News
SonicWall breach hits every cloud backup customer after 5% claim goes up in smoke
SonicWall has admitted that all customers who used its cloud backup service to store firewall configuration files were affected by a cybersecurity incident first disclosed in mid-September, walking back earlier assurances that only a small fraction of users were impacted.…
Take this rob and shove it! Salesforce issues stern retort to ransomware extort
Salesforce won't pay a ransom demand to criminals who claim to have stolen nearly 1 billion customer records and are threatening to leak the data if the CRM giant doesn't pony up some cash.…
Germany slams brakes on EU's Chat Control device-scanning snoopfest
Germany has committed to oppose the EU's controversial "Chat Control" regulations following huge pressure from multiple activists and major organizations.…
Employees regularly paste company secrets into ChatGPT
Employees could be opening up to OpenAI in ways that put sensitive data at risk. According to a study by security biz LayerX, a large number of corporate users paste Personally Identifiable Information (PII) or Payment Card Industry (PCI) numbers right into ChatGPT, even if they're using the bot without permission.…
Nearly a year after attack, US medical scanning biz gets clear image of stolen patient data
Florida-based Doctors Imaging Group has admitted that the sensitive medical and financial data of 171,862 patients was stolen during the course of a November 2024 cyberattack.…
Police and military radio maker BK Technologies cops to cyber break-in
BK Technologies, the Florida-based maker of mission-critical radios for US police, fire, and defense customers, has confessed to a cyber intrusion that briefly rattled its IT systems last month.…
OpenAI bans suspected Chinese accounts using ChatGPT to plan surveillance
OpenAI has banned ChatGPT accounts believed to be linked to Chinese government entities attempting to use AI models to surveil individuals and social media accounts.…
Britain eyes satellite laser warning system and carrier-launched jet drones
The UK is pressing ahead with cutting-edge defense projects, the latest including research to protect satellites from laser attack and a technology demonstrator for a jet-powered drone to operate from Royal Navy carriers.…
UK Home Office opens wallet for £60M automated number plate project
The UK's Home Office is inviting tech suppliers to take part in a £60 million "market engagement" for an application that uses data from automated number plate recognition (ANPR) systems.…
Credential stuffing: £2.31 million fine shows passwords are still the weakest link
Partner Content If you're still using "password123" for more than one account, there's a good chance you've already exposed yourself to credential stuffing attacks — one of the most prevalent and damaging forms of automated cybercrime today. Just ask the 6.9 million users of 23andMe who discovered their personal details were compromised when cybercriminals used recycled credentials from other breaches to infiltrate their accounts.…
Scattered Lapsus$ Hunters offering $10 in Bitcoin to 'endlessly harass' execs
Scattered Lapsus$ Hunters has launched an unusual crowdsourced extortion scheme, offering $10 in Bitcoin to anyone willing to help pressure their alleged victims into paying ransoms.…
Radiant Group won't touch kids' data now, but apparently hospitals are fair game
First they targeted a preschool network, now new kids on the ransomware block Radiant Group say they've hit a hospital in the US, continuing their deplorable early cybercrime careers.…
Thieves steal IDs and payment info after data leaks from Discord support vendor
Discord has confirmed customers' data was stolen – but says the culprit wasn't its own servers, just a compromised support vendor.…
Jaguar Land Rover engines ready to roar again after weeks-long cyber stall
Jaguar Land Rover is readying staff to resume manufacturing in the coming days, a company spokesperson confirmed to The Reg.…
Clop crew hits Oracle E-Business Suite users with fresh zero-day
Oracle rushed out an emergency fix over the weekend for a zero-day vulnerability in its E-Business Suite (EBS) that criminal crew Clop has already abused for data theft and extortion.…
Leak suggests US government is fibbing over FEMA security failings
Infosec in brief On August 29, the US Federal Emergency Management Agency fired its CISO, CIO, and 22 other staff for incompetence but insisted it wasn't in response to an online attack. New material suggests FEMA's claim may be false.…
Red Hat fesses up to GitLab breach after attackers brag of data theft
What started as cyber crew bragging has now been confirmed by Red Hat: someone gained access to its consulting GitLab system and walked away with data.…
Apple ices ICE agent tracker app under government heat
Apple has deep-sixed an app that tracks the movements of US Immigration and Customs Enforcement (ICE) agents – apparently bowing to government pressure.…
Munich Airport chaos after drone sightings spook air traffic control
Munich Airport was temporarily closed last night following reports of drones buzzing around the area.…
UK government says digital ID won't be compulsory – honest
The British government has finally given more details about the proposed digital ID project, directly responding to the 2.76 million naysayers that signed an online petition calling for it to be ditched.…
Pages
