tag:theregister.com,2005:feed/theregister.com/security/
The Register - Security
Copyright © 2024, Situation Publishing
Team Register
webmaster@theregister.co.uk
https://www.theregister.com/odds/about/contact/
https://www.theregister.com/Design/graphics/icons/favicon.png
Biting the hand that feeds IT — Enterprise Technology News and Analysis
https://www.theregister.com/Design/graphics/Reg_default/The_Register_r.png
2024-03-18T23:39:30.00Z
tag:theregister.com,2005:story232924
2024-03-18T21:29:13.00Z
2024-03-18T21:29:13.00Z
Thomas Claburn
https://search.theregister.com/?author=Thomas%20Claburn
Don't be like these 900+ websites and expose millions of passwords via Firebase
<h4>Warning: Poorly configured Google Cloud databases spill billing info, plaintext credentials</h4> <p>At least 900 websites built with Google's Firebase, a cloud database, have been misconfigured, leaving credentials, personal info, and other sensitive data inadvertently exposed to the public internet, according to security researchers.…</p>
tag:theregister.com,2005:story232923
2024-03-18T20:30:09.00Z
2024-03-18T20:30:09.00Z
Jessica Lyons
https://search.theregister.com/?author=Jessica%20Lyons
Fujitsu reveals malware installed on internal systems, risk of customer data spill
<h4>Sneaky software slips past shields, spurring scramble</h4> <p>Fujitsu has confirmed that miscreants have compromised some of its internal computers, deployed malware, and may have stolen some customer information.…</p> <p><!--#include virtual='/data_centre/_whitepaper_textlinks_top.html' --></p>
tag:theregister.com,2005:story232918
2024-03-18T19:00:10.00Z
2024-03-18T20:13:54.00Z
Connor Jones
https://search.theregister.com/?author=Connor%20Jones
More than 133,000 Fortinet appliances still vulnerable to month-old critical bug
<h4>A huge attack surface for a vulnerability with various PoCs available</h4> <p>The volume of Fortinet boxes exposed to the public internet and vulnerable to a month-old critical security flaw in FortiOS is still extremely high, despite a gradual increase in patching.…</p>
tag:theregister.com,2005:story232917
2024-03-18T16:45:14.00Z
2024-03-18T16:45:14.00Z
Jessica Lyons
https://search.theregister.com/?author=Jessica%20Lyons
Cyber baddies leak 70M+ files online, claim they're from AT&T
<h4>Telco reckons data is old, isn't from its systems</h4> <p>More than 70 million records, allegedly stolen from AT&T in 2021, were dumped on a cybercrime forum at the weekend.…</p>
tag:theregister.com,2005:story232909
2024-03-18T13:15:08.00Z
2024-03-18T18:40:08.00Z
Connor Jones
https://search.theregister.com/?author=Connor%20Jones
Cyberattack gifts esports pros with cheats, forcing Apex Legends to postpone tournament
<h4>Virtual gunslingers forcibly became cheaters via mystery means</h4> <p><strong>Updated</strong> Esports pros competing in the Apex Legends Global Series (ALGS) Pro League tournament were forced to abandon their match today due to a suspected cyberattack.…</p>
tag:theregister.com,2005:story232907
2024-03-18T07:29:14.00Z
2024-03-18T23:39:30.00Z
Simon Sharwood
https://search.theregister.com/?author=Simon%20Sharwood
Infosec teams must be allowed to fail, argues Gartner
<h4>But failing to recover from incidents is unforgivable because 'adrenalin does not scale'</h4> <p>Zero tolerance of failure by information security professionals is unrealistic, and makes it harder for cyber security folk to do the essential part of their job: recovering fast from inevitable attacks, according to Gartner analysts Chris Mixter and Dennis Xu.…</p>
tag:theregister.com,2005:story232908
2024-03-18T05:46:06.00Z
2024-03-18T19:08:26.00Z
Laura Dobberstein
https://search.theregister.com/?author=Laura%20Dobberstein
Filipino police free hundreds of slaves toiling in romance scam operation
