News

To be fair, Joe was probably taking a nap

The Iranian cyber snoops who stole files from the Trump campaign, with the intention of leaking those documents, tried to slip the data to the Biden camp — but were apparently ignored, according to Uncle Sam.…

Many left reeling from July's IT meltdown, but not to worry, it was all unavoidable

Germany's Federal Office for Information Security (BSI) says one in ten organizations in the country affected by CrowdStrike's outage in July are dropping their current vendor's products.…

Better check your widgets, people

Security researchers say that thousands of companies are potentially leaking secrets from their internal knowledge base (KB) articles via ServiceNow misconfigurations.…

4 file complaint with London's Met, alleging malware maker helped autocratic states violate their privacy

Four UK-based proponents of human rights and critics of Middle Eastern states today filed a report with London's Metropolitan Police they hope will lead to charges against Pegasus peddler NSO Group.…

Outdated software blamed for cracks in the armor

The Tor project has insisted its privacy-preserving powers remain potent, countering German reports that user anonymity on its network can be and has been compromised by police.…

Plus: Wray tells how bureau helps certain victims negotiate with ransomware crooks

China-backed spies are said to have tore down their own 260,000-device botnet after the FBI and its international pals went after them.…

Add 'ransomware' to the list of certainties in life?

Notorious ransomware gang LockBit claims to have compromised eFile.com, which offers online services for electronically filing tax returns with the US Internal Revenue Service (IRS).…

US govt, Microsoft report on Kremlin trolls' latest antics to Make America Grate Again

Russia really wants Donald Trump to be the next US President, judging by reports from American government agencies and now Microsoft's threat intelligence team.…

Second wave of exploding gear kills at least 14 today

First it was pagers, now Lebanon is being rocked by Hezbollah's walkie-talkies detonating across the country, leaving more than a dozen dead.…

Getting sloppy, Xi

Exclusive  Chinese state-sponsored spies have been spotted inside a global engineering firm's network, having gained initial entry using an admin portal's default credentials on an IBM AIX server.…

Italian mafia mobsters and Irish crime families scuppered by international cops

Hours after confirming they had pwned the supposedly uncrackable encrypted messaging platform used for all manner of organized crime, Ghost, cops have now named the suspect they cuffed last night, who is charged with being the alleged mastermind.…

'Lives will be lost' as Moscow ramps up offensive cyber military units

Feature  As Russian special forces push more overtly into online operations, network defenders should be on the hunt for digital intruders looking to carry out cyberattacks that end in physical destruction and harm.…

Sting led to cuffing of alleged operator behind Ghost – an app for drug trafficking, money laundering, and violence-as-a-service

Australia's Federal Police (AFP) yesterday arrested and charged a man with creating and administering an app named Ghost that was allegedly "a dedicated encrypted communication platform … built solely for the criminal underworld" and which enabled crims to arrange acts of violence, launder money, and traffic illicit drugs.…

View Forever, more like it, as Meta's privacy feature again revealed to be futile with a little light hacking

A fix deployed by Meta to stop people repeatedly viewing WhatsApp’s so-called View Once messages – photos, videos, and voice recordings that disappear from chats after a recipient sees them – has been defeated in less than a week by white-hat hackers.…

Bug reports made in China

Broadcom has emitted a pair of patches for vulnerabilities in VMware vCenter Server that a miscreant with network access to the software could exploit to completely commandeer a system. This also affects Cloud Foundation.…

Chocolate Factory downgrades risk, citing the need for attacker access

Overly permissive settings in Google Cloud's Document AI service could be abused by data thieves to break into Cloud Storage buckets and steal sensitive information.…

Eight-year-old among those slain, Israel blamed, Iran's Lebanese ambassador wounded, it's said

Lebanon says at least nine people, including an eight-year-old girl, were killed today after pagers used by Hezbollah members exploded across the country. Israel has been blamed.…

Auction acts as payback after authority publicly refuses to pay up

The trend of ransomware crews claiming to sell stolen data privately instead of leaking it online continues with Rhysida marketing the data allegedly belonging to Port of Seattle for 100 Bitcoin (around $5.9 million).…

Ransomware resilience in a multi-cloud world: attend this exclusive event in Boston, MA

Sponsored Event  Join us on October 24 in Boston for an exclusive event designed for IT professionals and industry leaders dedicated to mastering cybersecurity in multi-cloud environments.…

Designations come as new infrastructure spins up in Africa

Five individuals and one company with ties to spyware developer Intellexa are the latest to earn sanctions as the US expands efforts to stamp out spyware.…