News

That time Rootkitting for Dummies might as well have been in Microsoft's Plus! Pack

Retired Microsoft engineer, Dave Plummer, offered a blast from the past last week with a look back at the infamous Sony Windows "rootkit" scandal.…

Frontier Software admitted attack three weeks ago, said data was safe … now it's on the dark web

Personal information describing names, addresses, bank account details, and taxation IDs of 38,000 Australian government employees has been leaked to the dark web after a ransomware attack.…

And it's really bad news for EV cert vendors in Top 1 Million report

Almost a third of the world wide web's top million sites are still not using HTTPS by default, according to infosec researcher Scott Helme's analysis.…

Trust us with everything, croons septuple-strong partnership

Cyber insurance premiums are increasing and so is infosec's determination to get a slice of that pie: Cloudflare is partnering with Mandiant, Secureworks, and Crowdstrike in a "rapid referral" partnership for under-attack companies.…

This guide to cyber insurance will help you rest easy

Paid Post  Why do CISOs and CIOs endure so many sleepless nights? Because they’re either worrying about cyber attacks in general, and ransomware in particular, or because they’re actually dealing with them.…

Resellers were given exclusive territories to target, and offered tech support

Australia's Federal Police force has revealed more about how it distributed a backdoored chat app to criminals.…

Cross-border op nabbed our man, boast cops and prosecutors

A Canadian man is accused of masterminding ransomware attacks that caused "damage" to systems belonging to the US state of Alaska.…

This webinar shows you how to measure the blast radius

Webinar  This isn’t surprising. The prospect of having all your data and applications compromised, whether due to ransomware or other cyberattacks, or any of the more traditional disaster scenarios is so horrifying, that it’s natural to throw everything you have at it.…

Data watchdog shows it's keeping its PECR up

British telco Virgin Media is facing a £50k financial penalty after spamming more than 400,000 opted-out customers urging them to sign back up to receive marketing bumf.…

It’s tricky but manageable, says Iomart

Paid Feature  “The trust of the innocent is the liar's most useful tool,” Stephen King wrote. At least that’s what the internet claims.…

Certifies hardware with malware-crimping spec, already common in PCs, for Azure Stack and Windows Server

Microsoft has extended the Secured-core concept it applied to PCs in 2019 to servers, and to Windows Server and Azure Stack HCI.…

So says Sophos in warning about Tor2Mine Monero malware

Cryptominer malware removal is a routine piece of the cybersecurity landscape these days. Yet if criminals are hijacking your compute cycles to mine cryptocurrencies, chances are there's something worse lurking on your network too.…

Contributed to dysfunction as diplomats and soldiers struggled to get Afghan helpers out of reach of Taliban

Diplomats and soldiers were left grappling with appallingly inadequate IT and secure communications support as thousands of Afghans struggled to get help from the UK during the fall of the capital Kabul in August.…

'Nickel' back in trouble for trying to lift secrets, often by exploiting Microsoft snafus

Microsoft has revealed its Digital Crimes Unit (DCU) won court approval to take control of websites a Chinese gang was using to attack targets across the world – often by exploiting vulnerabilities in Microsoft products.…

Someone just accidentally put it there, says the messaging service company

Smartphone payment provider LINE Pay announced yesterday that around 133,000 users' payment details were mistakenly published on GitHub between September and November of this year.…

Franchisees' closures also affect petrol stations

The British arm of Dutch supermarket chain Spar has shut hundreds of shops after suffering an "online attack," the company has confirmed to The Register.…

Or it might be nearer $200m. Even the amounts stolen seem to be volatile in the crypto world

Cryptocurrency exchange BitMart has coughed to a large-scale security breach relating to ETH and BSC hot wallets. The company reckons that hackers made off with approximately $150m in assets.…

Hancitor is at play

The US Federal Bureau of Investigation (FBI) says 49 organisations, including some in government, were hit by Cuba ransomware as of early November this year.…

Reuters claims nine State Department employees outside the US had their devices hacked

The Apple iPhones of at least nine US State Department officials were compromised by an unidentified entity using NSO Group's Pegasus spyware, according to a report published Friday by Reuters.…

All together now - R, A, N, S, O...

A US utility company based in Colorado was hit by a ransomware attack in November that wiped out two decades' worth of records and knocked out billing systems that won't be restored until next week at the earliest.…