<h4>875 workers liberated after falling for promises of lucrative work, nine arrested</h4> <p>Filipino police rescued 875 "workers" – including 504 foreigners – in a raid late last week on a firm that posed as an online gaming company but in reality operated a forced labor camp that housed romance scam operators.…</p>
tag:theregister.com,2005:story232889
2024-03-18T03:00:11.00Z
2024-03-18T03:00:11.00Z
Jack Kirkstall
https://search.theregister.com/?author=Jack%20Kirkstall
Protecting distributed branch office environments from ransomware
<h4>As ransomware becomes more sophisticated, detection tools should be upgraded to cover every site and location</h4> <p><strong>Sponsored Feature</strong> Ransomware gangs that steal and encrypt vital business data before extorting payment for its decryption and restoration are ramping up global attacks at an ever-increasing rate. In fact, cyber security experts agree that ransomware now represents one of - if not the most - serious cybersecurity threats currently facing governments, public/private sector organisations and enterprises around the world.…</p>
tag:theregister.com,2005:story232900
2024-03-18T02:31:10.00Z
2024-03-18T15:55:34.00Z
Brandon Vigliarolo
https://search.theregister.com/?author=Brandon%20Vigliarolo
ChatGPT side-channel attack has easy fix: Token obfuscation
<h4>Also: Roblox-themed infostealer on the prowl, telco insider pleads guilty to swapping SIMs, and some crit vulns</h4> <p><strong>Infosec in brief</strong> Almost as quickly as a paper came out last week revealing an AI side-channel vulnerability, Cloudflare researchers have figured out how to solve it: just obscure your token size.…</p>
tag:theregister.com,2005:story232487
2024-03-17T11:04:08.00Z
2024-03-17T11:04:08.00Z
Katyanna Quach
https://search.theregister.com/?author=Katyanna%20Quach
In the rush to build AI apps, please, please don't leave security behind
<h4>Supply-chain attacks are definitely possible and could lead to data theft, system hijacking, and more</h4> <p><strong>Feature</strong> While in a rush to understand, build, and ship AI products, developers and data scientists are being urged to be mindful of security and not fall prey to supply-chain attacks.…</p> <p><!--#include virtual='/data_centre/_whitepaper_textlinks_top.html' --></p>
tag:theregister.com,2005:story232891
2024-03-15T19:00:09.00Z
2024-03-15T19:00:09.00Z
Connor Jones
https://search.theregister.com/?author=Connor%20Jones
As if working at Helldesk weren't bad enough, IT helpers now targeted by cybercrims
<h4>Wave of Okta attacks mark what researchers are calling the biggest security trend of the year</h4> <p>IT helpdesk workers are increasingly the target of cybercriminals – a trend researchers have described as "the most noteworthy" of the past year.…</p>
tag:theregister.com,2005:story232881
2024-03-15T11:34:11.00Z
2024-03-15T11:34:11.00Z
Paul Kunert
https://search.theregister.com/?author=Paul%20Kunert
Cop shop rapped for 'completely avoidable' web form blunder
<h4>Made public highly sensitive data on complaints about Metropolitan Police Service</h4> <p>The London Mayor's Office for Policing and Crime is being rapped by regulators for untidy tech practices that made public the personal data of hundreds of people who filed complaints against the Metropolitan Police Service.…</p>
tag:theregister.com,2005:story232879
2024-03-14T23:35:06.00Z
2024-03-18T19:18:41.00Z
Jessica Lyons
https://search.theregister.com/?author=Jessica%20Lyons
Forget TikTok – Chinese spies want to steal IP by backdooring digital locks
<h4>Uncle Sam can use this snooping tool, too, but that's beside the point</h4> <p><strong>Updated</strong> There's another Chinese-manufactured product – joining the likes of TikTok, cars and semiconductors – that poses a national security risk to Americans: Electronic locks, such as those used in safes.…</p>
tag:theregister.com,2005:story232875
2024-03-14T20:24:06.00Z
2024-03-14T21:45:56.00Z
Brandon Vigliarolo
