The Register
US proposes ban on Chinese, Russian connected car tech over security fears
The US Commerce Department has decided not to wait for the inevitable, and today announced plans that would ban connected vehicle technology - and vehicles using it - from Chinese and Russian sources.…
So how's Microsoft's Secure Future Initiative going?
Microsoft took a victory lap today, touting the 34,000 full-time engineers it has dedicated to its Secure Future Initiative (SFI) since it launched almost a year ago and making public its first progress report on efforts to improve security in its products and services.…
UPS supplier's password policy flip-flops from unlimited, to 32, then 64 characters
A major IT hardware manufacturer is correcting a recent security update after customers complained of a password character limit being introduced when there previously wasn't one.…
Move over, Cobalt Strike. Splinter’s the new post-exploit menace in town
Attackers are using Splinter, a new post-exploitation tool, to wreak havoc in victims' IT environments after initial infiltration, utilizing capabilities such as executing Windows commands, stealing files, collecting cloud service account info, and downloading additional malware onto victims' systems.…
Apple's latest macOS release is breaking security software, network connections
Infosec In Brief Something's wrong with macOS Sequoia, and it's breaking security software installed on some updated Apple systems.…
US indicts two over socially engineered $230M+ crypto heist
Two individuals are in cuffs and facing serious charges in connection to a major theft of cryptocurrency worth more than $230 million from a single victim.…
Ivanti patches exploited admin command execution flaw
The US Cybersecurity and Infrastructure Security Agency (CISA) just added the latest Ivanti weakness to its Known Exploited Vulnerability (KEV) catalog, a situation sure to annoy some – given that it's yet another path traversal flaw.…
Cybercrooks strut away with haute couture Harvey Nichols data
High-end British department store Harvey Nichols is writing to customers to confirm some of their data was exposed in a recent cyberattack.…
CISA boss: Makers of insecure software are the real cyber villains
Software developers who ship buggy, insecure code are the real villains in the cyber crime story, Jen Easterly, boss of the US government's Cybersecurity and Infrastructure Security Agency, has argued.…
Valencia Ransomware explodes on the scene, claims California city, fashion giant, more as victims
A California city, a Spanish fashion giant, an Indian paper manufacturer, and two pharmaceutical companies are the alleged victims of what looks like a new ransomware gang that started leaking stolen info this week.…
No way? Big Tech's 'lucrative surveillance' of everyone is terrible for privacy, freedom
Buried beneath the endless feeds and attention-grabbing videos of the modern internet is a network of data harvesting and sale that's perhaps far more vast than most people realize, and it desperately needs regulation. …
Iran's cyber-goons emailed stolen Trump info to Team Biden – which ignored them
The Iranian cyber snoops who stole files from the Trump campaign, with the intention of leaking those documents, tried to slip the data to the Biden camp — but were apparently ignored, according to Uncle Sam.…
1 in 10 orgs dumping their security vendors after CrowdStrike outage
Germany's Federal Office for Information Security (BSI) says one in ten organizations in the country affected by CrowdStrike's outage in July are dropping their current vendor's products.…
Thousands of orgs at risk of knowledge base data leaks via ServiceNow misconfigurations
Security researchers say that thousands of companies are potentially leaking secrets from their internal knowledge base (KB) articles via ServiceNow misconfigurations.…
UK activists targeted with Pegasus spyware ask police to charge NSO Group
Four UK-based proponents of human rights and critics of Middle Eastern states today filed a report with London's Metropolitan Police they hope will lead to charges against Pegasus peddler NSO Group.…
Tor insists its network is safe after German cops convict CSAM dark-web admin
The Tor project has insisted its privacy-preserving powers remain potent, countering German reports that user anonymity on its network can be and has been compromised by police.…
FBI boss says China 'burned down' 260,000-device botnet when confronted by Feds
China-backed spies are said to have tore down their own 260,000-device botnet after the FBI and its international pals went after them.…
LockBit boasts of ransoming IRS-authorized eFile.com
Notorious ransomware gang LockBit claims to have compromised eFile.com, which offers online services for electronically filing tax returns with the US Internal Revenue Service (IRS).…
Putin really wants Trump back in the White House
Russia really wants Donald Trump to be the next US President, judging by reports from American government agencies and now Microsoft's threat intelligence team.…
Lebanon now hit with deadly walkie-talkie blasts as Israel declares ‘new phase’ of war
First it was pagers, now Lebanon is being rocked by Hezbollah's walkie-talkies detonating across the country, leaving more than a dozen dead.…