Spotted: Suspected Russian malware designed to disrupt Euro, Asia energy grids For simulation or for real, we don't like the vibes from this CosmicEnergy Research25 May 2023 |
All Microsoft Surface Pro X cameras just stopped working Facial authentication, video meetings may have to wait, dead security cert blamed Personal Tech24 May 2023 | 27
Philly Inquirer says Cuba ransomware gang's data leak claims are fake news Now that's a Rocky relationship Cyber-crime24 May 2023 |
Apria Healthcare says potentially 2M people caught up in IT security breach Took two years to tell us 'small number of emails' accessed Cyber-crime23 May 2023 | 4
Dish confirms 300,000 people's data was exposed in February's attack But don't worry – we know it was deleted. Hmm. How would you know that? Cyber-crime23 May 2023 | 4
TikTok to let Oracle view source code, algorithm, and content moderation It's all in the name of national security as Trump-era collab continues in Project Texas Security23 May 2023 | 10
China hasn't told Micron why it failed security review, or what its ban means US memory-maker forecasts single-digit revenue impact, and ongoing gloom in PC and smartmobe markets Security23 May 2023 | 6
Uncle Sam strangles criminals' cashflow by reining in money mules Tech support scammer among those targeted by recent crackdowns Cyber-crime23 May 2023 | 6
Python Package Index had one person on-call to hold back weekend malware rush We speak to infra director after project temporarily freezes new user accounts Devops22 May 2023 | 21
More UK councils caught by Capita's open AWS bucket blunder As for March megabreach? M&S and Guinness maker Diageo warn pension members about data risks Cyber-crime22 May 2023 | 31
Teen in court after '$600K swiped from DraftKings gamblers' Bet he didn't expect these computer hacking charges Cyber-crime19 May 2023 | 17
Russian IT guy sent to labor camp for DDoSing Kremlin websites Pro-Ukraine techie gets hard time Cyber-crime19 May 2023 | 24
UK and Japan ink agreement for semiconductor and security cooperation Hiroshima Accord promises 'ambitious joint research and development collaboration' On-Prem19 May 2023 | 8
Apple warns of three WebKit vulns under active exploitation, dozens more CVEs across its range High school student and Amnesty International named among bug-finders Security19 May 2023 | 13
Six million patients' data feared stolen from PharMerica Cue the inevitable class action lawsuit Cyber-crime18 May 2023 | 5
'Strictly limit' remote desktop – unless you like catching BianLian ransomware Do it or don't. We're not cops. But the FBI are, and they have this to say CSO17 May 2023 | 32
Another security calamity for Capita: An unsecured AWS bucket Colchester City Council says it and others caught up in new incident, reckons benefits data of local citizens exposed Security17 May 2023 | 31
Don't panic. Google offering scary .zip and .mov domains is not the end of the world Comment Did we forget about .pl, .sh and oh yeah, .com ? CSO17 May 2023 | 80
Feds offer $10m reward for info on alleged Russian ransomware crim Infecting cops' computers is one way to put a target on your back Cyber-crime17 May 2023 | 1
Microsoft tries a deeper dive into Azure Firewall traffic If the flow slows, you need to know why Off-Prem16 May 2023 | 3
Cops crack gang that used bots to book and resell immigration appointments Keeping files that mention 'robot rental' may not have been the best way to cover their tracks Cyber-crime16 May 2023 | 24
Intel says Friday's mystery 'security update' microcode isn't really a security update We're all for encouraging people to squash bugs but this is an odd way to do it Patches15 May 2023 | 5
Extra! Extra! Don’t quite read all about it: Cyber attack hits Philadelphia Inquirer Breaking news, literally Cyber-crime15 May 2023 |
Microsoft will upgrade Windows 10 21H2 users whether they like it or not Also, Windows 12 might be on the way, so buckle up OSes15 May 2023 | 116
Ransomware corrupts data, so backups can be faster and cheaper than paying up Smash and grab raids don’t leave time for careful encryption Cyber-crime15 May 2023 | 31
'Top three Balkans drug kingpins' arrested after cops crack their Sky ECC chats Maybe try carrier pigeons instead Cyber-crime13 May 2023 | 27
Ex-Ubiquiti dev jailed for 6 years after stealing internal corp data, extorting bosses Momentary lapse in VPN led to stretch in the cooler, $1.6m bill Cyber-crime12 May 2023 | 8
EU's Cyber Resilience Act contains a poison pill for open source developers Opinion The road to hell is paved with good intentions OSes12 May 2023 | 80
Google accused of stomping on rivals as it stamps out annoying Calendar spam Talk about going against the Grain Personal Tech11 May 2023 | 22
Let white-hat hackers stick a probe in those voting machines, say senators HAVA go at breaking electronic ballot box security Research11 May 2023 | 47
ENISA leans into EU-based clouds with draft cybersecurity label Time for AWS and pals to start thinking about JVs? Security11 May 2023 | 8
