Malaysia is working on an internet 'kill switch', says minister
Follows requirement for social media and messaging platforms to get a license
Public Sector30 Jul 2024 | 21
Security
Meta's AI safety system defeated by the space bar
'Ignore previous instructions' thwarts Prompt-Guard model if you just add some good ol' ASCII code 32
AI + ML29 Jul 2024 | 57
US border cops really must get a warrant in NY before searching your phones, devices
Do we really want to bother SCOTUS with this, friends? Surely they're way too busy to take a look
Public Sector29 Jul 2024 | 38
Intruders at HealthEquity rifled through storage, stole 4.3M people's data
No mention of malware or ransomware – somewhat of a rarity these days
Cyber-crime29 Jul 2024 | 5
Google apologizes for breaking password manager for millions of Windows users with iffy Chrome update
Happy Sysadmin Day
CSO29 Jul 2024 | 13
Post-CrowdStrike, Microsoft to discourage use of kernel drivers by security tools
Updated Now there's an idea – parsing config data in user mode
OSes29 Jul 2024 | 49
China ponders creating a national 'cyberspace ID'
Because clearly it's better for Beijing to know who you are than for every ISP and social service to keep its own records
Public Sector29 Jul 2024 | 18
Secure Boot useless on hundreds of PCs from major vendors after key leak
Infosec in brief Plus: More stalkerware exposure; a $16M TracFone fine; Ransomware victims don't use MFA, and more
Security29 Jul 2024 | 36
CrowdStrike meets Murphy's Law: Anything that can go wrong will
Opinion And boy, did last Friday's Windows fiasco ever prove that yet again
Patches26 Jul 2024 | 98
Progress discloses second critical flaw in Telerik Report Server in as many months
These are the kinds of bugs APTs thrive on, just ask the Feds
Patches26 Jul 2024 | 1
North Korean chap charged for attacks on US hospitals, military, NASA – and even China
Microsoft, Mandiant, weigh in with info about methods used by Andariel gang alleged to have made many, many, heists
Security26 Jul 2024 | 4
Malware crew Stargazers Goblin used 3,000 GitHub accounts to make bank
May even have targeted other malware gangs, and infosec researchers
Cyber-crime26 Jul 2024 | 9
CrowdStrike update blunder may cost world billions – and insurance ain't covering it all
We offer this formula instead: RND(100.0)*(10^9)
CSO26 Jul 2024 | 60
Beware of fake CrowdStrike domains pumping out Lumma infostealing malware
PSA: Only accept updates via official channels ... ironically enough
Malware Month25 Jul 2024 | 3
FYI: Data from deleted GitHub repos may not actually be deleted
And the forking Microsoft-owned code warehouse doesn't see this as much of a problem
CSO25 Jul 2024 | 49
Uncle Sam accuses telco IT pro of decade-long spying campaign for China
Beijing has a long history of recruiting US residents to carry out various espionage activities
Cyber-crime25 Jul 2024 | 9
You should probably fix this 5-year-old critical Docker vuln fairly sharpish
For some unknown reason, initial patch was omitted from later versions
Patches25 Jul 2024 |
Kaspersky says Uncle Sam snubbed proposal to open up its code for third-party review
Exclusive Those national security threat claims? 'No evidence,' VP tells The Reg
CSO25 Jul 2024 | 56
Patch management still seemingly abysmal because no one wants the job
Comment Are your security and ops teams fighting to pass the buck?
Malware Month25 Jul 2024 | 29
How a cheap barcode scanner helped fix CrowdStrike'd Windows PCs in a flash
This one weird trick saved countless hours and stress – no, really
OSes25 Jul 2024 | 89
The months and days before and after CrowdStrike's fatal Friday
Analysis 'In the short term, they're going to have to do a lot of groveling'
CSO25 Jul 2024 | 46
Oops. Apple relied on bad code while flaming Google Chrome's Topics ad tech
Yes, you can be fingerprinted and tracked via Privacy Sandbox – tho the risk isn't as high as feared
Personal Tech24 Jul 2024 | 8
Uncle Sam opens probe into CrowdStrike turbulence at Delta Air Lines
Concerns abound over why it has taken so long to recover compared to competitors
Security24 Jul 2024 | 10
Windows Patch Tuesday update might send a user to the BitLocker recovery screen
Not now, Microsoft
Patches24 Jul 2024 | 44
Data pilfered from Pentagon IT supplier Leidos
Updated With numerous US government agency customers, any leak could be serious
Cyber-crime24 Jul 2024 | 2
School gets an F for using facial recognition on kids in canteen
Watchdog reprimand follows similar cases in 2021
Security24 Jul 2024 | 96
Forget security – Google's reCAPTCHA v2 is exploiting users for profit
Updated Web puzzles don't protect against bots, but humans have spent 819 million unpaid hours solving them
Security24 Jul 2024 | 73
CrowdStrike blames a test software bug for that giant global mess it made
Something called 'Content Validator' did not validate the content, and the rest is history
Security24 Jul 2024 | 154
Security biz KnowBe4 hired fake North Korean techie, who got straight to work ... on evil
If it can happen to folks that run social engineering defence training, what hope for the rest of us?
