News

Iran's Pioneer Kitten hits US networks via buggy Check Point, Palo Alto gear

The Register - Wed, 28/08/2024 - 19:00
The government-backed crew also enjoys ransomware as a side hustle

Iranian government-backed cybercriminals have been hacking into US and foreign networks as recently as this month to steal sensitive data and deploy ransomware, and they're breaking in via vulnerable VPN and firewall devices from Check Point, Citrix, Palo Alto Networks and other manufacturers, according to Uncle Sam.…

Categories: News

Dick's Sporting Goods discloses cyberattack

The Register - Wed, 28/08/2024 - 17:20
Authorities probing unwanted intrusion; hard questions ahead

Dick's Sporting Goods, America's largest retail chain for outdoorsy types, has admitted that it suffered a cyberattack last week.…

Categories: News

From Copilot to Copirate: How data thieves could hijack Microsoft's chatbot

The Register - Wed, 28/08/2024 - 14:05
Prompt injection, ASCII smuggling, and other swashbuckling attacks on the horizon

Microsoft has fixed flaws in Copilot that allowed attackers to steal users' emails and other personal data by chaining together a series of LLM-specific attacks, beginning with prompt injection.…

Categories: News

The ultimate dual-use tool for cybersecurity

The Register - Wed, 28/08/2024 - 10:02
Sword or plowshare? That depends on whether you're an attacker or a defender

Sponsored Feature  Artificial intelligence: saviour for cyber defenders, or shiny new toy for online thieves? As with most things in tech, the answer is a bit of both.…

Categories: News

Woman uses AirTags to nab alleged parcel-pinching scum

The Register - Wed, 28/08/2024 - 08:30
Phew! Consumer-grade tracking devices are good for more than finding your keys and stalking

Theft of packages is an ongoing problem, so one California woman tried a high tech solution to the problem – and her use of Apple’s consumer-grade AirTags tracking devices led to two arrests.…

Categories: News

Chinese broadband satellites may be Beijing's flying spying censors, think tank warns

The Register - Wed, 28/08/2024 - 02:58
Ground stations are the perfect place for the Great Firewall to block things China finds unpleasant

The multiple constellations of broadband-beaming satellites planned by Chinese companies could conceivably run the nation's "Great Firewall" content censorship system, according to think tank The Australian Strategic Policy Institute. And if they do, using the services will be dangerous.…

Categories: News

Intel's Software Guard Extensions broken? Don't panic

The Register - Tue, 27/08/2024 - 20:59
More of a storm in a teacup

Today's news that Intel's Software Guard Extensions (SGX) security system is open to abuse may be overstated.…

Categories: News

Volt Typhoon suspected of exploiting Versa SD-WAN bug since June

The Register - Tue, 27/08/2024 - 18:32
The same Beijing-backed cyber spy crew the feds say burrowed into US critical infrastructure

It looks like China's Volt Typhoon has found a new way into American networks as Versa has disclosed a nation-state backed attacker has exploited a high-severity bug affecting all of its SD-WAN customers using Versa Director.…

Categories: News

Microsoft security tools questioned for treating employees as threats

The Register - Tue, 27/08/2024 - 15:00
Cracked Labs examines how workplace surveillance turns workers into suspects

Software designed to address legitimate business concerns about cyber security and compliance treats employees as threats, normalizing intrusive surveillance in the workplace, according to a report by Cracked Labs.…

Categories: News

Microsoft mistake blows up admins' inboxes with fake malware alerts

The Register - Mon, 26/08/2024 - 20:45
Legitimate emails misclassified in software snafu

Updated  Many administrators have had a trying Monday after getting spammed out with false malware reports by Microsoft.…

Categories: News

Watchdog warns FBI is sloppy on secure data storage and destruction

The Register - Mon, 26/08/2024 - 20:15
National security data up for grabs, Office of the Inspector General finds

update  The FBI has made serious slip-ups in how it processes and destroys electronic storage media seized as part of investigations, according to an audit by the Department of Justice Office of the Inspector General.…

Categories: News

Seattle airport 'possible cyberattack' snarls travel yet again

The Register - Mon, 26/08/2024 - 19:30
No word yet on if ransomware is to blame

The Port of Seattle, which operates the Seattle-Tacoma International Airport, is investigating a "possible cyberattack" after computer outages disrupted the airport's operations and delayed flights.…

Categories: News

AMD internal data reportedly offered for sale

The Register - Mon, 26/08/2024 - 17:45
Second sensitive info theft claimed by the same crims since June

Digital data thieves have reportedly breached AMD's internal communications and are offering the allegedly stolen goods for sale. …

Categories: News

31.5M invoices, contracts, patient consent forms, and more exposed to the internet

The Register - Mon, 26/08/2024 - 14:00
Unprotected database with 12 years of biz records yanked offline

Exclusive  Nearly 2.7 TB of sensitive data — 31.5 million invoices, contracts, HIPPA patient consent forms, and other business documents regarding numerous companies across industries — has been exposed to the public internet in a non-password protected database for an unknown amount of time.…

Categories: News

Cognizant alleges Infosys swiped its trade secrets

The Register - Mon, 26/08/2024 - 12:00
Sueball suggests outsourcer went out of bounds by developing competing product

A subsidiary of IT outsourcer Cognizant filed a lawsuit on Friday in Texas federal court alleging that rival Infosys was involved in stealing trade secrets and engaging in anticompetitive behavior.…

Categories: News

Alleged Karakut ransomware scumbag charged in US

The Register - Mon, 26/08/2024 - 03:00
Plus: Microsoft issues workaround for dual-boot crashes; ARRL cops to ransom payment, and more

Infosec in brief  Deniss Zolotarjovs, a suspected member of the Russian Karakurt ransomware gang, has been charged in a US court with allegedly conspiring to commit money laundering, wire fraud and Hobbs Act extortion.…

Categories: News

US sues Georgia Tech over alleged cybersecurity failings as a Pentagon contractor

The Register - Fri, 23/08/2024 - 15:30
Rap sheet spells out major no-nos after disgruntled staff blow whistle

The US is suing one of its leading research universities over a litany of alleged failures to meet cybersecurity standards set by the Department of Defense (DoD) for contract awardees.…

Categories: News

Uniting the brightest minds in security, network and cloud

The Register - Fri, 23/08/2024 - 04:26
Immerse is Cloudflare’s premier annual conference in Southeast Asia

Partner Content  Cloudflare is excited to present Immerse, our flagship event designed to connect attendees directly with the ideas, technologies and business leaders driving network and security transformation.…

Categories: News

SolarWinds left critical hardcoded credentials in its Web Help Desk product

The Register - Thu, 22/08/2024 - 23:36
Why go to the effort of backdooring code when devs will basically do it for you accidentally anyway

SolarWinds left hardcoded credentials in its Web Help Desk product that can be used by remote, unauthenticated attackers to log into vulnerable instances, access internal functionality, and modify sensitive data…

Categories: News

CrowdStrike deja vu as 'performance issue' leaves systems sluggish

The Register - Thu, 22/08/2024 - 19:15
Not related to the massive outage in July, security biz spokesperson told us

Some IT administrators suffered a moment of deja vu on Thursday morning as CrowdStrike blamed a cloud service issue for performance problems and lagging boot times affecting some of European customers.…

Categories: News

Pages

Subscribe to Sec Tec Limited aggregator - News