SolarWinds slams SEC lawsuit against it as 'unprecedented' victim blaming 18,000 customers, including the Pentagon and Microsoft, may have other thoughts CSO29 Jan 2024 | 16
Apple redecorates its iPhone prison to appease Europe Analysis At least web competition will finally be allowed Software27 Jan 2024 | 80
Microsoft sheds some light on Russian email heist – and how to learn from Redmond's mistakes Step one, actually turn on MFA CSO27 Jan 2024 | 17
Wait, security courses aren't a requirement to graduate with a computer science degree? Comment And software makers seem to be OK with this, apparently CSO26 Jan 2024 | 64
As NSA buys up Americans' browser records, Uncle Sam is asked to simply knock it off If you could just not harvest our info unlawfully and without a warrant, that would be great Public Sector26 Jan 2024 | 18
Trickbot malware scumbag gets five years for infecting hospitals, businesses Most of the crew still at large Cyber-crime25 Jan 2024 | 8
Psst … wanna jailbreak ChatGPT? Thousands of malicious prompts for sale Turns out it's pretty easy to make the model jump its own guardrails AI + ML25 Jan 2024 | 25
US judge rejects spyware slinger NSO's attempt to bin Apple lawsuit Judge says cyber-crime law fits Pegasus case 'to a T' Security24 Jan 2024 | 28
Logitech warns of logistical impact of Houthi attacks in Red Sea Longer lead times, extra costs and more freight coming via air Personal Tech24 Jan 2024 | 13
What Microsoft's latest email breach says about this IT security heavyweight Comment Senator Wyden tells The Reg this latest infosec lapse is 'inexcusable' CSO24 Jan 2024 | 45
CISA boss swatted: 'While my own experience was certainly harrowing, it was unfortunately not unique' Election officials, judges, politicians, and gamers are in swatters' crosshairs Cyber-crime23 Jan 2024 | 46
Atlassian Confluence Server RCE attacks underway from 600+ IPs If you're still running a vulnerable instance then 'assume a breach' Security22 Jan 2024 | 5
Slug slimes aerospace biz AerCap with ransomware, brags about 1TB theft Loanbase admits massive loss of customer data to thieves, too Security22 Jan 2024 | 1
Travel app Kayak offers Boeing 737 Max 9 filter after that door plug drama Handy feature as FAA expands inspections to 737-900ER aircraft Personal Tech22 Jan 2024 | 36
How artists can poison their pics with deadly Nightshade to deter AI scrapers Models will need to swallow a lot of it, mind you AI + ML20 Jan 2024 | 44
Russians invade Microsoft exec mail while China jabs at VMware vCenter Server Plus: Uncle Sam says Ivanti exploits 'consistent with PRC' snoops Cyber-crime20 Jan 2024 | 9
Five ripped off IT giant with $7M+ in bogus work expenses, prosecutors claim Account manager and pals blew it on hotels, cruise, fancy meals and more allegedly Cyber-crime19 Jan 2024 | 37
IT consultant fined for daring to expose shoddy security Spotting a plaintext password and using it in research without authorization deemed a crime Research19 Jan 2024 | 94
Two more Citrix NetScaler bugs exploited in the wild Just when you thought you had recovered from Bleed Cyber-crime18 Jan 2024 | 2
Google TAG: Kremlin cyber spies move into malware with a custom backdoor The threat hunters believe COLDRIVER has used SPICA since at least November 2022 Research18 Jan 2024 | 5
Insurance website's buggy API leaked Office 365 password and a giant email trove Pen-tester accessed more than 650,000 sensitive messages, and still can, at Indian outfit using Toyota SaaS Security18 Jan 2024 | 3
Apple, AMD, Qualcomm GPU security hole lets miscreants snoop on AI training and chats So much for isolation Research17 Jan 2024 | 1
YouTube video lag wrongly blamed on its ad-blocking animus Slowdowns apparently due to a bug afflicting browser extensions, not retaliation against filters Personal Tech17 Jan 2024 | 92
FBI: Beware of thieves building Androxgh0st botnets using stolen creds Infecting networks via years-old CVEs that should have been patched by now CSO17 Jan 2024 |
Pentagon using ChatGPT? Oh sure, for cyber-things and veterans, says OpenAI Just days after ban on 'military and warfare' applications goes away, Davos hears the details AI + ML16 Jan 2024 | 4
How 'sleeper agent' AI assistants can sabotage your code without you realizing Analysis Today's safety guardrails won't catch these backdoors AI + ML16 Jan 2024 | 32
Patch now: Critical VMware, Atlassian flaws found You didn't have anything else to do this Tuesday, right? Patches16 Jan 2024 | 8
China loathes AirDrop so much it's publicized an old flaw in Apple's P2P protocol Infosec academic suggests Beijing's warning that iThing owners aren't anonymous deserves attention outside the great firewall too Security15 Jan 2024 | 13
Number of orgs compromised via Ivanti VPN zero-days grows as Mandiant weighs in Snoops had no fewer than five custom bits of malware to hand to backdoor networks CSO13 Jan 2024 | 4
Why we update... Data-thief malware exploits SmartScreen on unpatched Windows PCs Phemedrone Stealer loots drives for passwords, cookies, login tokens, etc Patches12 Jan 2024 | 20
What to make of Google backing Right-to-Repair in Oregon? 'It gives me hope' Anything to slow down the tech trash treadmill welcome at this point Personal Tech12 Jan 2024 | 7
