News
Zero-day deja vu as another Cisco IOS bug comes under attack
Cisco has confirmed a new IOS and IOS XE zero-day, the latest in a string of flaws that attackers have been quick to weaponize.…
EU starting registration of fingerprints and faces for short-stay foreigners
Travelers including Britons and Americans visiting most European countries will have to register their fingerprints and faces under a system that goes live next month.…
Empty shelves, empty coffers: Co-op pegs cyber hit at £80m
The Co-operative Group has revealed the cyberattack that knocked its systems offline earlier this year will leave it nursing an £80 million hangover. …
Check your own databases before asking to see our passport photos, Home Office tells UK cops
The Home Office has told police forces to check their own photo databases before asking it to search its libraries of passport and visa facial images, as well as avoiding urgent requests "unless it is absolutely necessary."…
Three in four European companies are hooked on US tech
Partner Content What happens when your company's future depends on a service controlled by another country that loves trade fights, tariffs, and industrial-scale surveillance? That's the risk for European businesses relying on American providers; a single political move can disrupt operations overnight.…
New string of phishing attacks targets Python developers
The Python Software Foundation warned users of a new string of phishing attacks using a phony Python Package Index (PyPI) website and asking victims to verify their account or face suspension, and advised anyone who did provide their credentials to change their password "immediately."…
Google warns China-linked spies lurking in 'numerous' enterprises since March
Unknown intruders – likely China-linked spies – have broken into "numerous" enterprise networks since March and deployed backdoors, providing access for their long-term IP and other sensitive data stealing missions, all the while remaining undetected on average for 393 days, according to Google Threat Intelligence.…
UK agency makes arrest in airport cyberattack investigation
Breaking The UK's National Crime Agency has arrested a man as part of an investigation into a ransomware attack that disrupted airports around the world last weekend.…
Cybercriminals cash out with casino giant's employee data
Hotel and casino operator Boyd Gaming has disclosed a cyberattack to US regulators, warning that hackers may have stolen personal information belonging to employees and other individuals.…
Campaigners urge UK PM Starmer to dump digital ID wheeze before it's announced
Seven campaign groups have written to UK prime minister Keir Starmer urging him to scrap plans for a mandatory digital identity system – a project that is expected to be announced imminently, as part an effort to tackle unauthorized migration.…
Politicos: ‘There is a good strong case for government intervention’ on JLR cyberattack
The chair of the UK's business and trade committee says the situation at Jaguar Land Rover is likely to get "harder and harder over the next week or two," but stopped short of confirming that the government might intervene with financial support.…
Nearly half of businesses suffered deepfaked phone calls against staff
A survey of cybersecurity bosses has shown that 62 percent reported attacks on their staff using AI over the last year, either by the use of prompt injection attacks or faking out their systems using phony audio or video generated by AI.…
SonicWall releases rootkit-busting firmware update following wave of attacks
SonicWall on Monday released a firmware update that the security vendor says will remove rootkit malware deployed in recent attacks targeting Secure Mobile Access (SMA) 100 appliances.…
Third time's the charm? SolarWinds (again) patches critical Web Help Desk RCE
SolarWinds on Tuesday released a hotfix - again - for a critical, 9.8-severity flaw in its Web Help Desk IT ticketing software that could allow a remote, unauthenticated attacker to run commands on a host machine. …
OnePlus leaves researchers on read over Android bug that exposes texts
Security researchers report that OnePlus smartphone users remain vulnerable to a critical bug that allows any application to read SMS and MMS data — a flaw that has persisted since late 2021.…
SIM city: Feds say 100,000-card farms could have killed cell towers in NYC
The US Secret Service has dismantled a network of SIM farms in and around New York City it claims was behind multiple incidents targeting senior government officials and had enough power to disrupt entire cellular networks.…
Kaspersky: RevengeHotels checks back in with AI-coded malware
Kaspersky has raised the alarm over the resurgence of hotel-hacking outfit "RevengeHotels," which it claims is now using artificial intelligence to supercharge its scams.…
OpenSSF warns that open source infrastructure doesn't run on thoughts and prayers
The Open Source Security Foundation (OpenSSF) has had enough of being the unpaid janitor of the world's software supply chain.…
GitHub moves to tighten npm security amid phishing, malware plague
GitHub, which owns the npm registry for JavaScript packages, says it is tightening security in response to recent attacks.…
Oracle gets to store US users' TikTok data, says Trump
The White House has promised that all US user data on TikTok will be stored on Oracle servers in the United States, according to a deal to be announced later this week.…
Pages