https://search.theregister.com/?author=Brandon%20Vigliarolo
FTC goes undercover to probe suspected antivirus scam, scores $26M settlement
<h4>Imagine trying to trick folks into buying $500 of unnecessary repairs – and they turn out to be federal agents</h4> <p>A pair of tech support businesses accused of swindling marks out of their hard-earned cash have agreed to cough up a $26 million settlement following an undercover probe by the FTC.…</p>
tag:theregister.com,2005:story232873
2024-03-14T18:26:12.00Z
2024-03-14T18:58:07.00Z
Jessica Lyons
https://search.theregister.com/?author=Jessica%20Lyons
LockBit ransomware kingpin gets 4 years behind bars
<h4>Canadian-Russian said to have turned to a life of cybercrime during pandemic, now must pay the price – literally</h4> <p>A LockBit ransomware kingpin has been sentenced to almost four years behind bars and ordered to pay more than CA$860,000 ($635,000, £500,000) in restitution to some of his victims by a Canadian court as he awaits extradition to the US.…</p>
tag:theregister.com,2005:story232872
2024-03-14T17:58:09.00Z
2024-03-14T21:16:20.00Z
Thomas Claburn
https://search.theregister.com/?author=Thomas%20Claburn
Google gooses Safe Browsing with real-time protection that doesn't leak to ad giant
<h4>Rare occasion when you do want Big Tech to make a hash of it</h4> <p>Google has enhanced its Safe Browsing service to enable real-time protection in Chrome for desktop, iOS, and soon Android against risky websites, without sending browsing history data to the ad biz.…</p>
tag:theregister.com,2005:story232869
2024-03-14T16:06:11.00Z
2024-03-14T16:06:11.00Z
Connor Jones
https://search.theregister.com/?author=Connor%20Jones
Record breach of French government exposes up to 43 million people's data
<h4>Zut alors! Department for registering and helping unemployed people broken into</h4> <p>A French government department - responsible for registering and assisting unemployed people - is the latest victim of a mega data breach that compromised the information of up to 43 million citizens.…</p>
tag:theregister.com,2005:story232854
2024-03-14T15:00:13.00Z
2024-03-14T15:00:13.00Z
Jessica Lyons
https://search.theregister.com/?author=Jessica%20Lyons
International effort to disrupt cybercrime moves into operational phase
<h4>Will the WEF experiment work?</h4> <p>The Cybercrime Atlas, a massive undertaking that aims to disrupt cybercriminals across the globe, enters its operational phase in 2024, two years after organizers laid the groundwork at the RSA Conference.…</p>
tag:theregister.com,2005:story232865
2024-03-14T14:03:11.00Z
2024-03-14T14:03:11.00Z
Connor Jones
https://search.theregister.com/?author=Connor%20Jones
US to probe Change Healthcare's data protection standards as lawsuits mount
<h4>Services slowly coming back online but providers still struggling</h4> <p>Change Healthcare is being investigated over the alleged 6 TB data theft by the ALPHV ransomware group as it continues recovery efforts.…</p>
tag:theregister.com,2005:story232857
2024-03-14T01:46:08.00Z
2024-03-14T01:46:08.00Z
Simon Sharwood
https://search.theregister.com/?author=Simon%20Sharwood
US Congress goes bang, bang, on TikTok sale-or-ban plan
<h4>Bill proposes to do to China what China already does to the US – make life hard for foreign social networks</h4> <p>The United States House of Representatives on Wednesday passed the Protecting Americans from Foreign Adversary Controlled Applications Act – a law aimed at forcing TikTok's Chinese parent ByteDance to sell the app's US operations or face the prospect of a ban.…</p>
tag:theregister.com,2005:story232846
2024-03-14T00:32:13.00Z
2024-03-14T01:19:01.00Z
Connor Jones
https://search.theregister.com/?author=Connor%20Jones
Nissan to let 100,000 Aussies and Kiwis know their data was stolen in cyberattack