Two Microsoft Windows bugs under attack, one in Secure Boot with a manual fix Patch Tuesday On the plus side, this month's update batch is a bit smaller than usual Patches09 May 2023 | 20
FBI-led Op Medusa slays NATO-bothering Russian military malware network Perseus to the rescue as Snake eats itself Cyber-crime09 May 2023 | 9
Vietnam to require registration of social media, even on global platforms Show some ID or your Facebook feed might not make it across the border Legal09 May 2023 | 5
FYI: Intel BootGuard OEM private keys leak from MSI cyber heist Updated Plus: Court-ordered domain seizures of DDoS-for-hire sites Cyber-crime09 May 2023 | 13
Twitter admits 'security incident' made private Circles not so much Perhaps one of the thousands of people laid off from the biz could have fixed it, just a thought Security08 May 2023 | 5
DEF CON to set thousands of hackers loose on LLMs Can't wait to see how these AI models hold up against a weekend of red-teaming by infosec's village people Research06 May 2023 | 27
A right Royal pain in the Dallas: City IT systems crippled by ransomware Texas officials preach limited government ... but not this limited Cyber-crime05 May 2023 | 21
Capita admits some pension data 'likely' to have been accessed in March breach Weeks after outsourcer admits 'cyber incident' more warnings issued Cyber-crime05 May 2023 | 23
Ex-Uber CSO gets probation for covering up theft of data on millions of people Exec begged judge for leniency – and it worked Cyber-crime04 May 2023 | 18
Another RSA Conf under our belt, here's the stuff we didn't print RSA Conference For the event itself, it's like the COVID-19 pandemic was all just a long-gone bad dream Spotlight on RSA04 May 2023 |
Go ahead, forget that password. Use a passkey instead, says Google 'But they're gonna take my thumbs' hits different in 2023 Security04 May 2023 | 50
Orqa drone goggles bricked: Time-bomb ransomware or unpaid firmware license? VR headset maker and software dev clash over blame Software03 May 2023 | 19
Insurers can't use 'act of war' excuse to avoid Merck's $1.4B NotPetya payout 'The get-out-of-jail-free card option has been removed' as one expert put it CSO03 May 2023 | 37
Chrome's HTTPS padlock heads to Google Graveyard Logowatch As blue check marks start showing up in Gmail Security03 May 2023 | 40
288 arrested in multinational Monopoly Market takedown US tells criminals it 'will find you' and has a particular set of skills Cyber-crime02 May 2023 | 16
IT giant Bitmarck shuts down customer, internal systems after cyberattack Patient data 'was and is never endangered', says medical tech slinger Cyber-crime01 May 2023 | 6
RSA Conference or Black Mirror? Either way, we're doomed ... probably RSA Conference Luckily CrowdStrike's CSO has a brighter outlook than we vultures Spotlight on RSA30 Apr 2023 | 6
Crooks don't need ChatGPT to social-engineer victims, as they're more than happy to demonstrate RSA Conference Not today, AI Spotlight on RSA29 Apr 2023 | 10
Keep calm and carry on when the supply chain goes up in flames RSA Conference Lessons learned from the front-line responders Spotlight on RSA28 Apr 2023 |
Google sues CryptBot slingers, gets court order to shut down malware domains Hands off those Chrome users, they're ours! Cyber-crime27 Apr 2023 | 7
Eric Idle tells infosec world to always look on the bright side of life RSA Conference Has harsh words for Python fan Musk after losing the blue tick Spotlight on RSA27 Apr 2023 | 22
Microsoft tackles SaaSy URL sprawl, dumping its dotcom in favor of cloud.microsoft Promises more cross-product links, better security, and easier admin – for you and Redmond’s own crew SaaS27 Apr 2023 | 23
US National Cyber Director: Fending off cyber threats in space is 'urgent,' needs 'high level attention' RSA Conference More public-private collab around this issue coming soon Spotlight on RSA26 Apr 2023 | 5
You can cross 'Quantum computers to smash crypto' off your list of existential fears for 30 years RSA Conference RSA's Adi Shamir thinks we're safe for a generation, but more gnarly keys are still a good idea Spotlight on RSA26 Apr 2023 | 20
Apache Superset: A story of insecure default keys, thousands of vulnerable systems, few paying attention Two out of three public-facing app instances open to hijacking Patches25 Apr 2023 | 18
US to focus on stifling online attacks rather than snagging criminal convictions RSA Conference Russia unlikely to give up its crooks, but American CSOs can go to the clink Spotlight on RSA25 Apr 2023 | 1
Mandiant's 'most prevalent threat actor' may be living under your roof – the teenager RSA Conference Plus they are cliquey as all hell Spotlight on RSA25 Apr 2023 | 18
From tiny acorns mighty oak trees grow – RSA is back in town RSA Conference Security bods converge on the cool gray city of love Spotlight on RSA24 Apr 2023 | 5
European air traffic control confirms website 'under attack' by pro-Russia hackers Another cyber nuisance in support of Putin's war, nothing too serious Cyber-crime22 Apr 2023 | 10
Microsoft pushes for more women in cybersecurity Redmond tops industry average, still got a way to go CSO21 Apr 2023 | 14