The Register
Prolific phishing-made-easy emporium LabHost knocked offline in cyber-cop op
Feature Cops have brought down a dark-web souk that provided cyber criminals with convincing copies of trusted brands' websites for use in phishing campaigns.…
Cisco creates architecture to improve security and sell you new switches
Cisco has developed a product called Hypershield that it thinks represents a new way to do network security.…
Singapore infosec boss warns China/West tech split will be bad for interoperability
One of the biggest challenges Singapore faces is the potential for a split between tech stacks developed and used by China and the West, according to the island nation's Cyber Security Administration (CSA) chief executive David Koh.…
Taiwanese film studio snaps up Chinese surveillance camera specialist Dahua
Chinese surveillance camera manufacturer Zhejiang Dahua Technology, which has found itself on the USA’s entity list of banned orgs, has fully sold off its stateside subsidiary for $15 million to Taiwan's Central Motion Picture Corporation, according to the firm's annual report released on Monday.…
Hugely expanded Section 702 surveillance powers set for US Senate vote
On Thursday the US Senate is expected to reauthorize the contentious warrantless surveillance powers conferred by Section 702 of the Foreign Intelligence Surveillance Act (FISA), and may even strengthen them with language that, according to US Senator Ron Wyden (D-OR), "will force a huge range of companies and individuals to spy for the government."…
Kremlin's Sandworm blamed for cyberattacks on US, European water utilities
The Russian military's notorious Sandworm crew was likely behind cyberattacks on US and European water plants that, in at least one case, caused a tank to overflow.…
Exploit code for Palo Alto Networks zero-day now public
Various infosec researchers have released proof-of-concept (PoC) exploits for the maximum-severity vulnerability in Palo Alto Networks' PAN-OS used in GlobalProtect gateways.…
OpenAI's GPT-4 can exploit real vulnerabilities by reading security advisories
AI agents, which combine large language models with automation software, can successfully exploit real world security vulnerabilities by reading security advisories, academics have claimed.…
Japanese government rejects Yahoo<i>!</i> infosec improvement plan
Japan's government has considered the proposed security improvements developed by Yahoo!, found them wanting, and ordered the onetime web giant to take new measures.…
Fire in the Cisco! Networking giant's Duo MFA message logs stolen in phish attack
Cisco is fighting fires on a couple cybersecurity fronts this week involving its Duo multi-factor authentication (MFA) service and its remote-access VPN services.…
MGM says FTC can't possibly probe its ransomware downfall – watchdog chief Lina Khan was a guest at the time
MGM Resorts wants the FTC to halt a probe into last year's ransomware infection at the mega casino chain – because the watchdog's boss Lina Khan was a guest at one of its hotels during the cyberattack, apparently.…
Alleged cryptojacker accused of stealing $3.5M from cloud to mine under $1M in crypto
A Nebraska man will appear in court today to face charges related to allegations that he defrauded cloud service providers of more than $3.5 million in a long-running cryptojacking scheme.…
SIM swap crooks solicit T-Mobile US, Verizon staff via text to do their dirty work
T-Mobile US employees say they are being sent text messages that offer them cash to perform illegal SIM swaps for supposed criminals.…
Open sourcerers say suspected xz-style attacks continue to target maintainers
Open source groups are warning the community about a wave of ongoing attacks targeting project maintainers similar to those that led to the recent attempted backdooring of a core Linux library.…
Change Healthcare’s ransomware attack costs edge toward $1B so far
UnitedHealth, parent company of ransomware-besieged Change Healthcare, says the total costs of tending to the February cyberattack for the first calendar quarter of 2024 currently stands at $872 million.…
Google location tracking deal could be derailed by politics
Google's plan to pay $62 million to settle allegations that it tracked people even when their Location History setting was switched off may have to be renegotiated based on several objections.…
CISA in a flap as Chirp smart door locks can be trivially unlocked remotely
Some smart locks controlled by Chirp Systems' software can be remotely unlocked by strangers thanks to a critical security vulnerability.…
Roku makes 2FA mandatory for all after nearly 600K accounts pwned
Streaming giant Roku is making 2FA mandatory after attackers accessed around 591,000 customer accounts earlier this year.…
Delinea Secret Server customers should apply latest patches
Customers of Delinea's Secret Server are being urged to upgrade their installations "immediately" after a researcher claimed a critical vulnerability could allow attackers to gain admin-level access.…
US senator wants to put the brakes on Chinese EVs
Electric vehicles may become a new front in America's tech war with China after a US senator called for Washington DC to block Chinese-made EVs to protect domestic industries and national security.…