Crooks copy source code from Okta’s GitHub repository
The hack wraps up a year of bad security incidents for identity
Security23 Dec 2022 | 13
Security
FCC calls for mega $300 million fine for massive US robocall campaign
5 billion calls over three months. Was your phone spammed?
Security22 Dec 2022 | 83
Zerobot malware now shooting for Apache systems
Upgraded threat, time to patch
Security22 Dec 2022 | 11
It’s time to fill those cloud security gaps
Here’s how Wiz can help
Sponsored Feature
Fraudulent ‘popunder’ Google Ad campaign generated millions of dollars
The scam was lurking behind the content of an adult website
Security22 Dec 2022 | 43
Apple accused of censoring apps in Hong Kong and Russia to maintain market access
Activists note absence of VPNs ponder whether Apple may put revenue above human rights in some markets
Security22 Dec 2022 | 35
Godfather malware makes banking apps an offer they can’t refuse
No horse heads in beds...that we know of
Security22 Dec 2022 | 7
Being one of the 1% sucks if you're a Rackspace user
Nearly three weeks and no email for customers
Security22 Dec 2022 | 49
Microsoft fixes Hyper-V VM problem caused by Patch Tuesday
The emergency OOB release should solve those frustrating failures
Patches21 Dec 2022 | 2
UK's Guardian newspaper breaks news of ransomware attack on itself
Reporters work from home as publication promises Thursday's print edition will hit newstands on time
Cyber-crime21 Dec 2022 | 44
NASA infosec again falls short of required US government standard
Good thing space agency doesn’t have any state secrets … oh, hang on
CSO21 Dec 2022 | 13
Malicious PyPI package found posing as a SentinelOne SDK
Security firm tagged with malware misrepresentation
Security21 Dec 2022 | 8
Parental control apps prove easy to beat by kids and crims
20m downloads can't be wrong? Or can they?
Security21 Dec 2022 | 19
Cisco’s Talos security bods predict new wave of Excel Hell
Criminals have noticed that spreadsheet's XLL files add custom functionality - including malware
Security21 Dec 2022 | 16
Swatting suspects charged with subverting Ring doorbell cams and calling cops
Heavily armed US police turning up on the doorstep is no laughing matter
Security20 Dec 2022 | 34
Big Apple locals hire Russians to game New York's taxi system
Scheme allegedly allowed taxi drivers to bypass airport waiting line for $10 fee
Security20 Dec 2022 | 24
Microsoft reports macOS Gatekeeper has an 'Achilles' heel
Insert your Trojan joke here
Security20 Dec 2022 | 12
Simplifying digital sovereignty in a multi-cloud world
Maintaining tight control of sensitive data is critical to digital business success, but how do you manage that complexity?
Sponsored Feature
Eurozone plans to formalize passenger data, improve security
Central hub will make things smoother and safer but not store details
Security20 Dec 2022 | 25
McGraw Hill's S3 buckets exposed 100,000 students' grades and personal info
Educator gets an F for security
Security20 Dec 2022 | 7
Patch Tuesday update is causing some Windows 10 systems to blue screen
Microsoft issues a workaround for problem while it works on a fix
Patches20 Dec 2022 | 51
Google adds stronger encryption for some Gmail users, in beta
Slowly inching toward E2EE
Security19 Dec 2022 | 18
Email hijackers scam food out of businesses, not just money
In brief Also, TLC gets schooled by Karakurt, and Cloudflare is offering free zero trust stuff to some small companies
Security17 Dec 2022 | 20
Let's spend $22m supporting survivors of tech-enabled abuse, lawmakers suggest
And the corporations making the tools for stalking and harassment in the first place? Anyone?