Security24 Jul 2024 | 36
Philippines wipes out its legit online gambling industry to take down scammers
President apologizes in advance for job losses
Public Sector24 Jul 2024 | 5
How did a CrowdStrike file crash millions of Windows computers? We take a closer look at the code
Analysis Maybe next time some staged rollouts? A bit of QA too?
CSO23 Jul 2024 | 119
Administrators have update lessons to learn from the CrowdStrike outage
How could this happen to us? We were supposed to be two versions behind?
Security23 Jul 2024 | 34
Cybercrooks spell trouble with typosquatting domains amid CrowdStrike crisis
Latest trend follows various malware campaigns that began just hours after IT calamity
Cyber-crime23 Jul 2024 | 4
Alphabet's reported $23B bet on Wiz fizzles out
Cybersecurity outfit to go its own way to IPO and $1B ARR
Security23 Jul 2024 | 4
Google's plan to drop third-party cookies in Chrome crumbles
Ad giant promises to protect privacy, as critics say surveillance continues
Software23 Jul 2024 | 60
Global cops power down world's 'most prolific' DDoS dealership
One arrest was made weeks ago but no word on the suspect's identity yet
Cyber-crime22 Jul 2024 | 1
LA County Superior Court closes doors to reboot justice after ransomware attack
Some rest for the wicked?
Cyber-crime22 Jul 2024 | 6
Cybercrooks crafting solo careers in wake of ransomware takedowns
More baddies go it alone as trust in big gangs withers, claims Europol
Cyber-crime22 Jul 2024 | 2
Oracle coughs up $115M to make privacy case go away
Big Red agrees not to capture personal details after two-year class action
Security22 Jul 2024 | 6
EU gave CrowdStrike the keys to the Windows kernel, claims Microsoft
Was a 2009 agreement on interoperability to blame?
Security22 Jul 2024 | 220
Two Russians sanctioned over cyberattacks on US critical infrastructure
Supposed hacktivist efforts previously linked to the Kremlin's GRU
Cyber-crime22 Jul 2024 | 5
Cellebrite got into Trump shooter's Samsung device in just 40 minutes
Infosec in brief Also: Second-string Russian hackers sanctioned; Senators demand answers from Snowflake, and more
Security22 Jul 2024 | 63
CrowdStrike's Falcon Sensor also linked to Linux kernel panics and crashes
Updated Rapid restore tool being tested as Microsoft estimates 8.5M machines went down
Security21 Jul 2024 | 84
UK cops arrest teen suspect in MGM Resorts cyberattack probe
17-year-old cuffed as FBI says it will 'relentlessly pursue' miscreants around the globe
Cyber-crime19 Jul 2024 | 17
CrowdStrike Windows patchpocalypse could take weeks to fix, IT admins fear
Kettle Our vultures gather to review this very freaky Friday
CSO19 Jul 2024 | 75
CrowdStrike file update bricks Windows machines around the world
Updated Falcon Sensor putting hosts into deathloop - but there's a workaround
Software19 Jul 2024 | 550
North Korea likely behind takedown of Indian crypto exchange WazirX
Firm halts trades after seeing $230 million disappear
Security19 Jul 2024 | 21
Beijing's attack gang Volt Typhoon was a false flag inside job conspiracy: China
Run by the NSA, the FBI, and Five Eyes nations, who fooled infosec researchers, apparently
Cyber-crime19 Jul 2024 | 30
Judge mostly drags SEC's lawsuit against SolarWinds into the recycling bin
Russia-invaded software biz 'grateful for the support we have received'
CSO18 Jul 2024 | 3
Kaspersky challenges US government to put up or shut up about Kremlin ties
Stick an independent probe in our software, you won't find any Putin.DLL backdoor
Security18 Jul 2024 | 49
Russia’s FIN7 is peddling its EDR-nerfing malware to ransomware gangs
Major vendors' products scuppered by novel techniques
Research18 Jul 2024 | 5
Maximum-severity Cisco vulnerability allows attackers to change admin passwords
You’re going to want to patch this one
Patches18 Jul 2024 | 17
Firms skip security reviews of major app updates about half the time
Updated Complicated, costly, time-consuming – pick three
Patches18 Jul 2024 | 18
Release the hounds! Securing datacenters may soon need sniffer dogs
Nothing else can detect attackers with implants designed to foil physical security
Security18 Jul 2024 | 35
Merged Exabeam and LogRhythm cut jobs, face lawsuit
Unconfirmed reports suggest 30 percent reduction in headcount
Security17 Jul 2024 | 4
Kaspersky gives US customers six months of free updates as a parting gift
Updated So long, farewell, do svidaniya, goodbye
Security17 Jul 2024 | 15
Ransomware continues to pile on costs for critical infrastructure victims
Millions more spent without any improvement in recovery times
Malware Month17 Jul 2024 | 5
London council accuses watchdog of 'exaggerating' danger of 2020 raid on residents' data
You escaped a big fat fine! Take the win and run, won’t you?
Malware Month17 Jul 2024 | 26
Craig Wright admits he isn't the inventor of Bitcoin after High Court judgment in UK
Aussie definitely not Satoshi Nakamoto, faces £6M legal bill and possible perjury trial
Security17 Jul 2024 | 86
Iran's MuddyWater phishes Israeli orgs with custom BugSleep backdoor
India, Turkey, also being targeted by campaign that relies on corporate email compromise
Malware Month17 Jul 2024 | 11
Biting the hand that feeds IT
