Cybercrime

Miscreants 'mass exploited' Fortinet firewalls, 'highly probable' zero-day used

Updated Ransomware 'not off the table,' Arctic Wolf threat hunter tells El Reg

Networks14 Jan 2025 | 24

Microsoft sues 'foreign-based' cyber-crooks, seizes sites used to abuse AI

Scumbags stole API keys, then started a hacking-as-a-service biz, it is claimed

Security13 Jan 2025 | 4

Ransomware crew abuses AWS native encryption, sets data-destruct timer for 7 days

'Codefinger' crims on the hunt for compromised keys

Research13 Jan 2025 | 5

Chinese cyber-spies peek over shoulder of officials probing real-estate deals near American military bases

Gee, wonder why Beijing is so keen on the – checks notes – Committee on Foreign Investment in the US

Cyber-crime10 Jan 2025 | 7

Drug addiction treatment service admits attackers stole sensitive patient data

Details of afflictions and care plastered online

Cyber-crime10 Jan 2025 | 8

Two accused of COVID-19 vaccine fraud under Computer Misuse Act

Investigation says scheme allegedly raked in £145k and sold nearly 2,000 fake records to the unvaccinated

Legal10 Jan 2025 |

Mitel 0-day, 5-year-old Oracle RCE bug under active exploit

3 CVEs added to CISA's catalog

Security08 Jan 2025 | 4

Crims backdoored the backdoors they supplied to other miscreants. Then the domains lapsed

Here's what $20 gets you these days

Research08 Jan 2025 | 13

Charter, Consolidated, Windstream reportedly join China's Salt Typhoon victim list

Slow drip of compromised telecom networks continues

Cyber-crime06 Jan 2025 | 4

FireScam infostealer poses as Telegram Premium app to surveil Android devices

updated Once installed, it helps itself to your data like it's a free buffet

Research06 Jan 2025 | 5

Atos denies Space Bears' ransomware claims – with a 'but'

updated Points finger at third-party infrastructure being breached

Cyber-crime04 Jan 2025 | 3

Chinese cyber-spies reportedly targeted sanctions intel in US Treasury raid

OFAC, Office of the Treasury Secretary feared hit in data-snarfing swoop

CSO02 Jan 2025 | 3

US Army soldier who allegedly stole Trump's AT&T call logs arrested

Brings the arrest count related to the Snowflake hacks to 3

Cyber-crime01 Jan 2025 | 16

China's cyber intrusions took a sinister turn in 2024

From targeted espionage to pre-positioning - not that they are mutually exclusive

Security31 Dec 2024 | 9

More telcos confirm China Salt Typhoon security breaches as White House weighs in

Intrusions allowed Beijing to 'geolocate millions of individuals, record phone calls at will'

Cyber-crime30 Dec 2024 | 36

It's only a matter of time before LLMs jump start supply-chain attacks

Interview 'The greatest concern is with spear phishing and social engineering'

Security29 Dec 2024 | 58

How cops taking down LockBit, ALPHV led to RansomHub's meteoric rise

Cut off one head, two more grow back in its place

Cyber-crime28 Dec 2024 | 4

How Androxgh0st rose from Mozi's ashes to become 'most prevalent malware'

Botnet's operators 'driven by similar interests as that of the Chinese state'

Cyber-crime24 Dec 2024 | 3

What do ransomware and Jesus have in common? A birth month and an unwillingness to die

Feature 35 years since AIDS first borked a PC and we're still no closer to a solution

Cyber-crime24 Dec 2024 | 23

Suspected LockBit dev, facing US extradition, 'did it for the money'

Dual Russian-Israeli national arrested in August

Cyber-crime23 Dec 2024 | 18

Don't fall for a mail asking for rapid Docusign action – it may be an Azure account hijack phish

Recent campaign targeted 20,000 folk across UK and Europe with this tactic, Unit 42 warns

Cyber-crime19 Dec 2024 | 17

Phishers cast wide net with spoofed Google Calendar invites

Not that you needed another reason to enable the 'known senders' setting

Cyber-crime18 Dec 2024 | 17

Critical security hole in Apache Struts under exploit

You applied the patch that could stop possible RCE attacks last week, right?

Patches17 Dec 2024 | 3

Ransomware scum blow holes in Cleo software patches, Cl0p (sort of) claims responsibility

But can you really take crims at their word?

Security16 Dec 2024 | 1

Deloitte says cyberattack on Rhode Island benefits portal carries 'major security threat'

Personal and financial data probably stolen

Cyber-crime16 Dec 2024 | 2

Are your Prometheus servers and exporters secure? Probably not

Infosec in brief Plus: Netscaler brute force barrage; BeyondTrust API key stolen; and more

Security15 Dec 2024 | 1

Iran-linked crew used custom 'cyberweapon' in US critical infrastructure attacks

IOCONTROL targets IoT and OT devices from a ton of makers, apparently

Research13 Dec 2024 | 15

Android beefs up Bluetooth tag stalker protections

Wider ecosystem still has work to do, though

Personal Tech13 Dec 2024 | 24

North Korea's fake IT worker scam hauled in at least $88M over six years

DoJ thinks it's found the folks that ran it, and some of the 'IT warriors' sent out to fleece employers

