News

Cyber weapons in the Israel-Iran conflict may hit the US

The Register - Fri, 13/06/2025 - 23:07
With Tehran’s military weakened, digital retaliation likely, experts tell The Reg

The current Israel–Iran military conflict is taking place in the era of hybrid war, where cyberattacks amplify and assist missiles and troops, and is being waged between two countries with very capable destructive cyber weapons.…

Categories: News

Do you trust Xi with your 'private' browsing data? Apple, Google stores still offer China-based VPNs, report says

The Register - Fri, 13/06/2025 - 19:20
Some trace back to an outfit under US export controls for alleged PLA links

Both Apple's and Google's online stores offer free virtual private network (VPN) apps owned by Chinese companies, according to researchers at the Tech Transparency Project, and they don't make this fact readily known to people downloading the apps.…

Categories: News

Apple fixes zero-click exploit underpinning Paragon spyware attacks

The Register - Fri, 13/06/2025 - 16:24
Zero-day potentially tied to around 100 suspected infections in 2025 and a spyware scandal on the continent

Apple has updated its iOS/iPadOS 18.3.1 documentation, confirming it introduced fixes for the zero-click vulnerability used to infect journalists with Paragon's Graphite spyware.…

Categories: News

Wanted: Junior cybersecurity staff with 10 years' experience and a PhD

The Register - Fri, 13/06/2025 - 14:36
Infosec employers demanding too much from early-career recruits, says ISC2

Cybersecurity hiring managers need a reality check when it comes to hiring junior staff, with job adverts littered with unfair expectations that are hampering recruitment efforts, says industry training and cert issuer ISC2.…

Categories: News

Slapped wrists for Financial Conduct Authority staff who emailed work data home

The Register - Fri, 13/06/2025 - 09:29
It was one of the offenders' final warning

Four staffers at the UK's Financial Conduct Authority (FCA) were let off with warnings over separate cases involving the transmission of regulator data to their personal email accounts.…

Categories: News

Ransomware scum disrupted utility services with SimpleHelp attacks

The Register - Fri, 13/06/2025 - 00:55
Good news: The vendor patched the flaw in January. Bad news: Not everyone got the memo

Ransomware criminals infected a utility billing software providers' customers, and in some cases disrupted services, after exploiting unpatched versions of SimpleHelp’s remote monitoring and management (RMM) tool, according to a Thursday CISA alert.…

Categories: News

'Major compromise' at NHS temping arm exposed gaping security holes

The Register - Thu, 12/06/2025 - 11:29
Incident responders suggested sweeping improvements following Active Directory database heist

Exclusive  Cybercriminals broke into systems belonging to the UK's NHS Professionals body in May 2024, stealing its Active Directory database, but the healthcare organization never publicly disclosed it, The Register can reveal.…

Categories: News

DeepSeek installer or just malware in disguise? Click around and find out

The Register - Thu, 12/06/2025 - 00:42
'BrowserVenom' is pure poison

Suspected cybercriminals have created a fake installer for Chinese AI model DeepSeek-R1 and loaded it with previously unknown malware called "BrowserVenom".…

Categories: News

Hire me! To drop malware on your computer

The Register - Wed, 11/06/2025 - 19:24
FIN6 moves from point-of-sale compromise to phishing recruiters

In a scam that flips the script on fake IT worker schemes, cybercriminals posing as job seekers on LinkedIn and Indeed are targeting recruiters - a group hated only slightly less than digital crooks - with malware hosted on phony resume portfolio sites.…

Categories: News

Salesforce tags 5 CVEs after SaaS security probe uncovers misconfig risks

The Register - Wed, 11/06/2025 - 19:02
The 16 other flagged issues are on customers, says CRM giant

Salesforce has assigned five CVE identifiers following a security report that uncovered more than 20 configuration weaknesses, some of which exposed customers to unauthorized access and session hijacking.…

Categories: News

Asia dismantles 20,000 malicious domains in infostealer crackdown

The Register - Wed, 11/06/2025 - 16:36
Interpol coordinates operation, nabs 32 across Vietnam, Sri Lanka, and Nauru

Thirty-two people across Asia have been arrested over their suspected involvement with infostealer malware in the latest international collaboration against global cybercrime.…

Categories: News

Analysis to action: Operationalizing your threat intelligence

The Register - Wed, 11/06/2025 - 16:00
Timing is everything in the war against ransomware thieves, says Prelude Security

Partner content  When a new security advisory drops or an alarming new ransomware campaign makes the news, the question from leadership inevitably follows: "Are we covered?"…

Categories: News

Microsoft slows Windows 11 24H2 Patch Tuesday due to a 'compatibility issue'

The Register - Wed, 11/06/2025 - 11:09
On your marks, get set... bork!

Microsoft has set a new record with June's security update for the time between release and an admission of borkage.…

Categories: News

CISO who helped unmask Badbox warns: Version 3 is coming

The Register - Wed, 11/06/2025 - 07:28
The botnet’s still alive and evolving

Badbox 2.0, the botnet that infected millions of smart TV boxes and connected devices before private security researchers and law enforcement partially disrupted its infrastructure, is readying for a third round of fraud and digital attacks, according to one of the threat hunters who uncovered the original scheme.…

Categories: News

Microsoft warns of 66 flaws to fix for this Patch Tuesday, and two are under active attack

The Register - Wed, 11/06/2025 - 00:38
Stealthy Falcon swoops on WebDAV and Redmond's even patching IE!

Patch Tuesday  It's Patch Tuesday time again, and Microsoft is warning that there are a bunch of critical fixes to sort out - and two actively exploited bugs.…

Categories: News

Texas warns 300,000 crash reports siphoned via compromised user account

The Register - Tue, 10/06/2025 - 19:52
Lone Star State drivers with accident records need to be careful about fraud

The Texas Department of Transportation says a compromised user account was used to improperly download nearly 300,000 crash reports, exposing personal data that could be exploited for financial fraud against Lone Star drivers.…

Categories: News

Critical Wazuh bug exploited in growing Mirai botnet infection

The Register - Tue, 10/06/2025 - 17:01
The open-source XDR/SIEM provider’s servers are in other botnets’ crosshairs too

Cybercriminals are trying to spread multiple Mirai variants by exploiting a critical Wazuh vulnerability, researchers say – the first reported active attacks since the code execution bug was disclosed.…

Categories: News

Winning the war on ransomware with AI: Four real-world use cases

The Register - Tue, 10/06/2025 - 16:00
AI is your secret weapon against ransomware crooks. Here's how to use it

Partner Content  Cybercriminals are evolving, and so are the tools to stop them. As AI becomes more accessible, attackers are sharpening their tactics. But here's the good news: defenders are, too. AI is no longer a buzzword; it's a frontline weapon in the fight against ransomware.…

Categories: News

Trump guts digital ID rules, claims they help 'illegal aliens' commit fraud

The Register - Tue, 10/06/2025 - 14:02
Also axes secure software mandates - optional is the new secure, apparently

President Donald Trump late Friday signed a cybersecurity-focused executive order that, in the White House's words, "amends problematic elements of Obama and Biden-era Executive Orders."…

Categories: News

Cloud brute-force attack cracks Google users' phone numbers in minutes

The Register - Tue, 10/06/2025 - 13:15
Chocolate Factory fixes issue, pays only $5K

A researcher has exposed a flaw in Google's authentication systems, opening it to a brute-force attack that left users' mobile numbers up for grabs.…

Categories: News

Pages

Subscribe to Sec Tec Limited aggregator - News