News

Security upstart NS8, which raised $123m in funding, let its leader have sole control over revenue records

The Feds on Thursday charged the head of a cyber-fraud prevention company with fraud in a complaint unsealed in a New York City court.…

Unless the Orange One steps in to save the day. Fancy that!

The US Department of Commerce has threatened to ban new downloads of Chinese-owned social media platforms Tiktok and Wechat from app stores this weekend.…

So says Check Point, piecing together Telegram-busting malware clues

Infosec outfit Check Point says it has uncovered a six-year Iranian cyber-spying campaign directed at expats and dissidents worldwide.…

Extortionware is bad but it never killed anyo... never mind

A woman in Germany died after a ransomware infection prevented her hospital from giving emergency treatment.…

It starts with a backpack of $200 of electronics and poor Wi-Fi security

The US Department of the Interior (DoI) spectacularly failed its latest computer security assessment, mostly for a lack of Wi-Fi defenses.…

Telecom kit maker points finger in the general direction of Middle Kingdom's complicated supply chain

Hardware video encoders from multiple suppliers contain several critical security bugs that allow a remote unauthenticated miscreant to run arbitrary code on the equipment.…

Never mind real-world viruses, get your networks into lockdown ASAP

GCHQ offshoot the National Cyber Security Centre has warned Further and Higher Education institutions in the UK to be on their guard against ransomware attacks as the new academic year (sort of) gets under way.…

And why it's what you need amid an explosive demand for IT services as a result of an increasingly distributed workforce

Sponsored  The Intel vPro® platform has been around for over a decade as the company’s official branding for business-grade laptops and desktops, combining specific technologies and enhancements that differentiate vPro platforms from those that may have comparable specifications but are otherwise essentially consumer hardware.…

F-Secure gives its take on the first half of 2020 in internet scumminess

Coronavirus-themed malicious emails were the standout feature of online naughtiness in the first half of 2020, according to infosec firm F-Secure – though overall volumes of phishing did decrease a touch.…

Phishers claimed to be from 'National Health Commission', which exists in mainland China but not Taiwan

Taiwan's CERT detected cyber-crooks impersonating medical authorities to attack the country's tech industry during the early stages of the COVID pandemic.…

Ugly: And it's all about video game robberies at this stage

Two people have been arrested in Malaysia as part of America's crackdown on the Chinese government's hackers.…

Please just patch your infrastructure, begs US-CISA

Where Chinese hackers exploit, Iranians aren’t far behind. So says the US Cybersecurity and Infrastructure Security Agency, which is warning that malicious persons from Iran are exploiting a slew of vulns in VPN products from Citrix, F5 Networks and Pulse Secure.…

Erm ... guys ... have you looked at recent patch counts? (We have: you issued 372 this quarter, 54 critical)

Microsoft has open-sourced the fuzzing tool it uses to scour its own code for potential security vulnerabilities.…

And have you tried simply asking hackers to not hack?

The NSA has published online a guide for IT admins to keep systems free of bootkits and rootkits.…

No way to sugarcoat this: New York AG eclairs the 2015 data theft matter settled

Dunkin' Donuts today settled a lawsuit in which it was accused of hushing up the fact hackers siphoned its customers' personal information from its systems in 2015.…

Video platform is not for under-13s, insists spokesman

A campaign group is suing Google for up to £2.5bn over claims that YouTube breaks EU data protection laws by harvesting information about children under 13 – and is hoping to turn it into a UK class-action-style case.…

Nearly 2,000 e-commerce shops pwned over weekend so it's time to migrate

Thousands of e-commerce stores built using Magento 1 have been poisoned with malicious code that steals customers' bank card information as they enter their details to order stuff online.…

Tune in online this month and learn how to keep them at bay

Webcast  Working from home may have turned your life upside down, but for hackers, cyber-criminals and other bad actors, it’s all been business as usual.…

Compiling using open source intel and hailed as showing extent of China’s surveillance activities

A US academic has revealed the existence of 2.4-million-person database he says is compiled by a Chinese company known to supply intelligence, military, and security agencies. The academic alleges the purpose of the database is enabling overseas influence operations to be conducted against prominent or influential people outside China.…

Probing systems during a live election 'to be treated as hostile unless authorization granted,' Voatz insists

About 70 members of the computer security community on Monday challenged US voting app maker Voatz's effort to dictate the terms under which bug hunters can look for code flaws.…