<h4>Akira ransomware crooks brag of swiping thousands of ID documents during break-in</h4> <p>Over the next few weeks, Nissan Oceania will make contact with around 100,000 people in Australia and New Zealand whose data was pilfered in a December 2023 attack on its systems – perhaps by the Akira ransomware gang.…</p>
tag:theregister.com,2005:story232850
2024-03-13T18:00:14.00Z
2024-03-13T18:00:14.00Z
Jessica Lyons
https://search.theregister.com/?author=Jessica%20Lyons
Poking holes in Google tech bagged bug hunters $10M
<h4>A $2M drop from previous year. So … things are more secure?</h4> <p>Google awarded $10 million to 632 bug hunters last year through its vulnerability reward programs.…</p> <p><!--#include virtual='/data_centre/_whitepaper_textlinks_top.html' --></p>
tag:theregister.com,2005:story232839
2024-03-13T16:45:07.00Z
2024-03-13T16:45:07.00Z
Connor Jones
https://search.theregister.com/?author=Connor%20Jones
Cryptocurrency laundryman gets hung out to dry
<h4>Bitcoin Fog washed hundreds of millions for criminals</h4> <p>The operator of the world's longest-running Bitcoin money laundering service faces a 50-year prison sentence after being found guilty in a US court.…</p>
tag:theregister.com,2005:story232827
2024-03-13T16:00:12.00Z
2024-03-13T16:00:12.00Z
Thomas Claburn
https://search.theregister.com/?author=Thomas%20Claburn
Microsoft Copilot for Security prepares for April liftoff
<h4>Automated AI helper intended to make security more manageable</h4> <p>Microsoft Copilot for Security, a subscription AI security service, will be generally available on April 1, 2024, the company announced on Wednesday.…</p>
tag:theregister.com,2005:story232835
2024-03-13T12:05:09.00Z
2024-03-13T12:22:32.00Z
Connor Jones
https://search.theregister.com/?author=Connor%20Jones
Stanford University failed to detect ransomware intruders for 4 months
<h4>27,000 individuals had data stolen, which for some included names and social security numbers</h4> <p>Stanford University says the cybersecurity incident it dealt with last year was indeed ransomware, which it failed to spot for more than four months.…</p>
tag:theregister.com,2005:story232821
2024-03-13T08:51:09.00Z
2024-03-14T08:40:52.00Z
Robin Birtstone
https://search.theregister.com/?author=Robin%20Birtstone
Reducing the cloud security overhead
<h4>Why creating a layered defensive strategy that includes security by design can help address cloud challenges</h4> <p><strong>Sponsored Feature</strong> The world is filled with choices. Whether it's the 20 different types of shampoo on offer at the grocery store, or the dozens of Linux distros you can try for free, you can have it all.…</p>
tag:theregister.com,2005:story232823
2024-03-13T08:34:06.00Z
2024-03-13T16:13:14.00Z
Thomas Claburn
https://search.theregister.com/?author=Thomas%20Claburn
Whizkids jimmy OpenAI, Google's closed models
<h4>Infosec folk aren’t thrilled that if you poke APIs enough, you learn AI's secrets</h4> <p>Boffins have managed to pry open closed AI services from OpenAI and Google with an attack that recovers an otherwise hidden portion of transformer models.…</p>
tag:theregister.com,2005:story232825
2024-03-13T00:16:15.00Z
2024-03-13T20:51:35.00Z
Jessica Lyons
https://search.theregister.com/?author=Jessica%20Lyons
March Patch Tuesday sees Hyper-V join the guest-host escape club
<h4>Critical bugs galore among 61 Microsoft fixes, 56 from Adobe, a dozen from SAP, and a fistful from Fortinet</h4> <p><strong>Patch Tuesday</strong> Microsoft's monthly patch drop has arrived, delivering a mere 61 CVE-tagged vulnerabilities – none listed as under active attack or already known to the public.…</p>
tag:theregister.com,2005:story232822
2024-03-12T22:39:12.00Z
2024-03-12T22:39:12.00Z
Brandon Vigliarolo
https://search.theregister.com/?author=Brandon%20Vigliarolo
Meta sues ex infra VP for allegedly stealing top-secret datacenter blueprints
