News
Despite cyberattacks, water security standards remain a pipe dream
It sounds like the start of a bad joke: Digital trespassers from China, Russia, and Iran break into US water systems.…
Google says replacing C/C++ in firmware with Rust is easy
Google recently rewrote the firmware for protected virtual machines in its Android Virtualization Framework using the Rust programming language and wants you to do the same, assuming you deal with firmware.…
Cisco merch shoppers stung in Magecart attack
Bad news for anyone who purchased a Cisco hoodie earlier this month: Suspected Russia-based attackers injected data-stealing JavaScript into the networking giant's online store selling Cisco-branded merch.…
To patch this server, we need to get someone drunk
On Call The Register understands consuming alcohol is quite a popular way to wind down from the working week, but each Friday we get the party started early with a new and sober instalment of On Call, the reader contributed column in which you share stories about the emotional hangovers you've earned delivering tech support.…
Homeland security hopes to scuttle maritime cyber-threats with port infosec testbed
The US Department of Homeland Security is seeking help to assess the security of tech at maritime ports, to safeguard the 13 million jobs and $649 billion of economic activity generated by the nation’s docks.…
White House’s new fix for cyber job gaps: Serve the nation in infosec
The White House has unveiled a new strategy to fill some of the hundreds of thousands of critical cybersecurity vacancies across the US: Pitch cyber as a national service.…
US charges Russian GRU hackers behind WhisperGate intrusions
The US today charged five Russian military intelligence officers and one civilian for their involvement with the data-wiping WhisperGate campaign conducted against Ukraine in January 2022 before the ground invasion began.…
Cisco's Smart Licensing Utility flaws suggest it's pretty dumb on security
If you're running Cisco's supposedly Smart Licensing Utility, there are two flaws you ought to patch right now.…
Quantum computing is coming – are you ready?
Sponsored Feature The internet is all about transparency and openness - connecting people and information, shoppers and vendors, or businesses. But it's also all about security and trust.…
Security boom is over, with over a third of CISOs reporting flat or falling budgets
It looks like security budgets are coming up against belt-tightening policies, with chief security officers reporting budgets rising more slowly than ever and over a third saying their spending this year will be flat or even reduced.…
The fingerpointing starts as cyber incident at London transport body continues
The Transport for London (TfL) "cyber incident" is heading into its third day amid claims that a popular appliance might have been the gateway for criminals to gain access to the organization's network.…
Security biz Verkada to pay $3m penalty under deal that also enforces infosec upgrade
Physical security biz Verkada has agreed to cough up $2.95 million following an investigation by the US Federal Trade Commission (FTC) – but the payment won’t make good its past security failings, including a blunder that led to CCTV footage of Tesla, Cloudflare, and others being snooped on. Instead, the fine is about spam.…
White House seizes 32 domains, issues criminal charges in massive election-meddling crackdown
The Biden administration on Wednesday seized 32 websites and charged two employees of a state-owned media outlet connected to a $10 million scheme to distribute pro-Kremlin propaganda, and claimed the actions were necessary to counter Russia’s attempts to influence the upcoming US presidential election.…
North Korean scammers plan wave of stealth attacks on crypto companies, FBI warns
The FBI has warned that North Korean operatives are plotting "complex and elaborate" social engineering attacks against employees of decentralized finance (DeFi) organizations, as part of ongoing efforts to steal cryptocurrency.…
Palo Alto takes a big bite out of IBM QRadar security
Palo Alto Networks has completed its purchase of IBM's QRadar SaaS service, spending $500 million to buy up customer share for PAN's next-gen AI security Cortex platform.…
Copilot for Microsoft 365 might boost productivity if you survive the compliance minefield
Microsoft has published a Transparency Note for Copilot for Microsoft 365, warning enterprises to ensure user access rights are correctly managed before rolling out the technology.…
Planned Parenthood confirms cyber-attack as RansomHub threatens to leak data
Planned Parenthood of Montana's chief exec says the org is responding to a cyber-attack on its systems, and has drafted in federal law enforcement and infosec professionals to help investigate and rebuild its IT environment.…
Cicada ransomware may be a BlackCat/ALPHV rebrand and upgrade
The Cicada3301 ransomware, which has claimed at least 20 victims since it was spotted in June, shares "striking similarities" with the notorious BlackCat ransomware, according to security researchers at Israeli outfit endpoint security outfit Morphisec.…
Telegram apologizes to South Korea and takes down smutty deepfakes
Controversial social network Telegram has co-operated with South Korean authorities and taken down 25 videos depicting sex crimes.…
Ex-senior New York State staffer charged in cash-for-favors scandal with China
The US Department of Justice has accused a now-former senior official of the New York State government of illegally advancing the interests of the Chinese government and communist party.…