News
Apple belatedly patches actively exploited bugs in older OSes
Apple has delivered a big batch of OS updates, some of which belatedly patch older versions of its operating systems to address exploited-in-the-wild flaws the iGiant earlier fixed in more recent releases.…
North Korea’s fake tech workers now targeting European employers
North Korea’s scamming, thieving, and AI-abusing fake IT workers are increasingly targeting European employers.…
Forget Signal. National Security Adviser Waltz now accused of using Gmail for work
Senior members of the US National Security Council, including the White House national security adviser Michael Waltz, have been accused of using their personal Gmail accounts to exchange sensitive information.…
Microsoft to mark five decades of Ctrl-Alt-Deleting the competition
Microsoft will officially hit the half-century mark on Friday as the Windows giant turns 50 years old. What do you consider the highs and lows of the company's journey to dominance?…
Google makes end-to-end encrypted Gmail easy for all – even Outlook users
Google will soon offer end-to-end encrypted (E2EE) email for all users, even those who do not use Google Workspace, and says it'll do so without imposing any undue stress on IT admins.…
UK threatens £100K-a-day fines under new cyber bill
The UK's technology secretary revealed the full breadth of the government's Cyber Security and Resilience (CSR) Bill for the first time this morning, pledging £100,000 ($129,000) daily fines for failing to act against specific threats under consideration.…
GCHQ intern took top secret spy tool home, now faces prison
A student at Britain's top eavesdropping government agency has pleaded guilty to taking sensitive information home on the first day of his trial.…
CISA spots spawn of Spawn malware targeting Ivanti flaw
Owners of Ivanti’s Connect Secure, Policy Secure, and ZTA Gateway products have a new strain of malware to fend off, according to the US Cybersecurity and Infrastructure Security Agency, aka CISA.…
Top cybersecurity boffin, wife vanish as FBI raids homes
A tenured computer security professor at Indiana University and his university-employed wife have not been seen publicly since federal agents raided their homes late last week.…
Oracle Cloud security SNAFU latest: IT giant accused of pedantry as evidence vanishes
Two Oracle data security breaches have been reported in the past week, and the database goliath not only remains reluctant to acknowledge the disasters publicly – it may be scrubbing the web of evidence, too.…
Check Point confirms breach, but says it was 'old' data and crook made 'false' claims
A digital burglar is claiming to have nabbed a trove of "highly sensitive" data from Check Point - something the American-Israeli security biz claims is a huge exaggeration.…
Cloud security explained: What’s left exposed?
Advertorial AWS customers might assume that security is taken care of for them - however, this is a dangerous misconception.…
China cracks down on personal information collection. No, seriously
Asia In Brief China last week commenced a crackdown on inappropriate collection and subsequent use of personal information.…
Oracle Health reportedly warns of info leak from legacy server
Infosec in brief Oracle Health appears to have fallen victim to an info stealing attack that has led to patient data stored by American hospitals being plundered.…
Malware in Lisp? Now you're just being cruel
Malware authors looking to evade analysis are turning to less popular programming languages like Delphi or Haskell.…
Cardiff's children's chief confirms data leak 2 months after cyber risk was 'escalated'
Cardiff City Council's director of children's services says data was leaked or stolen from the organization, although she did not clarify how or what was pilfered.…
After Chrome patches zero-day used to target Russians, Firefox splats similar bug
Google pushed out an emergency patch for Chrome on Windows this week to stop attackers exploiting a sandbox-breaking zero-day vulnerability, seemingly used by snoops to target certain folks in Russia.…
Cyber-crew claims it cracked American cableco, releases terrible music video to prove it
A cyber-crime ring calling itself Arkana has made a cringe music video to boast of an alleged theft of subscriber account data from Colorado-based cableco WideOpenWest (literally, WOW!)…
China’s FamousSparrow flies back into action, breaches US org after years off the radar
The China-aligned FamousSparrow crew has resurfaced after a long period of presumed inactivity, compromising a US financial-sector trade group and a Mexican research institute. The gang also likely targeted a governmental institution in Honduras, along with other yet-to-be-identified victims.…
Security shop pwns ransomware gang, passes insider info to authorities
Here's one you don't see every day: A cybersecurity vendor is admitting to breaking into a notorious ransomware crew's infrastructure and gathering data it relayed to national agencies to help victims.…
Pages