<h4>Exec accused of using own work PC to swipe confidential AI and staffing docs for stealth cloud startup</h4> <p>An ex-Meta veep has been sued by his former bosses for "brazenly disloyal and dishonest conduct" – and by that, they mean he allegedly stole confidential documents to help him build and recruit colleagues for an AI cloud startup. …</p>
tag:theregister.com,2005:story232818
2024-03-12T18:30:08.00Z
2024-03-12T19:25:10.00Z
Jessica Lyons
https://search.theregister.com/?author=Jessica%20Lyons
Biden's budget proposal boosts CISA funding to $3B
<h4>Plus almost $1.5b for health-care cybersecurity</h4> <p>US President Joe Biden has asked Congress to approve an extra $103 million in funding for the Cybersecurity and Infrastructure Security Agency, bringing CISA's total budget to $3 billion.…</p> <p><!--#include virtual='/data_centre/_whitepaper_textlinks_top.html' --></p>
tag:theregister.com,2005:story232813
2024-03-12T16:30:13.00Z
2024-03-12T16:30:13.00Z
Connor Jones
https://search.theregister.com/?author=Connor%20Jones
JetBrains is still mad at Rapid7 for the ransomware attacks on its customers
<h4>War of words wages on between vendors divided</h4> <p>Last week, we wrote about how security outfit Rapid7 threw JetBrains, the company behind the popular CI/CD platform TeamCity, under the bus over allegations of silent patching. Now, JetBrains has gone on the offensive.…</p>
tag:theregister.com,2005:story232809
2024-03-12T11:45:10.00Z
2024-03-12T11:45:10.00Z
Connor Jones
https://search.theregister.com/?author=Connor%20Jones
UK council yanks IT systems and phone lines offline following cyber ambush
<h4>Targeting recovery this week, officials still trying to 'dentify the nature of the incident'</h4> <p>Leicester City Council says IT systems and a number of its critical service phone lines will remain down until later this week at the earliest following a "cyber incident".…</p>
tag:theregister.com,2005:story232805
2024-03-12T06:26:11.00Z
2024-03-12T06:26:11.00Z
Simon Sharwood
https://search.theregister.com/?author=Simon%20Sharwood
French government sites disrupted by <i>très grande</i> DDoS
<h4>Russia and Sudan top the list of suspects</h4> <p>Several French government websites have been disrupted by a severe distributed denial of service attack.…</p>
tag:theregister.com,2005:story232795
2024-03-12T00:02:09.00Z
2024-03-12T00:02:09.00Z
Jessica Lyons
https://search.theregister.com/?author=Jessica%20Lyons
White House and lawmakers increase pressure on UnitedHealth to ease providers' pain
<h4>US senator calls cyber attack 'inexcusable,' calls for mandatory security rules</h4> <p>The Biden administration and US lawmakers are turning up the pressure on UnitedHealth group to ease medical providers' pain after the ransomware attack on Change Healthcare, by expediting payments to hospitals, physicians and pharmacists – among other tactics.…</p>
tag:theregister.com,2005:story232799
2024-03-11T21:58:50.00Z
2024-03-11T21:58:50.00Z
Jessica Lyons
https://search.theregister.com/?author=Jessica%20Lyons
Kremlin accuses America of plotting cyberattack on Russian voting systems
<h4>Don't worry, we have a strong suspicion Putin's still gonna win</h4> <p>The Kremlin has accused the United States of meddling in Russia's upcoming presidential election, and even accused Uncle Sam of planning a cyberattack on the country's online voting system.…</p>
tag:theregister.com,2005:story232787
2024-03-11T13:30:06.00Z
2024-03-11T13:30:06.00Z
Connor Jones
https://search.theregister.com/?author=Connor%20Jones
British Library pushes the cloud button, says legacy IT estate cause of hefty rebuild
<h4>Five months in and the mammoth post-ransomware recovery has barely begun</h4> <p>The British Library says legacy IT is the overwhelming factor delaying efforts to recover from the Rhysida ransomware attack in late 2023.…</p>
tag:theregister.com,2005:story232765
2024-03-11T11:16:15.00Z
2024-03-11T16:39:22.00Z
Richard Speed
