News

Government officials say they are monitoring the situation

A major supplier of healthcare equipment to the UK's National Health Service and local councils is on the verge of collapse 16 months after falling victim to cyber criminals.…

UK's Online Safety Act kicks off about as well as everyone expected

Analysis  With the UK's Online Safety Act (OSA) now in effect, it was only a matter of time before tech-savvy under-18s figured out how to bypass the rules and regain access to adult content.…

Italian operator calls for lawmakers to wake up to the critical role played by peering

Internet Exchange Points are an underappreciated resource that all internet users rely on, but governments have unfortunately ignored them, despite their status as critical infrastructure.…

Infosec issues spill into the real world and regional politics

Analysis  Thai and Cambodian tensions relating to issues including cybersecurity concerns boiled over into a kinetic skirmish at the border last week.…

Few passengers are told they can opt out, and when they do, airport staff may push back

US lawmakers are trying to extend the use of facial recognition at airports, despite many airline passengers objecting to the practice.…

IBM report shows a rush to embrace technology without safeguarding it, and as for governance...

Organizations rushing to implement AI are neglecting security and governance, IBM claims, with attackers already taking advantage of lax protocols to target models and applications.…

Read-only in weeks, deleted forever in months

Dropbox has given users of its password manager until the end of October to extract their data before pulling the plug on the service.…

'This was a deliberate, coordinated, digital attack'

Minnesota Governor Tim Walz has activated the state's National Guard and declared a state of emergency in response to a cyberattack on the city of Saint Paul.…

The lure? Identity security and privileged access management tools to verify humans and... machines

Palo Alto Networks will buy Israeli security biz CyberArk in a $25 billion cash-and-stock deal confirmed today.…

Distie insists global operations restored despite some websites only now coming back online

The cybercriminals claiming responsibility for Ingram Micro's ransomware attack put a deadline on leaking its data nearly a month after the raid.…

The security nerds' equivalent of the Epstein files saga

The US Cybersecurity and Infrastructure Security Agency on Tuesday finally agreed to make public an unclassified report from 2022 about American telecommunications networks' poor security practices.…

New malware, even better social engineering chops

The FBI and a host of international cyber and law enforcement agencies on Tuesday warned that Scattered Spider extortionists have changed their tactics and are now breaking into victims' networks using savvier social engineering techniques, searching for organizations' Snowflake database credentials, and deploying a handful of new ransomware variants, most recently DragonForce.  …

5 V-tolerant GPIO opens the way to some intriguing retro-nerdery

The Raspberry Pi team has released an update to the RP2350 microcontroller with bug fixes, hardening, and a GPIO tweak that will delight retro hardware enthusiasts.…

Troopers to swap radios for Turtle Beaches in preparation for ‘21st century challenges’

The UK's Ministry of Defence (MoD) is doubling down on its endorsement of esports by tasking the British Esports Federation to establish a new tournament to upskill existing servicepeople in the digital skirmishes.…

Look over there!

Amidst its own failure to fix a couple of bugs now under mass exploitation and being abused for espionage, data theft, and ransomware infections, Microsoft said Monday that it spotted a macOS vulnerability some months ago that could allow attackers to steal private data. Redmond reported the bug to Cupertino, which issued a fix back in March.…

Plus, 60% don't have enough analysts to make sense of it

Too many threats, too much data, and too few skilled security analysts are making companies more vulnerable to cyberattacks, according to the IT and security leaders tasked with protecting these organizations from digital threats.…

No word on who's behind it, but attack has hallmarks of the usual suspects

Financial services biz Allianz says the majority of customers of one of its North American subsidiaries had their data stolen in a cyberattack.…

Russia's top airline cancels 49 flights, delays affect many more

Russia's largest airline, Aeroflot, canceled numerous flights on Monday morning following what it says was a failure in its IT systems - something hacktivists are claiming responsiblity for.…

Plus, leak site for BlackSuit seized, Tea spilt, and avoid crime if you've got a famous dad

Infosec in brief  A computer intrusion hit the US spy satellite agency, but officials insist no classified secrets were lost - just some unclassified ones, apparently.…

Surveillance-based pricing? Two lawmakers say enough

Two Democratic members of Congress, Greg Casar (D-TX) and Rashida Tlaib (D-MI,) have introduced legislation in the US House of Representatives to ban the use of AI surveillance to set prices and wages.…