The Register
Germany cuffs alleged Russian spies over plot to bomb industrial and military targets
Bavarian state police have arrested two German-Russian citizens on suspicion of being Russian spies and planning to bomb industrial and military facilities that participate in efforts to assist Ukraine defend itself against Vladimir Putin’s illegal invasion.…
Ransomware feared as IT 'issues' force Octapharma Plasma to close 150+ centers
Octapharma Plasma has blamed IT "network issues" for the ongoing closure of its 150-plus centers across the US. It's feared a ransomware infection may be the root cause of the medical firm's ailment.…
Crooks exploit OpenMetadata holes to mine crypto – and leave a sob story for victims
Crooks are exploiting month-old OpenMetadata vulnerabilities in Kubernetes environments to mine cryptocurrency using victims' resources, according to Microsoft.…
House passes bill banning Uncle Sam from snooping on citizens via data brokers
A draft law to restrict the US government's ability to procure data on citizens through data brokers will progress to the Senate after being passed in the House of Representatives.…
Korean researcher details scheme abusing Apple's third-party pickup policy
Speaking at Black Hat Asia on Thursday, a Korean researcher revealed how the discovery of one phishing website led to uncovering an operation whose activities leveraged second-hand shops and included using Apple’s "someone-else pickup" method to cash in.…
185K people's sensitive data in the pits after ransomware raid on Cherry Health
Ransomware strikes at yet another US healthcare organization led to the theft of sensitive data belonging to just shy of 185,000 people.…
EU tells Meta it can't paywall privacy
The EU's Data Protection Board (EDPB) has told large online platforms they should not offer users a binary choice between paying for a service and consenting to their personal data being used to provide targeted advertising.…
Prolific phishing-made-easy emporium LabHost knocked offline in cyber-cop op
Feature Cops have brought down a dark-web souk that provided cyber criminals with convincing copies of trusted brands' websites for use in phishing campaigns.…
Cisco creates architecture to improve security and sell you new switches
Cisco has developed a product called Hypershield that it thinks represents a new way to do network security.…
Singapore infosec boss warns China/West tech split will be bad for interoperability
One of the biggest challenges Singapore faces is the potential for a split between tech stacks developed and used by China and the West, according to the island nation's Cyber Security Administration (CSA) chief executive David Koh.…
Taiwanese film studio snaps up Chinese surveillance camera specialist Dahua
Chinese surveillance camera manufacturer Zhejiang Dahua Technology, which has found itself on the USA’s entity list of banned orgs, has fully sold off its stateside subsidiary for $15 million to Taiwan's Central Motion Picture Corporation, according to the firm's annual report released on Monday.…
Hugely expanded Section 702 surveillance powers set for US Senate vote
On Thursday the US Senate is expected to reauthorize the contentious warrantless surveillance powers conferred by Section 702 of the Foreign Intelligence Surveillance Act (FISA), and may even strengthen them with language that, according to US Senator Ron Wyden (D-OR), "will force a huge range of companies and individuals to spy for the government."…
Kremlin's Sandworm blamed for cyberattacks on US, European water utilities
The Russian military's notorious Sandworm crew was likely behind cyberattacks on US and European water plants that, in at least one case, caused a tank to overflow.…
Exploit code for Palo Alto Networks zero-day now public
Various infosec researchers have released proof-of-concept (PoC) exploits for the maximum-severity vulnerability in Palo Alto Networks' PAN-OS used in GlobalProtect gateways.…
OpenAI's GPT-4 can exploit real vulnerabilities by reading security advisories
AI agents, which combine large language models with automation software, can successfully exploit real world security vulnerabilities by reading security advisories, academics have claimed.…
Japanese government rejects Yahoo<i>!</i> infosec improvement plan
Japan's government has considered the proposed security improvements developed by Yahoo!, found them wanting, and ordered the onetime web giant to take new measures.…
Fire in the Cisco! Networking giant's Duo MFA message logs stolen in phish attack
Cisco is fighting fires on a couple cybersecurity fronts this week involving its Duo multi-factor authentication (MFA) service and its remote-access VPN services.…
MGM says FTC can't possibly probe its ransomware downfall – watchdog chief Lina Khan was a guest at the time
MGM Resorts wants the FTC to halt a probe into last year's ransomware infection at the mega casino chain – because the watchdog's boss Lina Khan was a guest at one of its hotels during the cyberattack, apparently.…
Alleged cryptojacker accused of stealing $3.5M from cloud to mine under $1M in crypto
A Nebraska man will appear in court today to face charges related to allegations that he defrauded cloud service providers of more than $3.5 million in a long-running cryptojacking scheme.…
SIM swap crooks solicit T-Mobile US, Verizon staff via text to do their dirty work
T-Mobile US employees say they are being sent text messages that offer them cash to perform illegal SIM swaps for supposed criminals.…