eBay to cough up $3M after cyber-stalking couple who dared criticize the souk Staff sent live cockroaches, porno – and more – in harassment campaign to silence pair Cyber-crime11 Jan 2024 | 24
Fidelity National now says 1.3M customers had data stolen by cyber-crooks It's still not calling it ransomware Cyber-crime10 Jan 2024 | 1
Uncle Sam tells hospitals: Meet security standards or no federal dollars for you Expect new rules in upcoming weeks Security10 Jan 2024 | 7
Uncle Sam wants to make it clear that America's elections are very, very safe From whom, exactly, we wonder Public Sector10 Jan 2024 | 49
New year, new updates for security holes in Windows, Adobe, Android and more Patch Tuesday Nothing under exploit… The calm before the storm? Patches09 Jan 2024 | 14
Ransomware payment ban: Wrong idea at the wrong time Opinion Won't stop the chaos, may lead to attacks with more dire consequences CSO06 Jan 2024 | 130
After injecting cancer hospital with ransomware, crims threaten to swat patients Remember the good old days when ransomware crooks vowed not to infect medical centers? CSO05 Jan 2024 | 70
NIST: If someone's trying to sell you some secure AI, it's snake oil You really think someone would do that? Go on the internet and tell lies? AI + ML05 Jan 2024 | 20
Sandworm's Kyivstar attack should serve as a reminder of the Kremlin crew's 'global reach' 'Almost everything' wiped in the telecom attack, says Ukraine's top cyber spy CSO05 Jan 2024 | 13
X-ploited: Mandiant restores hijacked Twitter account after attempted crypto heist Miscreants mock Google-owned security house: 'Change password please' Security04 Jan 2024 | 9
Microsoft kills off Windows app installation from the web, again Unpleasant Christmas package lets malware down the chimney Security04 Jan 2024 | 23
Freight giant Estes refuses to deliver ransom, says personal data opened and stolen Pay up, or just decline to submit Cyber-crime03 Jan 2024 | 5
Formal ban on ransomware payments? Asking orgs nicely to not cough up ain't working With the average demand hitting $1.5 million, something's gotta change Security03 Jan 2024 | 72
A tale of 2 casino ransomware attacks: One paid out, one did not Feature What can be learned from MGM's and Caesars' infosec moves CSO28 Dec 2023 | 64
Iranian cyberspies target US defense orgs with a brand new backdoor Infosec in brief Also: International cops crackdown on credit card stealers and patch these critical vulns Cyber-crime23 Dec 2023 | 9
Lapsus$ teen sentenced to indefinite detention in hospital for Nvidia, GTA cyberattacks Arion Kurtaj will remain hospitalized until a mental health tribunal says he can leave Cyber-crime21 Dec 2023 | 53
Artificial intelligence is a liability Comment Automating people out of business processes will not go well at all, mark our words AI + ML21 Dec 2023 | 97
Mozilla decides Trusted Types is a worthy security feature DOM-XSS attacks have become scarce on Google websites since TT debuted Security21 Dec 2023 | 15
Something nasty injected login-stealing JavaScript into 50K online banking sessions Why keeping your PC secure and free of malware remains paramount Cyber-crime20 Dec 2023 | 26
Millions of Xfinity customers' info, hashed passwords feared stolen in cyberattack 35M-plus Comcast user IDs accessed by intruder via Citrix Bleed Cyber-crime19 Dec 2023 | 29
Before you go away for Xmas: You've patched that critical Perforce Server hole, right? Microsoft bug hunters highlight weaknesses in source-wrangling suite Patches19 Dec 2023 | 9
Internet's deep-level architects slam US, UK, Europe for pushing device-side scanning Someone needs to think of the children ... and the consequences of breaking encryption and trashing privacy Networks19 Dec 2023 | 59
Hacktivists boast: We shut down Iran's gas pumps today Predatory Sparrow previously knocked out railways and a steel plant Security18 Dec 2023 | 9
Mr Cooper cyberattack laid bare: 14.7M people's info stolen, costs hit $25M Mortgage lender says no evidence of identity theft (yet) after SSNs, DoBs, addresses, more swiped Cyber-crime18 Dec 2023 | 14
Cyber-crooks slip into Vans, trample over operations IT systems encrypted, personal data pilfered from North Face parent, we're told Cyber-crime18 Dec 2023 | 6
Hundreds of thousands of dollars in crypto stolen after Ledger code poisoned Former worker phished then NPM repo hijacked Cyber-crime16 Dec 2023 | 56
Ubiquiti blunder let some folks view others' security cameras, accounts Cloud misconfig blamed and now fixed Off-Prem15 Dec 2023 | 15
Google hopes to end tsunami of data dragnet warrants with Location History shakeup Android giant follows Apple's lead, will store whereabouts on device and delete info earlier by default Personal Tech15 Dec 2023 | 24
Kraft Heinz suggests we simmer down about Snatch ransomware attack claims Ah, beans Cyber-crime15 Dec 2023 | 17
Microsoft seizes websites used to sell phony email accounts to Scattered Spider and other crims That should solve the global cybercrime problem, right? Cyber-crime14 Dec 2023 | 8
Google pencils in limited third-party cookie purge for January One percent of Chrome users will experience the web as if using Firefox or Safari Personal Tech14 Dec 2023 | 19