https://search.theregister.com/?author=Richard%20Speed
How do you lot feel about Pay or say OK to ads model, asks ICO
<h4>And does it count as consent?</h4> <p>The UK's Information Commissioner's Office (ICO) has opened a consultation on "consent or pay" business models. We're sure readers of <i>The Register</i> will have a fair few things to say.…</p>
tag:theregister.com,2005:story232772
2024-03-11T04:28:10.00Z
2024-03-11T04:28:10.00Z
Brandon Vigliarolo
https://search.theregister.com/?author=Brandon%20Vigliarolo
Microsoft waited 6 months to patch actively exploited admin-to-kernel vulnerability
<h4>PLUS: NSA shares cloud security tips; Infosec training for Jordanian women; Critical vulnerabilities</h4> <p><strong>Infosec in brief</strong> Cybersecurity researchers informed Microsoft that Notorious North Korean hackers Lazarus Group discovered the "holy grail" of rootkit vulnerabilities in Windows last year, but Redmond still took six months to patch the problem.…</p> <p><!--#include virtual='/data_centre/_whitepaper_textlinks_top.html' --></p>
tag:theregister.com,2005:story232774
2024-03-08T22:55:25.00Z
2024-03-08T23:11:29.00Z
Jessica Lyons
https://search.theregister.com/?author=Jessica%20Lyons
Cybercrime crew Magnet Goblin bursts onto the scene exploiting Ivanti holes
<h4>Plus: CISA pulls plug on couple of systems feared compromised</h4> <p>There's yet another group of miscreants out there hijacking insecure Ivanti devices: A new, financially motivated gang dubbed Magnet Goblin has emerged from the shadowy digital depths with a knack for rapidly exploiting newly disclosed vulnerabilities before vendors have issued a fix.…</p>
tag:theregister.com,2005:story232770
2024-03-08T16:56:46.00Z
2024-03-08T21:06:48.00Z
Jessica Lyons
https://search.theregister.com/?author=Jessica%20Lyons
Microsoft confirms Russian spies stole source code, accessed internal systems
<h4>Still 'no evidence' of any compromised customer-facing systems, we're told</h4> <p>Microsoft has now confirmed that the Russian cyberspies who broke into its executives' email accounts stole source code and gained access to internal systems. The Redmond giant also characterized the intrusion as "ongoing."…</p>
tag:theregister.com,2005:story232762
2024-03-08T14:33:09.00Z
2024-03-08T14:33:09.00Z
Connor Jones
https://search.theregister.com/?author=Connor%20Jones
Change Healthcare registers pulse after crippling ransomware attack
<h4>Remaining services are expected to return in the coming weeks after $22M ALPHV ransom</h4> <p>Change Healthcare has taken the first steps toward a full recovery from the ransomware attack in February by bringing its electronic prescription services back online.…</p>
tag:theregister.com,2005:story232759
2024-03-08T12:35:12.00Z
2024-03-08T12:35:12.00Z
Connor Jones
https://search.theregister.com/?author=Connor%20Jones
Swiss cheese security? Play ransomware gang milks government of 65,000 files
<h4>Classified docs, readable passwords, and thousands of personal information nabbed in Xplain breach</h4> <p>The Swiss government had around 65,000 files related to it stolen by the Play ransomware gang during an attack on an IT supplier, its National Cyber Security Center (NCSC) says.…</p>
tag:theregister.com,2005:story232751
2024-03-08T03:57:10.00Z
2024-03-08T03:57:10.00Z
Laura Dobberstein
https://search.theregister.com/?author=Laura%20Dobberstein
Font security 'still a Helvetica of a problem' says Australian graphics outfit Canva
<h4>Who knew that unzipping a font archive could unleash a malicious file</h4> <p>Online graphic design platform Canva went looking for security problems in fonts, and found three – in "strange places."…</p>
tag:theregister.com,2005:story232748
2024-03-08T01:02:10.00Z
2024-03-08T01:02:10.00Z
Jessica Lyons
https://search.theregister.com/?author=Jessica%20Lyons
Securing open source software: Whose job is it, anyway?
