FBI gains access to Trump rally shooter's phone

The Register - Tue, 16/07/2024 - 04:16
Hasn't said how it did it, but has form cracking devices

The FBI on Monday revealed it has gained access to a phone it says was used by Thomas Matthew Crooks – the man who shot at and wounded former US president Donald Trump on July 13 in an apparent failed assassination attempt.…

Categories: News

DarkGate, the evil Swiss Army knife of malware, sees boom after rival Qbot crushed

The Register - Tue, 16/07/2024 - 01:15
Meet the new boss, same as the old boss

The DarkGate malware family has become more prevalent in recent months after one of its main competitors was taken down by the FBI.…

Categories: News

Kaspersky culls staff, closes doors in US amid Biden's ban

The Register - Mon, 15/07/2024 - 22:32
After all we've done for you, America, sniffs antivirus lab

Kaspersky has confirmed it will shutter its American operations and cut US-based jobs following President Biden's ban on the Russian business last month.…

Categories: News

ZDI shames Microsoft for – yet another – coordinated vulnerability disclosure snafu

The Register - Mon, 15/07/2024 - 16:00
'It seems like they really don't have a full grasp of what's going on with this patch'

Exclusive  A Microsoft zero-day exploit that Trend Micro's Zero Day Initiative team claims it found and reported to Redmond in May was disclosed and patched by the Windows giant in July's Patch Tuesday – but without any credit given to ZDI.…

Categories: News

Infoseccers claim Squarespace migration linked to DNS hijackings at Web3 firms

The Register - Mon, 15/07/2024 - 14:45
Company keeps quiet amid high-profile compromises

Security researchers are claiming a spate of DNS hijackings at web3 businesses is linked to Squarespace's acquisition of Google Domains last year.…

Categories: News

Google reportedly in talks to buy infosec outfit Wiz for $23 billion

The Register - Mon, 15/07/2024 - 05:39
The security industry has never had a clear leader – could it be the Chocolate Factory?

Ask any techie to name who leads the market for OSes, databases, networks or ERP and the answers are clear: Microsoft, Oracle, Cisco, and SAP.…

Categories: News

I spy another mSpy breach: Millions more stalkerware buyers exposed

The Register - Mon, 15/07/2024 - 03:01
Also: Velops routers love plaintext; everything is a dark pattern; Internet Explorer rises from the grave, and more

Infosec in brief  Commercial spyware maker mSpy has been breached – again – and millions of purchasers can be identified from the spilled records.…

Categories: News

UK cyber-boss slams China's bug-hoarding laws

The Register - Mon, 15/07/2024 - 01:03
Plus: Japanese scientists ID ancient supernova; AWS dismisses China trouble rumor; and more

ASIA IN BRIEF  The interim CEO of the UK's National Cyber Security Centre (NCSC) has criticized China's approach to bug reporting.…

Categories: News

Three words to send a chill down your spine: Snowflake. Intrusion. Alert

The Register - Sat, 13/07/2024 - 16:04
And can AI save us from the scourge of malware? In theory, why not, but in practice ... Color us skeptical

Kettle  For this week's Kettle episode, in which our journos as usual get together for an end-of-week chat about the news, it's security, security, security.…

Categories: News

Car dealer software slinger CDK Global said to have paid $25M ransom after cyberattack

The Register - Sat, 13/07/2024 - 00:53
15K dealerships take estimated $600M+ hit

CDK Global reportedly paid a $25 million ransom in Bitcoin after its servers were knocked offline by crippling ransomware.…

Categories: News

White House urged to double check Microsoft isn't funneling AI to China via G42 deal

The Register - Fri, 12/07/2024 - 21:22
Windows maker insisted everything will be locked down and secure – which given its reputation, uh-oh!

Two House committee chairs have sent a public letter to the White House asking it to look into a deal between AI R&D outfit G42 and Microsoft.…

Categories: News

CISA broke into a US federal agency, and no one noticed for a full 5 months

The Register - Fri, 12/07/2024 - 19:01
Red team exercise revealed a score of security fails

The US Cybersecurity and Infrastructure Security Agency (CISA) says a red team exercise at a certain unnamed federal agency in 2023 revealed a string of security failings that exposed its most critical assets.…

Categories: News

Identity: the new security perimeter

The Register - Fri, 12/07/2024 - 15:25
What to do when your MFA is mercilessly attacked by hackers

Webinar  Threat actors are always looking for that easy way in by testing weak spots, and user identities are one of their favourite targets.…

Categories: News

Break-in at 'third-party cloud platform' leaked 110M customer records, says AT&T

The Register - Fri, 12/07/2024 - 15:09
Snowflake? Snowflake

AT&T has admitted that cyberattackers grabbed a load of its data for the second time this year, and if you think the first haul was big you haven't seen anything: This one includes data on "nearly all" AT&T wireless customers - and those served by mobile virtual network operators (MVNOs) running on AT&T's network. …

Categories: News

Singapore's banks to ditch texted one-time passwords

The Register - Fri, 12/07/2024 - 04:30
Accessibility be damned, preventing phishing is the priority

After around two decades of allowing one-time passwords (OTPs) delivered by text message to assist log ins to bank accounts in Singapore, the city-state will abandon the authentication technique.…

Categories: News

China's APT41 crew adds a stealthy malware loader and fresh backdoor to its toolbox

The Register - Fri, 12/07/2024 - 02:29
Meet DodgeBox, son of StealthVector

Chinese government-backed cyber espionage gang APT41 has very likely added a loader dubbed DodgeBox and a backdoor named MoonWalk to its malware toolbox, according to cloud security service provider Zscaler’s ThreatLabz research team.…

Categories: News

'Gay furry hackers' say they've disbanded after raiding Project 2025's Heritage Foundation

The Register - Fri, 12/07/2024 - 01:22
Ultra-conservative org funnily enough not ready to turn the other cheek

After claiming to break into a database belonging to The Heritage Foundation, and then leaking 2GB of files belonging to the ultra-conservative think tank, the hacktivist crew SiegedSec claims to have disbanded. …

Categories: News

OpenSSH bug leaves RHEL 9 and the RHELatives vulnerable

The Register - Thu, 11/07/2024 - 20:13
Newly discovered flaw affects OpenSSH 8.7 and 8.8 daemon

The founder of Openwall has discovered a new signal handler race condition in the core sshd daemon used in RHEL 9.x and its various offshoots.…

Categories: News

Advance Auto Parts: 2.3M people's data accessed when crims broke into our Snowflake account

The Register - Thu, 11/07/2024 - 14:15
Letters from CISO Ethan Steiger suggest the data related to job applications

Advance Auto Parts' CISO just revealed for the first time the number of individuals affected when criminals broke into its Snowflake instance – a hefty 2.3 million.…

Categories: News

Privacy expert put away for 9 years after 'grotesque' cyberstalking campaign

The Register - Thu, 11/07/2024 - 11:29
Scumbag targeted many victims – and those who tried to help them

A scumbag who used to work as a privacy consultant has been put behind bars for nine years for a "grotesque" cyberstalking campaign against more than a dozen victims.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News