Trump administration wants to go on cyber offensive against China
The US has never attacked Chinese critical infrastructure before, right?
Cyber-crime16 Dec 2024 | 25
Security
Deloitte says cyberattack on Rhode Island benefits portal carries 'major security threat'
Personal and financial data probably stolen
Cyber-crime16 Dec 2024 | 2
Are your Prometheus servers and exporters secure? Probably not
Infosec in brief Plus: Netscaler brute force barrage; BeyondTrust API key stolen; and more
Security15 Dec 2024 | 1
Iran-linked crew used custom 'cyberweapon' in US critical infrastructure attacks
IOCONTROL targets IoT and OT devices from a ton of makers, apparently
Research13 Dec 2024 | 15
Scumbag gets 30 years in the clink for running CSAM dark-web chatrooms, abusing kids
'Today’s sentencing is more than just a punishment. It’s a message'
Cyber-crime13 Dec 2024 | 42
Google Timeline location purge causes collateral damage
Privacy measure leaves some mourning lost memories
Security13 Dec 2024 | 48
Cyber protection made intuitive and affordable
How Cynet delivered 100 percent Protection and 100 percent Detection Visibility in 2024 MITRE ATT&CK Evaluation
Partner Content
Taming the multi-vault beast
GitGuardian takes on enterprise secrets sprawl
Partner Content
North Korea's fake IT worker scam hauled in at least $88M over six years
DoJ thinks it's found the folks that ran it, and some of the 'IT warriors' sent out to fleece employers
Cyber-crime13 Dec 2024 | 2
Apache issues patches for critical Struts 2 RCE bug
More details released after devs allowed weeks to apply fixes
Patches12 Dec 2024 |
Lights out for 18 more DDoS booters in pre-Christmas Operation PowerOFF push
Holiday cheer comes in the form of three arrests and 27 shuttered domains
Cyber-crime12 Dec 2024 | 5
British Army zaps drones out of the sky with laser trucks
High-energy weapon proves its mettle in testing
Public Sector12 Dec 2024 | 145
Firefox ditches Do Not Track because nobody was listening anyway
Few websites actually respect the option, says Mozilla
Software12 Dec 2024 | 88
Citrix goes shopping in Europe and returns with gifts for security-conscious customers
Acquires two companies that help those on the nice list keep naughty list types at bay
Virtualization12 Dec 2024 |
Blocking Chinese spies from intercepting calls? There ought to be a law
Sen. Wyden blasts FCC's 'failure' amid Salt Typhoon hacks
Security11 Dec 2024 | 17
Krispy Kreme Doughnut Corporation admits to hole in security
Belly-busting biz says it's been hit by cowardly custards
Security11 Dec 2024 | 33
Three more vulns spotted in Ivanti CSA, all critical, one 10/10
Patch up, everyone – that admin portal is mighty attractive to your friendly cyberattacker
Patches11 Dec 2024 | 2
US names Chinese national it alleges was behind 2020 attack on Sophos firewalls
Also sanctions his employer – an outfit called Sichuan Silence linked to Ragnarok ransomware
Cyber-crime11 Dec 2024 | 4
Microsoft holds last Patch Tuesday of the year with 72 gifts for admins
Patch Tuesday Twas the night before Christmas, and all through the house, patching was done with the click of a mouse
Security10 Dec 2024 | 24
US military grounds entire Osprey tiltrotor fleet over safety concerns
Boeing-Bell V-22 can't outfly its checkered past, it seems
Public Sector10 Dec 2024 | 89
AMD secure VM tech undone by DRAM meddling
Boffins devise BadRAM attack to pilfer secrets from SEV-SNP encrypted memory
Systems10 Dec 2024 | 10
Fully patched Cleo products under renewed 'zero-day-ish' mass attack
Thousands of servers targeted while customers wait for patches
Research10 Dec 2024 |
Heart surgery device maker's security bypassed, data encrypted and stolen
Sounds like th-aorta get this sorted quickly
Cyber-crime10 Dec 2024 | 20
Bitfinex heist gets the Netflix treatment after 'cringey couple' sentenced
Streamer's trademark dramatic style takes on Bitcoin Bonnie and Clyde
Cyber-crime10 Dec 2024 | 6
WhatsApp finally fixes View Once flaw that allowed theft of supposedly vanishing pics
And it only took four months, tut
Security10 Dec 2024 | 22
Police arrest suspect in murder of UnitedHealthcare CEO, with grainy pics the only tech involved
McDonald's worker called it in, cops swooped, found 'gun, suppressor, manifesto'
Security10 Dec 2024 | 131
China's Salt Typhoon recorded top American officials' calls, says White House
No word yet on who was snooped on. Any bets?
