London Clinic probes claim staffer tried to peek at Princess Kate's records First: Not being able buy a meat pie with a credit card. Now this Security20 Mar 2024 | 74
Serial extortionist of medical facilities pleads guilty to cybercrime charges Robert Purbeck even went as far as threatening a dentist with the sale of his child’s data Cyber-crime20 Mar 2024 | 6
Stalkerware usage surging, despite data privacy concerns At least 31,031 people affected last year Security20 Mar 2024 | 1
Five Eyes tell critical infra orgs: Take these actions now to protect against China's Volt Typhoon Unless you want to be the next Change Healthcare, that is Security20 Mar 2024 | 8
Australian techie jailed for accessing museum's accounting system and buying himself stuff Also down under, researchers find security-cleared workers leaking details of their gigs Cyber-crime20 Mar 2024 | 26
Beijing-backed cyberspies attacked 70+ orgs across 23 countries Plus potential links to I-Soon, researchers say Security19 Mar 2024 | 11
Crypto scams more costly to the US than ransomware, Feds say Latest figures paint grim picture of how viciously the elderly are targeted Cyber-crime19 Mar 2024 | 9
Crypto wallet providers urged to rethink security as criminals drain them of millions Innovative Ethereum feature exploited as victims say goodbye to assets Cyber-crime19 Mar 2024 | 13
Atos says Airbus flew off, no longer interested in infosec and big data biz Ailing tech integrator takes a hard hit... share price down by up to 20% this morning Security19 Mar 2024 | 13
Don't be like these 900+ websites and expose millions of passwords via Firebase Warning: Poorly configured Google Cloud databases spill billing info, plaintext credentials CSO18 Mar 2024 | 11
Fujitsu: Miscreants infected our systems with malware, may have stolen customer info Sneaky software slips past shields, spurring scramble Security18 Mar 2024 | 5
More than 133,000 Fortinet appliances still vulnerable to month-old critical bug A huge attack surface for a vulnerability with various PoCs available Patches18 Mar 2024 | 2
Cyber baddies leak 70M+ files online, claim they're from AT&T Telco reckons data is old, isn't from its systems Security18 Mar 2024 | 1
Cyberattack gifts esports pros with cheats, forcing Apex Legends to postpone tournament Updated Virtual gunslingers forcibly became cheaters via mystery means Cyber-crime18 Mar 2024 | 6
Infosec teams must be allowed to fail, argues Gartner But failing to recover from incidents is unforgivable because 'adrenalin does not scale' Security18 Mar 2024 | 16
Filipino police free hundreds of slaves toiling in romance scam operation 875 workers liberated after falling for promises of lucrative work, nine arrested Cyber-crime18 Mar 2024 | 45
Protecting distributed branch office environments from ransomware As ransomware becomes more sophisticated, detection tools should be upgraded to cover every site and location Sponsored Feature
ChatGPT side-channel attack has easy fix: Token obfuscation Infosec in brief Also: Roblox-themed infostealer on the prowl, telco insider pleads guilty to swapping SIMs, and some crit vulns Security18 Mar 2024 | 2
In the rush to build AI apps, please, please don't leave security behind Feature Supply-chain attacks are definitely possible and could lead to data theft, system hijacking, and more AI + ML17 Mar 2024 | 20
As if working at Helldesk weren't bad enough, IT helpers now targeted by cybercrims Wave of Okta attacks mark what researchers are calling the biggest security trend of the year Research15 Mar 2024 | 15
Cop shop rapped for 'completely avoidable' web form blunder Made public highly sensitive data on complaints about Metropolitan Police Service Security15 Mar 2024 | 14
Forget TikTok – Chinese spies want to steal IP by backdooring digital locks Updated Uncle Sam can use this snooping tool, too, but that's beside the point Security14 Mar 2024 | 21
FTC goes undercover to probe suspected antivirus scam, scores $26M settlement Imagine trying to trick folks into buying $500 of unnecessary repairs – and they turn out to be federal agents Cyber-crime14 Mar 2024 | 9
LockBit ransomware kingpin gets 4 years behind bars Canadian-Russian said to have turned to a life of cybercrime during pandemic, now must pay the price – literally Cyber-crime14 Mar 2024 | 12
Google gooses Safe Browsing with real-time protection that doesn't leak to ad giant Rare occasion when you do want Big Tech to make a hash of it Personal Tech14 Mar 2024 | 16
Record breach of French government exposes up to 43 million people's data Zut alors! Department for registering and helping unemployed people broken into Cyber-crime14 Mar 2024 | 28
International effort to disrupt cybercrime moves into operational phase Will the WEF experiment work? Cyber-crime14 Mar 2024 | 22
US to probe Change Healthcare's data protection standards as lawsuits mount Services slowly coming back online but providers still struggling Cyber-crime14 Mar 2024 | 3
US House goes bang, bang on TikTok sale-or-ban plan Bill proposes to do to China what China already does to the US – make life hard for foreign social networks Public Sector14 Mar 2024 | 61
