News

Good luck to Atos' 7th CEO and its latest biz transformation

The Register - Fri, 16/05/2025 - 12:17
We suspect Philippe Salle will need it, not to mention staff and customers

If at first you don't succeed, transform, transform, and transform again is the corporate motto at Atos these days. The lumbering French-based megacorp has created another blueprint to return to its glory days, and it includes job cuts, offshoring and... AI.…

Categories: News

From hype to harm: 78% of CISOs see AI attacks already

The Register - Fri, 16/05/2025 - 10:00
AI attacks are keeping most practitioners up at night, says Darktrace, and with good reason

Sponsored feature  From the written word through to gunpowder and email, whenever an enabling technology comes along, you can be sure someone will be ready to use it for evil. Most tech is dual-use, and AI is no exception.…

Categories: News

Scammers are deepfaking voices of senior US government officials, warns FBI

The Register - Fri, 16/05/2025 - 01:16
They're smishing, they're vishing

The FBI has warned that fraudsters are impersonating "senior US officials" using deepfakes as part of a major fraud campaign.…

Categories: News

DoorDash scam used fake drivers, phantom deliveries to bilk $2.59M

The Register - Fri, 16/05/2025 - 00:14
Entire process took less than five minutes, prosecutors say

A former DoorDash driver has pleaded guilty to participating in a $2.59 million scheme that used fake accounts, insider access to reassign orders, and bogus delivery reports to trigger payouts for food that was never delivered.…

Categories: News

Cyber fiends battering UK retailers now turn to US stores

The Register - Thu, 15/05/2025 - 18:27
DragonForce-riding ransomware ring also has 'shiny object syndrome' so will likely move on to another sector soon

Interview  The same miscreants behind recent cyberattacks on British retailers are now trying to dig their claws into major American retailers' IT environments – and in some cases even deploying ransomware, according to Google.…

Categories: News

Coinbase extorted for $20M. Support staff bribed. Customers scammed. One hell of a breach disclosure…

The Register - Thu, 15/05/2025 - 17:31
One expert tells us: 'It is the most unique breach disclosure I've ever seen'

Coinbase says some of its overseas support staff were paid off to steal information on behalf of cybercriminals, and the company is now being extorted for $20 million.…

Categories: News

Socket buys Coana to tell you which security alerts you can ignore

The Register - Thu, 15/05/2025 - 16:31
Sometimes, less information is more

In its latest gambit to reduce the noise of unnecessary security alerts, Socket has acquired Coana, a startup founded in 2022 by researchers from Aarhus University in Denmark that tells users which vulnerabilities they can safely ignore.…

Categories: News

Snowflake CISO on the power of 'shared destiny' and 'yes and'

The Register - Thu, 15/05/2025 - 14:32
Lessons learned from last year's security snafu

interview  Being the chief information security officer at Snowflake is never an easy job, but last spring it was especially challenging.…

Categories: News

Here's what we know about the DragonForce ransomware that hit Marks & Spencer

The Register - Thu, 15/05/2025 - 07:32
Would you believe it, this RaaS cartel says Russia is off limits

DragonForce, a new-ish ransomware-as-a-service operation, has given organizations another cyber threat to worry about — unless they’re in Russia, which is off limits to the would-be extortionists.…

Categories: News

Metal maker meltdown: Nucor stops production after cyber-intrusion

The Register - Wed, 14/05/2025 - 21:40
Ransomware or critical infra hit? Top US manufacturer maintains steely silence

Nucor, the largest steel manufacturer in the US, shut down production operations after discovering its servers had been penetrated.…

Categories: News

Why CVSS is failing us and what we can do about it

The Register - Wed, 14/05/2025 - 19:15
How Adversarial Exposure Validation is changing the way we approach vulnerability management

Partner content  Two decades ago, CVSS revolutionized vulnerability management, enabling security teams to speak a common language when measuring and prioritizing risks posed by the vulnerability to the affected asset. However, today, the same tool that once guided us in the right direction is holding us back.…

