News

Mitel 0-day, 5-year-old Oracle RCE bug under active exploit

The Register - Wed, 08/01/2025 - 20:30
3 CVEs added to CISA's catalog

Cybercriminals are actively exploiting two vulnerabilities in Mitel MiCollab, including a zero-day flaw – and a critical remote code execution vulnerability in Oracle WebLogic Server that has been abused for at least five years.…

Categories: News

DNA sequencers found running ancient BIOS, posing risk to clinical research

The Register - Wed, 08/01/2025 - 15:30
Devices on six-year-old firmware vulnerable to takeover and destruction

Argentine cybersecurity shop Eclypsium claims security issues affecting leading DNA sequencing devices could lead to disruptions in crucial clinical research.…

Categories: News

UN's aviation agency confirms attack on recruitment database

The Register - Wed, 08/01/2025 - 14:00
Various data points compromised but no risk to flight security

The International Civil Aviation Organization (ICAO), the United Nations' aviation agency, has confirmed to The Register that a cyber crim did indeed steal 42,000 records from its recruitment database.…

Categories: News

Crims backdoored the backdoors they supplied to other miscreants. Then the domains lapsed

The Register - Wed, 08/01/2025 - 11:00
Here's what $20 gets you these days

More than 4,000 unique backdoors are using expired domains and/or abandoned infrastructure, and many of these expose government and academia-owned hosts – thus setting these hosts up for hijacking by criminals who likely have less altruistic intentions than the security researchers who uncovered the backdoors.…

Categories: News

Akamai to quit its CDN in China, seemingly not due to trouble from Beijing

The Register - Wed, 08/01/2025 - 06:31
Security and cloud compute have so much more upside than the boring business of shifting bits

Akamai has decided to end its content delivery network services in China, but not because it’s finding it hard to do business in the Middle Kingdom.…

Categories: News

FCC boss urges speedy spectrum auction to fund 'Rip'n'Replace' of Chinese kit

The Register - Wed, 08/01/2025 - 00:12
Telcos would effectively fund grants paid to protect national security

The outgoing boss of the FCC, Jessica Rosenworcel, has called on her colleagues to "quickly" adopt rules allowing the US regulator to stage a radio spectrum auction, the proceeds of which would fund the removal from American networks of equipment made by Chinese vendors Huawei and ZTE.…

Categories: News

Turbulence at UN aviation agency as probe into potential data theft begins

The Register - Tue, 07/01/2025 - 17:45
Crime forum-dweller claims to have leaked 42,000 documents packed with personal info

The United Nations' aviation agency is investigating "a potential information security incident" after a cybercriminal claimed they had laid hands on 42,000 of the branch's documents.…

Categories: News

DEF CON's hacker-in-chief faces fortune in medical bills after paralyzing neck injury

The Register - Tue, 07/01/2025 - 14:45
Marc Rogers is 'lucky to be alive'

Marc Rogers, DEF CON's head of security, faces tens of thousands of dollars in medical bills following an accident that left him with a broken neck and temporary quadriplegia.…

Categories: News

US adds web and gaming giant Tencent to list of Chinese military companies

The Register - Tue, 07/01/2025 - 06:58
This could be the start of a saga to rival TikTok’s troubles, and embroil Tesla and Microsoft

The US Department of Defense has added Chinese messaging and gaming Tencent to its list of “Chinese military company”, a designation that won’t necessarily result in a ban but is nonetheless unpleasant.…

Categories: News

Charter, Consolidated, Windstream reportedly join China's Salt Typhoon victim list

The Register - Mon, 06/01/2025 - 20:30
Slow drip of compromised telecom networks continues

The list of telecommunications victims in the Salt Typhoon cyberattack continues to grow as a new report names Charter Communications, Consolidated Communications, and Windstream among those breached by Chinese government snoops.…

Categories: News

FireScam infostealer poses as Telegram Premium app to surveil Android devices

The Register - Mon, 06/01/2025 - 16:31
Once installed, it helps itself to your data like it's a free buffet

Android malware dubbed FireScam tricks people into thinking they are downloading a Telegram Premium application that stealthily monitors victims' notifications, text messages, and app activity, while stealing sensitive information via Firebase services.…

Categories: News

MediaTek rings in the new year with a parade of chipset vulns

The Register - Mon, 06/01/2025 - 14:28
Manufacturers should have had ample time to apply the fixes

MediaTek kicked off the first full working week of the new year by disclosing a bevy of security vulnerabilities, including a critical remote code execution bug affecting 51 chipsets.…

Categories: News

After China's Salt Typhoon, the reconstruction starts now

The Register - Mon, 06/01/2025 - 09:31
If 40 years of faulty building gets blown down, don’t rebuild with the rubble

Opinion  When a typhoon devastates a land, it takes a while to understand the scale of the destruction. Disaster relief kicks in, communications rebuilt, and news flows out. Salt Typhoon is no different.…

Categories: News

Taiwan reportedly claims China-linked ship damaged one of its submarine cables

The Register - Mon, 06/01/2025 - 03:26
More evidence of Beijing’s liking for gray zone warfare, or a murky claim with odd African entanglements?

Taiwanese authorities have asserted that a China-linked ship entered its waters and damaged a submarine cable.…

Categories: News

Telemetry data from 800K VW Group EVs exposed online

The Register - Mon, 06/01/2025 - 01:24
PLUS: DoJ bans data sale to enemy nations; Do Kwon extradited to US; Tenable CEO passes away; and more

Infosec in Brief  Welcome to 2025: hopefully you enjoyed a pleasant holiday season and returned to the security operations center without incident - unlike Volkswagen, which last week admitted it exposed data describing journeys made by some of its electric vehicles, plus info about the vehicle’s owners.…

Categories: News

Encryption backdoor debate 'done and dusted,' former White House tech advisor says

The Register - Sat, 04/01/2025 - 14:30
When the FBI urges E2EE, you know it's serious business

interview  In the wake of the Salt Typhoon hacks, which lawmakers and privacy advocates alike have called the worst telecoms breach in America's history, the US government agencies have reversed course on encryption.…

Categories: News

Atos denies Space Bears' ransomware claims – with a 'but'

The Register - Sat, 04/01/2025 - 08:30
Points finger at third-party infrastructure being breached

French tech giant Atos today denied that Space Bears criminals breached its systems - but noted that third-party infrastructure was compromised by the ransomware crew, and that files accessed by the crooks included "data mentioning the Atos company name."…

Categories: News

CAPTCHAs now run Doom – on nightmare mode

The Register - Fri, 03/01/2025 - 13:15
As if the bot defense measure wasn't obnoxious enough

Though the same couldn't be said for most of us mere mortals, Vercel CEO Guillermo Rauch had a productive festive period, resulting in a CAPTCHA that requires the user to kill three monsters in Doom – on nightmare mode.…

Categories: News

Boffins carve up C so code can be converted to Rust

The Register - Fri, 03/01/2025 - 12:33
Mini-C is a subset of C that can be automatically turned to Rust without much fuss

Computer scientists affiliated with France's Inria and Microsoft have devised a way to automatically turn a subset of C code into safe Rust code, in an effort to meet the growing demand for memory safety.…

Categories: News

Chinese cyber-spies reportedly targeted sanctions intel in US Treasury raid

The Register - Thu, 02/01/2025 - 22:28
OFAC, Office of the Treasury Secretary feared hit in data-snarfing swoop

Chinese spies who compromised the US Treasury Department's workstations reportedly stole data belonging to a government office responsible for sanctions against organizations and individuals.…

Categories: News

Pages

Subscribe to Sec Tec Limited aggregator - News