Heineken says there’s no free beer, warns of phishing scam

The Register - Wed, 15/06/2022 - 20:24
WhatsApp messages possibly the worst Father's Day present in the world

There's no such thing as free beer for Father's Day — at least not from Heineken. The brewing giant confirmed that a contest circulating on WhatsApp, which promises a chance to win one of 5,000 coolers full of green-bottled lager, is a frothy fraud.…

Categories: News

Microsoft continues cyber security spending spree with Miburo buy

The Register - Wed, 15/06/2022 - 16:30
Brains to be added to the Customer Security and Trust in defense against 'foreign adversaries'

Microsoft has opened its wallet once more to pick up New York-based cyber-threat analyst Miburo.…

Categories: News

Malaysia-linked DragonForce hacktivists attack Indian targets

The Register - Wed, 15/06/2022 - 05:44
Just what we needed: a threat to rival Anonymous

A Malaysia-linked hacktivist group has attacked targets in India, seemingly in reprisal for a representative of the ruling Bharatiya Janata Party (BJP) making remarks felt to be insulting to the prophet Muhammad.…

Categories: News

Unpatched Exchange server, stolen RDP logins... How miscreants get BlackCat ransomware on your network

The Register - Wed, 15/06/2022 - 04:40
Microsoft details this ransomware-as-a-service

Two of the more prolific cybercriminal groups, which in the past have deployed such high-profile ransomware families as Conti, Ryuk, REvil and Hive, have started adopting the BlackCat ransomware-as-as-service (RaaS) offering.…

Categories: News

Microsoft fixes under-attack Windows zero-day Follina

The Register - Wed, 15/06/2022 - 04:02
Plus: Intel, AMD react to Hertzbleed data-leaking holes in CPUs

Patch Tuesday  Microsoft claims to have finally fixed the Follina zero-day flaw in Windows as part of its June Patch Tuesday batch, which included security updates to address 55 vulnerabilities.…

Categories: News

Former US state agency CIO, IT exec plead guilty to bribery and extortion scheme

The Register - Wed, 15/06/2022 - 01:37
Pair's multimillion-dollar contract caper unraveled

A former Maryland Cabinet-level official and a former IT executive have pleaded guilty to involvement in a bribery and extortion scheme related to technology contracts about a decade ago.…

Categories: News

Cloudflare says it thwarted record-breaking HTTPS DDoS flood

The Register - Wed, 15/06/2022 - 00:44
26m requests a second? Not legit traffic, not even Bill Gates doing $1m giveaways could manage that

Cloudflare said it this month staved off another record-breaking HTTPS-based distributed denial-of-service attack, this one significantly larger than the previous largest DDoS attack that occurred only two months ago.…

Categories: News

Man gets two years in prison for selling 200,000 DDoS hits

The Register - Tue, 14/06/2022 - 20:29
Over 2,000 customers with malice on their minds

A 33-year-old Illinois man has been sentenced to two years in prison for running websites that paying customers used to launch more than 200,000 distributed denial-of-services (DDoS) attacks.…

Categories: News

Azure issues not adequately fixed for months, complain bug hunters

The Register - Tue, 14/06/2022 - 14:30
Redmond kicks off Patch Tuesday with a months-old flaw fix

Two security vendors – Orca Security and Tenable – have accused Microsoft of unnecessarily putting customers' data and cloud environments at risk by taking far too long to fix critical vulnerabilities in Azure.…

Categories: News

UK health privacy watchdog still in talks over who is accessing country's COVID data store

The Register - Tue, 14/06/2022 - 11:13
Over a year after discussions began, National Data Guardian continues to pursue transparency in health data use

More than two years after England launched a COVID data store, keeping details of National Health Service (NHS) patients, the country's National Data Guardian (NDG) remains unsatisfied with who is accessing the data.…

Categories: News

Inside the RSAC expo: Buzzword bingo and the bear in the room

The Register - Tue, 14/06/2022 - 08:28
We mingle with the vendors so you don't have to

RSA Conference  Your humble vulture never liked conference expos – even before finding myself on the show floor during a global pandemic. Expo halls are a necessary evil that are predominatly visited to find gifts to bring home to the kids. …

Categories: News

Chinese-sponsored gang Gallium upgrades to sneaky PingPull RAT

The Register - Tue, 14/06/2022 - 07:27
Broadens targets from telecoms to finance and government orgs

The Gallium group, believed to be a Chinese state-sponsored team, is going on the warpath with an upgraded remote access trojan (RAT) that threat hunters say is difficult to detect.…

Categories: News

HelloXD ransomware bulked up with better encryption, nastier payload

The Register - Mon, 13/06/2022 - 18:30
Russian-based group doubles the extortion by exfiltrating the corporate data before encrypting it.

Windows and Linux systems are coming under attack by new variants of the HelloXD ransomware that includes stronger encryption, improved obfuscation and an additional payload that enables threat groups to modify compromised systems, exfiltrate files and execute commands.…

Categories: News

OMIGOD: Cloud providers still using secret middleware

The Register - Sat, 11/06/2022 - 12:00
All the news you may have missed from RSA this week

RSA Conference in brief  Researchers from Wiz, who previously found a series of four serious flaws in Azure's Open Management Infrastructure (OMI) agent dubbed "OMIGOD," presented some related news at RSA: Pretty much every cloud provider is installing similar software "without customer's awareness or explicit consent."…

Categories: News

World Economic Forum wants a global map of online crime

The Register - Fri, 10/06/2022 - 22:27
Will cyber crimes shrug off Atlas Initiative? Objectively, yes

RSA Conference  An ambitious project spearheaded by the World Economic Forum (WEF) is working to develop a map of the cybercrime ecosystem using open source information.…

Categories: News

Threat and risk specialists signal post-COVID conference season is back on

The Register - Fri, 10/06/2022 - 20:25
Well, we'll see in a week or so

RSA Conference  For the first time in over two years the streets of San Francisco have been filled by attendees at the RSA Conference and it seems that the days of physical cons are back on.…

Categories: News

Symbiote Linux malware spotted, and infections are 'very hard to detect'

The Register - Fri, 10/06/2022 - 15:50
'Performing live forensics on an infected machine may not turn anything up' warn researchers

Intezer security researcher Joakim Kennedy and the BlackBerry Threat Research and Intelligence Team have analyzed an unusual piece of Linux malware they say is unlike most seen before - it isn't a standalone executable file.…

Categories: News

Apple M1 chip contains hardware vulnerability that bypasses memory defense

The Register - Fri, 10/06/2022 - 12:00
MIT CSAIL boffins devise PACMAN attack to let existing exploits avoid pointer authentication

Apple's M1 chip has been found to contain a hardware vulnerability that can be abused to disable one of its defense mechanisms against memory corruption exploits, giving such attacks a greater chance of success.…

Categories: News

Emotet malware gang re-emerges with Chrome-based credit card heistware

The Register - Fri, 10/06/2022 - 08:57
Crimeware groups are re-inventing themselves

The criminals behind the Emotet botnet – which rose to fame as a banking trojan before evolving into spamming and malware delivery – are now using it to target credit card information stored in the Chrome web browser.…

Categories: News

Chinese 'Aoqin Dragon' gang runs undetected ten-year espionage spree

The Register - Fri, 10/06/2022 - 05:58
Researcher spots it targeting Asian government and telco targets, probably with Beijing's approval

Threat researcher Joey Chen of Sentinel Labs says he's spotted a decade worth of cyber attacks he's happy to attribute to a single Chinese gang.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News