Categories: News

Uncle Sam pulls $2.4B Leidos deal to support CISA after rival alleges foul play

The Register - Wed, 14/05/2025 - 18:40
Nightwing claims insider intel helped secure lucrative CISA work but US says decision is unrelated

The Department of Homeland Security (DHS) scrapped a highly lucrative cybersecurity contract originally awarded to Leidos following a legal challenge from rival bidder Nightwing, yet insists the pushback had nothing to do with it.…

Categories: News

Ivanti patches two zero-days under active attack as intel agency warns customers

The Register - Wed, 14/05/2025 - 17:29
Vendor says vulns are linked with 2 mystery open source libraries integrated into EPMM product

Australia's intelligence agency is warning organizations about several new Ivanti zero-days chained for remote code execution (RCE) attacks. The vendor itself has said the vulns are linked to two mystery open source libraries which it declined to name.…

Categories: News

Meta's still violating GDPR rules with latest plan to train AI on EU user data, says noyb

The Register - Wed, 14/05/2025 - 16:34
'Legitimate interest' won't wash, says privacy outfit, as Zuck's org claims activists want to 'delay AI innovation'

There's a Max Schrems-shaped object standing in the way of Meta's plans to train its AI on the data of its European users, and he's come armed with several justifications for why Zuckercorp might be violating EU regulations with its stated plans. …

Categories: News

VPN Secure parent company CEO explains why he had to axe thousands of 'lifetime' deals

The Register - Wed, 14/05/2025 - 15:17
Admits due diligence fell short - furious users cry ‘gaslighting’

Customers are blasting VPN Secure's new parent company after it abruptly axed thousands of "lifetime" accounts. The reason? The CEO admits in an interview with The Register that his team didn't dig deep enough before acquiring the virtual private network outfit, and simply can't afford to honor those legacy deals.…

Categories: News

Go ahead and ignore Patch Tuesday – it might improve your security

The Register - Wed, 14/05/2025 - 13:19
No rush, according to Gartner chap who says: 'Nobody has ever out-patched threat actors at scale'

Patch Tuesday has rolled around again, but if you don't rush to implement the feast of fixes it delivered, your security won't be any worse off in the short term – and may improve in the future.…

Categories: News

Everyone's deploying AI, but no one's securing it – what could go wrong?

The Register - Wed, 14/05/2025 - 10:26
Crickets as senior security folk asked about risks at NCSC conference

CYBERUK  Peter Garraghan – CEO of Mindgard and professor of distributed systems at Lancaster University – asked the CYBERUK audience for a show of hands: how many had banned generative AI in their organizations? Three hands went up.…

Categories: News

Ransomware scum have put a target on the no man's land between IT and operations

The Register - Wed, 14/05/2025 - 07:33
Defenses are weaker, and victims are more likely to pay, SANS warns

Criminals who attempt to damage critical infrastructure are increasingly targeting the systems that sit between IT and operational tech.…

Categories: News

Apple patched one first, but Microsoft’s blasted five exploited flaws this Pa-Tu

The Register - Wed, 14/05/2025 - 01:44
Plus: All the fun and frolic of fixes from Adobe, SAP, Ivanti

Patch Tuesday  It's that time of the month again, and Microsoft has made it extra spicy by revealing five flaws it says are under active exploitation – but rates as important rather than critical fixes.…

Categories: News

Intel's data-leaking Spectre defenses scared off yet again

The Register - Tue, 13/05/2025 - 22:15
ETH Zurich boffins exploit branch prediction race condition to steal info from memory, fixes have mild perf hit

Researchers at ETH Zurich in Switzerland have found a way around Intel's defenses against Spectre, a family of data-leaking flaws in the x86 giant's processor designs that simply won't die.…

Categories: News

Pages

Subscribe to Sec Tec Limited aggregator - News