News
Leak suggests US government is fibbing over FEMA security failings
Infosec in brief On August 29, the US Federal Emergency Management Agency fired its CISO, CIO, and 22 other staff for incompetence but insisted it wasn't in response to an online attack. New material suggests FEMA's claim may be false.…
Red Hat fesses up to GitLab breach after attackers brag of data theft
What started as cyber crew bragging has now been confirmed by Red Hat: someone gained access to its consulting GitLab system and walked away with data.…
Apple ices ICE agent tracker app under government heat
Apple has deep-sixed an app that tracks the movements of US Immigration and Customs Enforcement (ICE) agents – apparently bowing to government pressure.…
Munich Airport chaos after drone sightings spook air traffic control
Munich Airport was temporarily closed last night following reports of drones buzzing around the area.…
UK government says digital ID won't be compulsory – honest
The British government has finally given more details about the proposed digital ID project, directly responding to the 2.76 million naysayers that signed an online petition calling for it to be ditched.…
Oracle tells Clop-targeted EBS users to apply July patch, problem solved
Oracle has finally broken its silence on those Clop-linked extortion emails, but only to tell customers what they already should have known: patch your damn systems.…
Criminals take Renault UK customer data for a joyride
Renault UK customers are being warned their personal data may be in criminal hands after one of its supplier was hacked.…
Subpoena tracking platform blames outage on AWS social engineering attack
A software platform used by law enforcement agencies and major tech companies to manage subpoenas and data requests went dark this week after attackers socially engineered AWS into freezing its domain.…
Clop-linked crims shake down Oracle execs with data theft claims
Criminals with potential links to the notorious Clop ransomware mob are bombarding Oracle execs with extortion emails, claiming to have stolen sensitive data from Big Red's E-Business Suite, according to researchers.…
EU funds are flowing into spyware companies, and politicians are demanding answers
An arsenal of angry European Parliament members (MEPs) is demanding answers from senior commissioners about why EU subsidies are ending up in the pockets of spyware companies.…
Cybercrims claim raid on 28,000 Red Hat repos, say they have sensitive customer files
A hacking crew claims to have broken into Red Hat's private GitHub repositories, exfiltrating some 570GB of compressed data, including sensitive documents belonging to customers. …
US gov shutdown leaves IT projects hanging, security defenders a skeleton crew
The US government shut down at 1201 ET on October 1, halting non-essential IT modernization and leaving cybersecurity operations to run on skeleton crews.…
'Delightful' root-access bug in Red Hat OpenShift AI allows full cluster takeover
A 9.9 out of 10 severity bug in Red Hat's OpenShift AI service could allow a remote attacker with minimal authentication to steal data, disrupt services, and fully hijack the platform.…
Air Force admits SharePoint privacy issue as reports trickle out of possible breach
Exclusive The US Air Force confirmed it's investigating a "privacy-related issue" amid reports of a Microsoft SharePoint-related breach and subsequent service-wide shutdown, rendering mission files and other critical tools potentially unavailable to service members.…
3.7M breach notification letters set to flood North America's mailboxes
A trio of companies disclosed data breaches this week affecting approximately 3.7 million customers and employees across North America.…
Autonomous AI adoption stalls amid trust and governance crisis
Enterprises aren't keen on letting autonomous agents take the wheel amid fears over trust and security as research once again shows that AI hype is crashing against the rocks of reality.…
Imgur yanks Brit access to memes as parent company faces fine
The UK's data watchdog has described Imgur's move to block UK users as "a commercial decision" after signaling plans to fine parent company MediaLab.…
Explain digital ID or watch it fizzle out, UK PM Starmer told
UK prime minister Keir Starmer avoided mentioning the mandatory digital ID scheme in his keynote speech to the Labour Party conference amid calls for him to put meat on the bones of the plans or risk it failing fast.…
Schools are swotting up on security yet still flunk recovery when cyberattacks strike
Schools and colleges hit by cyberattacks are taking longer to restore their networks — and the consequences are severe, with students' coursework being permanently lost in some cases.…
Beijing-backed burglars master .NET to target government web servers
Threat-hunters at Palo Alto Networks’ Unit 42 have decided a gang they spotted two years ago is backed by China, after seeing it sling a new variety of malware.…
Pages