<h4>CISA announces more help, and calls on app makers to step up</h4> <p>The US government and some of the largest open source foundations and package repositories have announced a series of initiatives intended to improve software supply-chain security, while also repeating calls for developers to increase support for such efforts.…</p>
tag:theregister.com,2005:story232743
2024-03-07T21:45:15.00Z
2024-03-07T21:45:15.00Z
Brandon Vigliarolo
https://search.theregister.com/?author=Brandon%20Vigliarolo
We're not Meta support: State AGs tell Zuck to fix rampant account takeover problem
<h4>'We refuse to operate as customer service representatives'</h4> <p>A group of 41 US state attorneys general, tired of serving as a customer complaint clearinghouse for Facebook and Instagram users, have sent a letter to Meta asking it to figure out how to reduce a "dramatic and persistent spike" in account takeovers.…</p>
tag:theregister.com,2005:story232744
2024-03-07T19:45:27.00Z
2024-03-08T00:23:50.00Z
Thomas Claburn
https://search.theregister.com/?author=Thomas%20Claburn
Chrome users – get an alert when extensions are in danger of falling into wrong hands
<h4>Under New Management is an early-warning system for potential poisoning of add-ons with malware</h4> <p>Millions of Chrome users now have a way to guard against the threat of extension subversion, that is, if they don't mind installing yet another browser extension.…</p>
tag:theregister.com,2005:story232741
2024-03-07T18:30:07.00Z
2024-03-07T18:34:17.00Z
Jessica Lyons
https://search.theregister.com/?author=Jessica%20Lyons
Possible China link to Change Healthcare ransomware attack
<h4>Alleged crim bought SmartScreen Killer, Cobalt Strike on dark-web markets</h4> <p>A criminal claiming to be an ALPHV/BlackCat affiliate — the gang responsible for the widely disruptive Change Healthcare ransomware infection last month — may have ties to Chinese government-backed cybercrime syndicates.…</p>
tag:theregister.com,2005:story232735
2024-03-07T16:34:12.00Z
2024-03-07T16:34:52.00Z
Connor Jones
https://search.theregister.com/?author=Connor%20Jones
JetBrains TeamCity under attack by ransomware thugs after disclosure mess
<h4>More than 1,000 servers remain unpatched and vulnerable</h4> <p>Security researchers are increasingly seeing active exploit attempts using the latest vulnerabilities in JetBrains' TeamCity that in some cases are leading to ransomware deployment.…</p>
tag:theregister.com,2005:story232729
2024-03-07T12:45:08.00Z
2024-03-07T20:20:43.00Z
Connor Jones
https://search.theregister.com/?author=Connor%20Jones
Belgian ale legend Duvel's brewery borked as ransomware halts production
<h4>Biz reassures quaffers it has enough beer, expects quick recovery before weekend</h4> <p>Belgian beer brewer Duvel says a ransomware attack has brought its facility to a standstill while its IT team works to remediate the damage.…</p>
tag:theregister.com,2005:story232724
2024-03-07T07:30:07.00Z
2024-03-08T22:42:41.00Z
Simon Sharwood
https://search.theregister.com/?author=Simon%20Sharwood
VMware urges emergency action to blunt hypervisor flaws
<h4>Critical vulns in USB under ESXi and desktop hypervisors found by Chinese researchers at cracking contest</h4> <p>Hypervisors are supposed to provide an inviolable isolation layer between virtual machines and hardware. But hypervisor heavyweight VMware by Broadcom yesterday revealed its hypervisors are not quite so inviolable as it might like.…</p>