Security16 Dec 2022 | 5
Twitter staffer turned Saudi spy jailed for 3.5 years
Tweeter, tailor, soldier, bye
Cyber-crime16 Dec 2022 | 42
Microsoft Teams: A vector for child sexual abuse material with a two-day processing time for complaints
Redmond and Cupertino criticized for slow and weak responses by Australian regulator
Security16 Dec 2022 | 17
US adds 36 Chinese entities to naughty list, drops 25 after checking it twice
Some are suspected of helping other banned suppliers get around sanctions
Security16 Dec 2022 | 5
NIST says you better dump weak SHA-1 ... by 2030
How about right now? Right now is good
Security16 Dec 2022 | 31
Sting op takes down 50 DDoS-for-hire domains, seven people collared
Cops give denial-of-service sites an extra special denial of service
Security15 Dec 2022 | 2
Microsoft to Europe: We're setting an EU 'data boundary' from 2023
Pitches storage, cloudy software compliance to twitchy EU customers thinking about GDPR
Security15 Dec 2022 | 20
SEC charges crew of social media influencers with $100m fraud
Defendants allegedly 'discussed their scheme’ in recorded chats on Discord and Twitter that ‘they believed were private’
Cyber-crime15 Dec 2022 | 19
Iran-linked Charming Kitten espionage gang bares claws to pollies, power orgs
If you get email from 'Samantha Wolf', congrats: you're important enough to make a decent target
Cyber-crime15 Dec 2022 | 1
On the 12th day of the Rackspace email disaster, it did not give to me …
Updated … a working Exchange inbox tree
CSO14 Dec 2022 | 66
Malicious Microsoft-signed Windows drivers wielded in cyberattacks
Handy tools to kill off security protections get Redmond's stamp of approval
CSO14 Dec 2022 | 14
Seven smuggled US military tech for Moscow, say Feds
Nuclear, hypersonic hardware is one thing, but you can probably keep the quantum computer stuff, Vlad
Cyber-crime14 Dec 2022 | 5
AWS strains to make Simple Storage Service not so simple to screw up
Not Amazon's fault buckets are exposed, but the loaded shotgun and your foot are all there ready and waiting
Security14 Dec 2022 | 22
TikTok could be banned from America, thanks to proposed bipartisan bill
If you listen really closely, you can hear Mark Zuckerberg's excitement
Security14 Dec 2022 | 27
Patch Tuesday updates spark errors when creating Hyper-V VMs
Something's broken, mom! Microsoft offers workaround while trying to think up a fix
Patches14 Dec 2022 | 10
EU takes another step towards US data-sharing agreement
Campaigners say it's unlikely to pass a test in the courts, though
Security14 Dec 2022 | 15
Citrix patches critical ADC flaw the NSA says is already under attack from China
Yet more pain for the software formerly known as NetScaler
Security14 Dec 2022 | 3
Microsoft ain't the only one squashing exploited-in-the-wild bugs this month
Patch Tuesday Plus there's a PoC for this unpatched Cisco bug
Patches14 Dec 2022 | 11
LockBit threatens to leak confidential info stolen from California's beancounters
Databases, details of 'sexual proceedings in court' and more apparently pilfered from finance IT
Security13 Dec 2022 | 1
Uber staff info leaks after supplier Teqtivity gets pwned
Thankfully no customer info – but the spotlight is back on third-party attacks
Security13 Dec 2022 | 3
Apple should pay €6m to French data watchdog for tracking users without consent, says official
Recommendation from top CNIL advisor claims Cupertino broke EU privacy laws
Security13 Dec 2022 | 10
Researchers smell a cryptomining Chaos RAT targeting Linux systems
Smells like Russian miscreants
Security13 Dec 2022 | 10
Pwn2Own contest concludes with nearly $1m paid out to ethical hackers
Which is pocket change compared to what criminals will pay for zero-days, but thankfully community spirit remains strong
Security13 Dec 2022 | 5
IT security teams, business execs still not on same page
In brief Also: Guri the air-gap guru strikes again, while pro-Ukraine hackers set up a proxy network in Russia
Security12 Dec 2022 | 6
UK arrests five for selling 'dodgy' point of sale software
Turns a $100 bottle of wine into a $4 soft drink to avoid tax, earning probe by major governments
Cyber-crime12 Dec 2022 | 73
Japan, Australia to bolster cyber-defenses, maybe offensive capacity too
Asia In Brief FTX Japan payment promise evaporates; VR/AR to boom across APAC; Google wins privacy case
Security11 Dec 2022 | 2
This ransomware gang is a right Royal pain in the AES for healthcare orgs
Nothing like your medical files being taken hostage for millions of dollars
CSO09 Dec 2022 | 8
Legit Android apps poisoned by sticky 'Zombinder' malware
Sure, go ahead and load APKs instead of using an app store. You won't enjoy the results
Research09 Dec 2022 | 25
Italy, Japan, UK to jointly launch sixth-gen fighter jet by 2035
Warplane project may include AI in the cockpit, and comes as tensions rise with China and Russia
Security09 Dec 2022 | 94
Guess which Fortune 500 brands and govt agencies share data with Twitter?
Spoiler alert: just about all of them, all across the planet
Security09 Dec 2022 | 14
UK lawmakers look to enforce blocking tools for legal but harmful content
The latest idea in the long gestation of the online harms legislation
Security09 Dec 2022 | 143
Boss installed software from behind the Iron Curtain, techies ended up Putin things back together
On Call Comrade offered 'monitoring' tool to keep an eye on the workers
Security09 Dec 2022 | 51
North Korea using freelance techies to fund missiles and nukes
You won't see 'Agent of vile murderous autocracy' on their CVs. Or their faces on vid chats
Security09 Dec 2022 | 7
REvil-hit Medibank to pull plug on IT, shore up defenses
If safety regulations are written in blood, what are security policies written in? Sweat and cursing?
CSO08 Dec 2022 | 1
Five British companies fined for making half a million nuisance calls
Nice. They went after vulnerable people and folks over 60 who opted out of marketing calls
Security08 Dec 2022 | 54
Weep for the cybercriminals who fell for online scams and lost $2.5m last year
I'm the smartest guy in the room, I'm sure the message from IRS refunds is legit
Cyber-crime08 Dec 2022 | 19
North Korea hits new low by using Seoul Halloween tragedy to exploit Internet Explorer zero-day
Evil, pure and simple
Cyber-crime08 Dec 2022 | 13
Biting the hand that feeds IT