Nissan to let 100,000 Aussies and Kiwis know their data was stolen in cyberattack Akira ransomware crooks brag of swiping thousands of ID documents during break-in Cyber-crime14 Mar 2024 | 7
Poking holes in Google tech bagged bug hunters $10M A $2M drop from previous year. So … things are more secure? Security13 Mar 2024 | 4
Cryptocurrency laundryman gets hung out to dry Bitcoin Fog washed hundreds of millions for criminals Cyber-crime13 Mar 2024 | 27
Microsoft Copilot for Security prepares for April liftoff Automated AI helper intended to make security more manageable Security13 Mar 2024 | 26
Stanford University failed to detect ransomware intruders for 4 months 27,000 individuals had data stolen, which for some included names and social security numbers Cyber-crime13 Mar 2024 | 4
Reducing the cloud security overhead Why creating a layered defensive strategy that includes security by design can help address cloud challenges Sponsored Feature
Whizkids jimmy OpenAI, Google's closed models Infosec folk aren’t thrilled that if you poke APIs enough, you learn AI's secrets AI + ML13 Mar 2024 | 44
March Patch Tuesday sees Hyper-V join the guest-host escape club Patch Tuesday Critical bugs galore among 61 Microsoft fixes, 56 from Adobe, a dozen from SAP, and a fistful from Fortinet Patches13 Mar 2024 | 9
Meta sues ex infra VP for allegedly stealing top-secret datacenter blueprints Exec accused of using own work PC to swipe confidential AI and staffing docs for stealth cloud startup PaaS + IaaS12 Mar 2024 | 4
Biden's budget proposal boosts CISA funding to $3B Plus almost $1.5b for health-care cybersecurity Security12 Mar 2024 | 5
JetBrains is still mad at Rapid7 for the ransomware attacks on its customers War of words wages on between vendors divided Patches12 Mar 2024 | 12
UK council yanks IT systems and phone lines offline following cyber ambush Targeting recovery this week, officials still trying to 'dentify the nature of the incident' Cyber-crime12 Mar 2024 | 49
French government sites disrupted by très grande DDoS Russia and Sudan top the list of suspects Public Sector12 Mar 2024 | 7
White House and lawmakers increase pressure on UnitedHealth to ease providers' pain US senator calls cyber attack 'inexcusable,' calls for mandatory security rules Security12 Mar 2024 | 3
Kremlin accuses America of plotting cyberattack on Russian voting systems Don't worry, we have a strong suspicion Putin's still gonna win Security11 Mar 2024 | 48
British Library pushes the cloud button, says legacy IT estate cause of hefty rebuild Five months in and the mammoth post-ransomware recovery has barely begun Cyber-crime11 Mar 2024 | 45
How do you lot feel about Pay or say OK to ads model, asks ICO And does it count as consent? Security11 Mar 2024 | 82
Microsoft waited 6 months to patch actively exploited admin-to-kernel vulnerability Infosec in brief PLUS: NSA shares cloud security tips; Infosec training for Jordanian women; Critical vulnerabilities Security11 Mar 2024 | 10
Cybercrime crew Magnet Goblin bursts onto the scene exploiting Ivanti holes Plus: CISA pulls plug on couple of systems feared compromised Cyber-crime08 Mar 2024 | 2
Microsoft confirms Russian spies stole source code, accessed internal systems Still 'no evidence' of any compromised customer-facing systems, we're told Cyber-crime08 Mar 2024 | 54
Change Healthcare registers pulse after crippling ransomware attack Remaining services are expected to return in the coming weeks after $22M ALPHV ransom Cyber-crime08 Mar 2024 | 2
Swiss cheese security? Play ransomware gang milks government of 65,000 files Classified docs, readable passwords, and thousands of personal information nabbed in Xplain breach Cyber-crime08 Mar 2024 | 11
Font security 'still a Helvetica of a problem' says Australian graphics outfit Canva Who knew that unzipping a font archive could unleash a malicious file Security08 Mar 2024 | 38
Securing open source software: Whose job is it, anyway? CISA announces more help, and calls on app makers to step up CSO08 Mar 2024 | 21
We're not Meta support: State AGs tell Zuck to fix rampant account takeover problem 'We refuse to operate as customer service representatives' Security07 Mar 2024 | 16
Chrome users – get an alert when extensions are in danger of falling into wrong hands Under New Management is an early-warning system for potential poisoning of add-ons with malware Applications07 Mar 2024 | 22
Possible China link to Change Healthcare ransomware attack Alleged crim bought SmartScreen Killer, Cobalt Strike on dark-web markets Cyber-crime07 Mar 2024 | 3
JetBrains TeamCity under attack by ransomware thugs after disclosure mess More than 1,000 servers remain unpatched and vulnerable Cyber-crime07 Mar 2024 | 11
Belgian ale legend Duvel's brewery borked as ransomware halts production Biz reassures quaffers it has enough beer, expects quick recovery before weekend Cyber-crime07 Mar 2024 | 40
VMware urges emergency action to blunt hypervisor flaws Critical vulns in USB under ESXi and desktop hypervisors found by Chinese researchers at cracking contest Virtualization07 Mar 2024 | 16
Reminder: Infostealer malware is coming for your ChatGPT credentials Singaporean researchers note rising presence of OpenAI logins in infostealer malware logs Security07 Mar 2024 | 14