News

Street newspaper appears to have Big Issue with Qilin ransomware gang

The Register - Wed, 27/03/2024 - 11:00
The days of cybercriminals having something of a moral compass are over

The parent company of The Big Issue, a street newspaper and social enterprise for homeless people, is wrestling with a cybersecurity incident claimed by the Qilin ransomware gang.…

Categories: News

The easy road to pervasive DLP

The Register - Wed, 27/03/2024 - 03:16
How Forcepoint Data Security Everywhere does what it says on the tin

Sponsored Post  The coronavirus pandemic appears to have changed the employment landscape forever, with estimates suggesting that up to a quarter of staff still spend some of their working week outside of the office compared to just 6 percent prior to 2020.…

Categories: News

Uncle Sam's had it up to here with 'unforgivable' SQL injection flaws

The Register - Tue, 26/03/2024 - 16:45
Software slackers urged to up their game

The US has clearly had enough of software vendors shipping products with "unforgivable" vulnerabilities, and is now urging them to launch formal code reviews to stamp out SQL injection flaws.…

Categories: News

Ransomware can mean life or death at hospitals, but DEF CON hackers have a plan

The Register - Tue, 26/03/2024 - 13:15
ARPA-H joins the challenge, adds $20M to cash rewards

Interview  As ransomware gangs target critical infrastructure – especially hospitals and other healthcare organizations – DARPA has added another government agency partner to its Artificial Intelligence Cyber Challenge (AIxCC).…

Categories: News

FreeBSD Foundation hands out Beacon gongs for safer software

The Register - Tue, 26/03/2024 - 10:15
Multiple CHERI-related projects win money for important research that prizes safety over speed

The inaugural Beacon Awards has handed three prizes to projects working on safer software for CHERI-enabled hardware running on the CheriBSD operating system.…

Categories: News

UK elections are unaffected by China's cyber-interference, says deputy PM

The Register - Tue, 26/03/2024 - 09:30
Sanctions galore for APT31, which has been blamed for two major attacks on democracy

The UK's deputy prime minister, Oliver Dowden, says China has been unsuccessful in its attempts to undermine UK elections.…

Categories: News

Row breaks out over true severity of two DNSSEC flaws

The Register - Tue, 26/03/2024 - 08:24
Some of us would be happy being rated 7.5 out of 10, just sayin'

Two DNSSEC vulnerabilities were disclosed last month with similar descriptions and the same severity score, but they are not the same issue.…

Categories: News

New Zealand to world: China attacked us, too!

The Register - Tue, 26/03/2024 - 03:30
Reveals 2021 incident that saw parliamentary agencies briefly probed

The government of South Pacific island nation New Zealand has revealed that it, too, has been attacked by China.…

Categories: News

US charges Chinese nationals with cyber-spying on pretty much everyone for Beijing

The Register - Mon, 25/03/2024 - 22:15
Plus: Alleged front sanctioned, UK blames PRC for Electoral Commission theft, and does America need a Cyber Force?

The United States on Monday accused seven Chinese men of breaking into computer networks, email accounts, and cloud storage belonging to numerous critical infrastructure organizations, companies, and individuals, including US businesses, politicians, and their political parties.…

Categories: News

Over 170K users caught up in poisoned Python package ruse

The Register - Mon, 25/03/2024 - 18:00
Supply chain attack targeted GitHub community of Top.gg Discord server

More than 170,000 users are said to have been affected by an attack using fake Python infrastructure with "successful exploitation of multiple victims."…

Categories: News

Tech trade union confirms cyberattack behind IT, email outage

The Register - Mon, 25/03/2024 - 15:31
Systems have been pulled offline as a precaution

Exclusive  The Communications Workers Union (CWU), which represents hundreds of thousands of employees in sectors across the UK economy including tech and telecoms, is currently working to mitigate a cyberattack.…

Categories: News

Mozilla fixes $100,000 Firefox zero-days following two-day hackathon

The Register - Mon, 25/03/2024 - 15:00
Users may have to upgrade twice to protect their browsers

Mozilla has swiftly patched a pair of critical Firefox zero-days after a researcher debuted them at a Vancouver cybersec competition.…

Categories: News

GoFetch security exploit can't be disabled on M1 and M2 Apple chips

The Register - Mon, 25/03/2024 - 14:30
For now, cryptographic work should be run on slower Icestorm cores

The GoFetch vulnerability found on Apple M-series and Intel Raptor Lake CPUs has been further unpacked by the researchers who first disclosed it.…

Categories: News

Time to examine the anatomy of the British Library ransomware nightmare

The Register - Mon, 25/03/2024 - 09:30
Mistakes years in the making tell a universal story that must not be ignored

Opinion  Quiz time: name one thing you know about the Library of Alexandria. Points deducted for "it’s a library. In Alexandria." Looking things up is cheating and you know it.…

Categories: News

That Asian meal you eat on holidays could launder money for North Korea

The Register - Mon, 25/03/2024 - 06:32
United Nations finds IT contract and crypto scams are just two of DPRK's illicit menu items

If you dine out at an Asian restaurant on your next holiday, the United Nations thinks your meal could help North Korea to launder money.…

Categories: News

Microsoft confirms memory leak in March Windows Server security update

The Register - Mon, 25/03/2024 - 01:15
ALSO: Viasat hack wiper malware is back, users are the number one cause of data loss, and critical vulns

Infosec in brief  If your Windows domain controllers have been crashing since a security update was installed earlier this month, there's no longer any need to speculate why: Microsoft has admitted it introduced a memory leak in its March patches and fixed the issue.…

Categories: News

Some 300,000 IPs vulnerable to this Loop DoS attack

The Register - Sun, 24/03/2024 - 18:37
Easy to exploit, not yet exploited, not widely patched – pick three

As many as 300,000 servers or devices on the public internet are thought to be vulnerable right now to the recently disclosed Loop Denial-of-Service technique that works against some UDP-based application-level services.…

Categories: News

Vans claims cyber crooks didn't run off with its customers' financial info

The Register - Sun, 24/03/2024 - 10:08
Just 35.5M names, addresses, emails, phone numbers … no biggie

Clothing and footwear giant VF Corporation is letting 35.5 million of its customers know they may find themselves victims of identity theft following last year's security breach.…

Categories: News

Russia's Cozy Bear caught phishing German politicos with phony dinner invites

The Register - Sat, 23/03/2024 - 07:51
Forget the Riesling, bring on the WINELOADER

The Kremlin's cyberspies targeted German political parties in a phishing campaign that used emails disguised as dinner party invitations, according to Mandiant.…

Categories: News

Chinese snoops use F5, ConnectWise bugs to sell access into top US, UK networks

The Register - Fri, 22/03/2024 - 22:02
Crew may well be working under contract for Beijing

Chinese spies exploited a couple of critical-severity bugs in F5 and ConnectWise equipment earlier this year to sell access to compromised US defense organizations, UK government agencies, and hundreds of other entities, according to Mandiant.…

Categories: News

Pages

Subscribe to Sec Tec Limited aggregator - News