Cyber-crime13 Dec 2024 | 2

Lights out for 18 more DDoS booters in pre-Christmas Operation PowerOFF push

Holiday cheer comes in the form of three arrests and 27 shuttered domains

Cyber-crime12 Dec 2024 | 5

US names Chinese national it alleges was behind 2020 attack on Sophos firewalls

Also sanctions his employer – an outfit called Sichuan Silence linked to Ragnarok ransomware

Cyber-crime11 Dec 2024 | 4

Fully patched Cleo products under renewed 'zero-day-ish' mass attack

Thousands of servers targeted while customers wait for patches

Research10 Dec 2024 |

Heart surgery device maker's security bypassed, data encrypted and stolen

Sounds like th-aorta get this sorted quickly

Cyber-crime10 Dec 2024 | 20

Bitfinex heist gets the Netflix treatment after 'cringey couple' sentenced

Streamer's trademark dramatic style takes on Bitcoin Bonnie and Clyde

Cyber-crime10 Dec 2024 | 6

China's Salt Typhoon recorded top American officials' calls, says White House

No word yet on who was snooped on. Any bets?

CSO09 Dec 2024 | 24

Crooks stole AWS credentials from misconfigured sites then kept them in open S3 bucket

Exclusive ShinyHunters-linked heist thought to have been ongoing since March

Research09 Dec 2024 | 9

How Chinese insiders are stealing data scooped up by President Xi's national surveillance system

Feature 'It's a double-edged sword,' security researchers tell The Reg

Public Sector08 Dec 2024 | 52

Microsoft: Another Chinese cyberspy crew targeting US critical orgs 'as of yesterday'

Redmond threat intel maven talks explains this persistent pain to The Reg

Security06 Dec 2024 | 16

British hospitals hit by cyberattacks still battling to get systems back online

Updated Children's hospital and cardiac unit say criminals broke in via shared 'digital gateway service'

Cyber-crime05 Dec 2024 | 21

BT Group confirms attackers tried to break into Conferencing division

Sensitive data allegedly stolen from US subsidiary following Black Basta post

Cyber-crime05 Dec 2024 | 8

Cops arrest suspected admin of German-language crime bazaar

Drugs, botnets, forged docs, and more generated fortune for platform sellers

Cyber-crime04 Dec 2024 | 24

Major energy contractor reports 'limited' access to IT after ransomware locks files

ENGlobal customers include the Pentagon as well as major oil and gas producers

Security03 Dec 2024 | 11

Data on 760K workers from Xerox, Nokia, BofA, Morgan Stanley and more dumped online

Yet another result of the MOVEit mess

Cyber-crime03 Dec 2024 | 3

Russia arrests one of its own – a cybercrime suspect on FBI's most wanted list

The latest in an unusual change of fortune for group once protected by the Kremlin

Cyber-crime02 Dec 2024 | 58

Interpol nabs thousands, seizes millions in global cybercrime-busting op

Infosec in brief Also, script kiddies still a threat, Tornado Cash is back, UK firms lose billions to avoidable attacks, and more

Security01 Dec 2024 | 8

RansomHub claims to net data hat-trick against Bologna FC

Crooks say they have stolen sensitive files on managers and players

Cyber-crime30 Nov 2024 | 2

Ransom gang claims attack on NHS Alder Hey Children's Hospital

Second alleged intrusion on English NHS org systems this week

Cyber-crime29 Nov 2024 | 21

The only thing worse than being fired is scammers fooling you into thinking you're fired

Scumbags play on victims' worst fears in phishing campaign referencing UK Employment Tribunal

Cyber-crime28 Nov 2024 | 50

Salt Typhoon's surge extends far beyond US telcos

Plus, a brand-new backdoor, GhostSpider, is linked to the cyber spy crew's operations

Security27 Nov 2024 | 7

T-Mobile US takes a victory lap after stopping cyberattacks: 'Other providers may be seeing different outcomes'

Funny what putting more effort and resources into IT security can do

CSO27 Nov 2024 | 9

Man accused of hilariously bad opsec as alleged cybercrime spree detailed

Complaint claims he trespassed, gave himself discounts, and sorted CCTV access…

Cyber-crime26 Nov 2024 | 24

1,000s of Palo Alto Networks firewalls hijacked as miscreants exploit critical hole

Updated PAN-PAN! Intruders inject web shell backdoors, crypto-coin miners, more

CSO22 Nov 2024 | 22

SafePay ransomware gang claims Microlise attack that disrupted prison van tracking

Fledgling band of crooks says it stole 1.2 TB of data

Cyber-crime22 Nov 2024 | 3

Mega US healthcare payments network restores system 9 months after ransomware attack

Change Healthcare’s $2 billion recovery is still a work in progress

Cyber-crime20 Nov 2024 | 5

Healthcare org Equinox notifies 21K patients and staff of data theft

Ransomware scum LockBit claims it did the dirty deed

Cyber-crime20 Nov 2024 | 1

China-linked group abuses Fortinet 0-day with post-exploit VPN-credential stealer

No word on when or if the issue will be fixed

Security19 Nov 2024 | 2