CSO09 Dec 2024 | 24
Crooks stole AWS credentials from misconfigured sites then kept them in open S3 bucket
Exclusive ShinyHunters-linked heist thought to have been ongoing since March
Research09 Dec 2024 | 9
OpenWrt orders router firmware updates after supply chain attack scare
A couple of bugs lead to a potentially bad time
CSO09 Dec 2024 | 9
Microsoft dangles $10K for hackers to hijack LLM email service
Outsmart an AI, win a little Christmas cash
CSO09 Dec 2024 | 12
Blue Yonder ransomware termites claim credit
Infosec in brief Also: Mystery US firm compromised by Chinese hackers for months; Safe links that aren't; Polish spy boss arrested, and more
Security09 Dec 2024 | 3
How Chinese insiders are stealing data scooped up by President Xi's national surveillance system
Feature 'It's a double-edged sword,' security researchers tell The Reg
Public Sector08 Dec 2024 | 52
Micropatchers share 1-instruction fix for NTLM hash leak flaw in Windows 7+
Updated Microsoft's OS sure loves throwing your creds at remote systems
Patches06 Dec 2024 | 13
Facing sale or ban, TikTok tossed under national security bus by appeals court
Video slinger looks to Supremes for salvation, though anything could happen under Trump
Personal Tech06 Dec 2024 | 43
Salt Typhoon forces FCC's hand on making telcos secure their networks
Proposal pushes stricter infosec safeguards after Chinese state baddies expose vulns
Security06 Dec 2024 | 4
Badass Russian techie outsmarts FSB, flees Putinland all while being tracked with spyware
Threatened with life in prison, Kyiv charity worker gives middle finger to state spies
Security06 Dec 2024 | 65
Protect your clouds
Get best practice advice on how to safeguard your cloud infrastructure from SANS
Sponsored Post
PoC exploit chains Mitel MiCollab 0-day, auth-bypass bug to access sensitive files
updated Still unpatched 100+ days later, watchTowr says
Cyber-crime06 Dec 2024 | 4
Microsoft: Another Chinese cyberspy crew targeting US critical orgs 'as of yesterday'
Redmond threat intel maven talks explains this persistent pain to The Reg
Security06 Dec 2024 | 16
Solana blockchain's popular web3.js npm package backdoored to steal keys, funds
Damage likely limited to those running bots with private PKI access
Cyber-crime05 Dec 2024 | 7
British hospitals hit by cyberattacks still battling to get systems back online
Updated Children's hospital and cardiac unit say criminals broke in via shared 'digital gateway service'
Cyber-crime05 Dec 2024 | 21
BT Group confirms attackers tried to break into Conferencing division
Sensitive data allegedly stolen from US subsidiary following Black Basta post
Cyber-crime05 Dec 2024 | 8
Shape the future of UK cyber security
Support the industry by sponsoring the UK Cyber Team Competition
Partner Content
Ransomware hangover, Putin grudge blamed for vodka maker's bankruptcy
Stoli Group on the rocks in the US
Security05 Dec 2024 | 35
T-Mobile US CSO: Spies jumped from one telco to another in a way 'I've not seen in my career'
Interview Security chief talks to El Reg as Feds urge everyone to use encrypted chat
CSO05 Dec 2024 | 54
Cops arrest suspected admin of German-language crime bazaar
Drugs, botnets, forged docs, and more generated fortune for platform sellers
Cyber-crime04 Dec 2024 | 24
Microsoft says premature patch could make Windows Recall forget how to work
Installed the final non-security preview update of 2024? Best not hop onto the Dev Channel
CSO04 Dec 2024 | 25
Eurocops take down 'secure' criminal chat system known as Matrix
Updated They took the red pill
Cyber-crime04 Dec 2024 | 46
FTC scolds two data brokers for allegedly selling your location to the meter
'Where we go is who we are' totally isn't a creepy ad slogan at all
Personal Tech04 Dec 2024 | 22
Perfect 10 directory traversal vuln hits SailPoint's IAM solution
Updated 20-year-old info disclosure class bug still pervades security software
Patches03 Dec 2024 | 6
Major energy contractor reports 'limited' access to IT after ransomware locks files
ENGlobal customers include the Pentagon as well as major oil and gas producers
Security03 Dec 2024 | 11
Severity of the risk facing the UK is widely underestimated, NCSC annual review warns
National cyber emergencies increased threefold this year
Cyber-crime03 Dec 2024 | 18
Russia gives life sentence to Hydra dark web kingpin after seizing a ton of drugs
No exaggeration – literally a ton. Plus, 15 co-conspirators also put behind bars
Cyber-crime03 Dec 2024 | 27
Data on 760K workers from Xerox, Nokia, BofA, Morgan Stanley and more dumped online
Yet another result of the MOVEit mess
Cyber-crime03 Dec 2024 | 3
AWS unveils cloud security IR service for a mere $7K a month
Re:Invent Tap into the infinite scalability... of pricing
Security03 Dec 2024 | 5
Russia arrests one of its own – a cybercrime suspect on FBI's most wanted list
The latest in an unusual change of fortune for group once protected by the Kremlin
Cyber-crime02 Dec 2024 | 58
Telco security is a dumpster fire and everyone's getting burned
Opinion The politics of cybersecurity are too important to be left to the politicians
Security02 Dec 2024 | 63
Interpol nabs thousands, seizes millions in global cybercrime-busting op
Infosec in brief Also, script kiddies still a threat, Tornado Cash is back, UK firms lose billions to avoidable attacks, and more
Security01 Dec 2024 | 8
RansomHub claims to net data hat-trick against Bologna FC
Crooks say they have stolen sensitive files on managers and players
Cyber-crime30 Nov 2024 | 2
Zabbix urges upgrades after critical SQL injection bug disclosure
US agencies blasted 'unforgivable' SQLi flaws earlier this year
Patches29 Nov 2024 | 7
Biting the hand that feeds IT
