miscreants combine it with an equally tricky piece of social engineering Cybersecurity Month22 Oct 2024 | 34
China’s Spamouflage cranks up trolling of US Senator Rubio as election day looms Note to Xi: Marco and Ted Cruz aren't the same person Security21 Oct 2024 | 8
Alleged Bitcoin crook faces 5 years after SEC's X account pwned SIM swappers strike again, warping cryptocurrency prices Cybersecurity Month18 Oct 2024 | 14
ESET denies it was compromised as Israeli orgs targeted with 'ESET-branded' wipers Says 'limited' incident isolated to 'partner company' Cybersecurity Month18 Oct 2024 | 3
Biz hired, and fired, a fake North Korean IT worker – then the ransom demands began 'My webcam isn't working today' is the new 'The dog ate my network' Cybersecurity Month18 Oct 2024 | 41
Troubled US insurance giant hit by extortion after data leak Globe Life claims blackmailers shared stolen into with short sellers Security17 Oct 2024 |
Brazilian police claim they've cuffed serial cybercrook behind FBI and Airbus attacks Early stage opsec failures lead to landmark arrest of suspected serial data thief Cybersecurity Month17 Oct 2024 | 3
Anonymous Sudan isn't any more: Two alleged operators named, charged Gang said to have developed its evilware on GitHub – then DDoSed GitHub Cybersecurity Month17 Oct 2024 | 5
US contractor pays $300K to settle accusation it didn't properly look after Medicare users' data Resolves allegations it improperly stored screenshots containing PII that were later snaffled Cybersecurity Month16 Oct 2024 | 7
Volkswagen monitoring data dump threat from 8Base ransomware crew The German car giant appears to be unconcerned Cyber-crime16 Oct 2024 | 1
Cisco confirms 'ongoing investigation' after crims brag about selling tons of data UPDATED Networking giant says 'no evidence' of impact on its systems but will tell customers if their info has been stolen Cyber-crime15 Oct 2024 | 7
Microsoft says more ransomware stopped before reaching encryption Volume of attacks still surging though, according to Digital Defense Report Cyber-crime15 Oct 2024 | 6
China again claims Volt Typhoon cyber-attack crew was invented by the US to discredit it Enough with the racist-sounding 'dragons' and 'pandas', Beijing complains – then points the finger at koalas Cybersecurity Month15 Oct 2024 | 17
Thousands of Fortinet instances vulnerable to actively exploited flaw No excuses for not patching this nine-month-old issue Cybersecurity Month14 Oct 2024 | 8