Super-spreader FluBot squashed by Europol

The Register - Thu, 02/06/2022 - 09:03
Your package is delayed. Click this innocent-looking link to reschedule

FluBot, the super-spreader Android malware that infected tens of thousands of phones globally, has been reportedly squashed by an international law enforcement operation.…

Categories: News

ExpressVPN moves servers out of India to escape customer data retention law

The Register - Thu, 02/06/2022 - 06:58
Privacy service will keep working, just beyond the reach of India's government

Virtual private network operator ExpressVPN will pull its servers from India, citing the impossibility of complying with the nation's incoming requirement to record users' identities and activities.…

Categories: News

US ran offensive cyber ops to support Ukraine, says general

The Register - Thu, 02/06/2022 - 02:01
Public acknowledgement 'unusual', one cybersec exec tells us

America's military conducted offensive cyber operations to support Ukraine in its response to Russia's illegal invasion, US Cyber Command chief General Paul Nakasone has said.…

Categories: News

Watch out for phishing emails that inject spyware trio

The Register - Wed, 01/06/2022 - 11:02
You wait for one infection and then three come along at once

An emailed report seemingly about a payment will, when opened in Excel on a Windows system, attempt to inject three pieces of file-less malware that steal sensitive information.…

Categories: News

Hospitals are for healing humans. But protecting and healing hospitals needs machines

The Register - Wed, 01/06/2022 - 08:15
AI technology is helping hospitals repel ransomware at machine speed

Sponsored Feature  Browse through a selection of hospital mission statements and common themes quickly emerge: putting patients and community first, acting with integrity, pushing the bounds of medical research.…

Categories: News

What if ransomware evolved to hit IoT in the enterprise?

The Register - Wed, 01/06/2022 - 07:34
Proof-of-concept lab work demos potential future threat

Forescout researchers have demonstrated how ransomware could spread through an enterprise from vulnerable Internet-of-Things gear.…

Categories: News

EnemyBot malware adds enterprise flaws to exploit arsenal

The Register - Wed, 01/06/2022 - 04:47
Fast-evolving botnet targets critical VMware, F5 BIG-IP bugs, we're told

The botnet malware EnemyBot has added exploits to its arsenal, allowing it to infect and spread from enterprise-grade gear.…

Categories: News

Cops' Killer Bee stings credential-stealing scammer

The Register - Tue, 31/05/2022 - 21:50
Fraudster and two alleged accomplices nabbed in joint op

An Interpol-led operation code-named Killer Bee has led to the arrest and conviction of a Nigerian man who was said to have used a remote access trojan (RAT) to reroute financial transactions and steal corporate credentials. Two suspected accomplices were also nabbed.…

Categories: News

Microsoft's identity services huddle under Entra umbrella

The Register - Tue, 31/05/2022 - 18:45
Decentralized identity and knowing who needs what

Microsoft has whipped out the rebranding team once more, and chosen the name "Entra" as a catch-all for the company's identity and access capabilities.…

Categories: News

CIOs largely believe their software supply chain is vulnerable

The Register - Tue, 31/05/2022 - 14:00
Internal beauracy and barriers hold up roll out of defenses, report finds

Ask 1,000 CIOs whether they believe their organizations are vulnerable to cyberattacks targeting their software supply chains and about 82 percent can be expected to say yes.…

Categories: News

Australian digital driving licenses can be defaced in minutes

The Register - Tue, 31/05/2022 - 00:31
Brute force attack leaves the license wide open for undetectable alteration, but back end data remains unchanged

An Australian digital driver's license (DDL) implementation that officials claimed is more secure than a physical license has been shown to easily defaced, but authorities insist the credential remains secure.…

Categories: News

Zero-day vuln in Microsoft Office: 'Follina' will work even when macros are disabled

The Register - Mon, 30/05/2022 - 19:01
Researchers comb through code execution flaw found in malicious document

Infosec researchers have idenitied a zero-day code execution vulnerability in Microsoft's ubiquitous Office software.…

Categories: News

That critical vulnerability might <em>not</em> be the first you should patch

The Register - Mon, 30/05/2022 - 13:16
Startup Rezilion suggests enterprises should change prioritization strategies

Enterprise security teams being overrun by the rising numbers of vulnerabilities uncovered each day could vastly reduce their patching workload by changing how they prioritize the flaws, according to recent research from vulnerability startup Rezilion.…

Categories: News

Indian authorities issue conflicting advice about biometric ID card security

The Register - Mon, 30/05/2022 - 06:58
Government authority forced to backtrack warning that photocopied Aadhaar cards represent a risk

The Unique Identification Authority of India (UIDAI) has backtracked on advice about how best to secure the "Aadhaar" national identity cards that enable access to a range of government and financial serivces.…

Categories: News

Global tech industry objects to India’s new infosec reporting regime

The Register - Mon, 30/05/2022 - 00:58
Eleven industry associations, representing every tech vendor that matters, warns of economic harm

Eleven significant tech-aligned industry associations from around the world have reportedly written to India’s Computer Emergency Response Team (CERT-In) to call for revision of the nation’s new infosec reporting and data retention rules, which they criticise as inconsistent, onerous, unlikely to improve security within India, and possibly harmful to the nations economy.…

Categories: News

Ransomware attack sends US county back to 1977

The Register - Mon, 30/05/2022 - 00:36
Also: Uni details its malware-catching AI, signs of China poking the Russian cyber-bear, and more

In brief  Somerset County, New Jersey, was hit by a ransomware attack this week that hobbled its ability to conduct business, and also cut off access to essential data.…

Categories: News

Stolen university credentials up for sale by Russian crooks, FBI warns

The Register - Fri, 27/05/2022 - 23:34
Forget dark-web souks, thousands of these are already being traded on public bazaars

Russian crooks are selling network credentials and virtual private network access for a "multitude" of US universities and colleges on criminal marketplaces, according to the FBI.…

Categories: News

Cloud security unicorn cuts 20% of staff after raising $1.3b

The Register - Fri, 27/05/2022 - 20:19
Time to play blame bingo: Markets? Profits? Too much growth? Russia? Space aliens?

Cloud security company Lacework has laid off 20 percent of its employees, just months after two record-breaking funding rounds pushed its valuation to $8.3 billion.…

Categories: News

Talos names eight deadly sins in widely used industrial software

The Register - Fri, 27/05/2022 - 19:30
Entire swaths of gear relies on vulnerability-laden Open Automation Software (OAS)

A researcher at Cisco's Talos threat intelligence team found eight vulnerabilities in the Open Automation Software (OAS) platform that, if exploited, could enable a bad actor to access a device and run code on a targeted system.…

Categories: News

GitHub saved plaintext passwords of npm users in log files, post mortem reveals

The Register - Fri, 27/05/2022 - 13:15
Unrelated to the OAuth token attack, but still troubling as org reveals details of around 100,000 users were grabbed by the baddies

GitHub has revealed it stored a "number of plaintext user credentials for the npm registry" in internal logs following the integration of the JavaScript package registry into GitHub's logging systems.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News