Confused by the SEC's breach reporting rules? Read this

The Register - Wed, 22/05/2024 - 17:30
'Clarification' weighs in on material vs voluntary disclosures

The US Securities and Exchange Commission (SEC) wants to clarify guidelines for public companies regarding the disclosure of ransomware and other cybersecurity incidents.…

Categories: News

Stopping ransomware in multicloud environments

The Register - Wed, 22/05/2024 - 16:03
Attend this Register live event to learn how

Sponsored Survey and Live Event  What are the biggest risks to your organization posed by ransomware and what security defenses does it have in place to protect its sensitive data from cyber criminals?…

Categories: News

LockBit dethroned as leading ransomware gang for first time post-takedown

The Register - Wed, 22/05/2024 - 12:00
Rivals ready to swoop in but drop in overall attacks illustrates LockBit’s influence

The takedown of LockBit in February is starting to bear fruit for rival gangs with Play overtaking it after an eight-month period of LockBit topping the attack charts.…

Categories: News

GitHub Enterprise Server patches 10-outta-10 critical hole

The Register - Wed, 22/05/2024 - 08:31
On the bright side, someone made up to $30,000+ for finding it

GitHub has patched its Enterprise Server software to fix a security flaw that scored a 10 out of 10 CVSS severity score.…

Categories: News

Uncle Sam to inject $50M into auto-patcher for hospital IT

The Register - Wed, 22/05/2024 - 01:46
Boffins, why not simply invent an algorithm that autonomously fixes flaws, thereby ending ransomware forever

The US government's Advanced Research Projects Agency for Health (ARPA-H) has pledged more than $50 million to fund the development of technology that aims to automate the process of securing hospital IT environments.…

Categories: News

Zoom adds 'post-quantum' encryption for video nattering

The Register - Tue, 21/05/2024 - 20:45
Guess we all have imaginary monsters to fear

Zoom has rolled out what it claims is post-quantum end-to-end encryption (E2EE) for video conferencing, saying it will make it available for Phone and Rooms "soon."…

Categories: News

Critical Fluent Bit bug affects all major cloud providers, say researchers

The Register - Tue, 21/05/2024 - 18:45
Crashes galore, plus especially crafty crims could use it for much worse

Infosec researchers are alerting the industry to a critical vulnerability in Fluent Bit – a logging component used by a swathe of blue chip companies and all three major cloud providers.…

Categories: News

With ransomware whales becoming so dominant, would-be challengers ask 'what's the point?'

The Register - Tue, 21/05/2024 - 12:01
Fewer rivals on the scene as big-gang success soars

The number of new ransomware strains in circulation has more than halved over the past 12 months, suggesting there is little need for innovation given the success of the existing tools used by top gangs.…

Categories: News

Big Tech is not much help when fighting a junta, and FOSS doesn't ride to the rescue

The Register - Tue, 21/05/2024 - 04:35
Opponents of Myanmar’s internet-nobbling military government don't like when Facebook asks for their real names

Big Tech isn't much help if you're an activist trying to work against a military junta, and FOSS tools aren't a great alternative either, according to opponents of Myanmar's military regime.…

Categories: News

OpenSSF sings a Siren song to steer developers away from buggy FOSS

The Register - Tue, 21/05/2024 - 00:06
New infosec intelligence service aims to spread the word about recently discovered vulns in free code

Securing open source software may soon become a little bit easier thanks to a new vulnerability info-sharing effort initiated by the Open Source Security Foundation (OpenSSF).…

Categories: News

Julian Assange can appeal extradition to the US, London High Court rules

The Register - Mon, 20/05/2024 - 23:05
Let me go, Brandon

WikiLeaks founder Julian Assange can appeal his extradition to the US from the UK, the High Court of England and Wales ruled Monday.…

Categories: News

Google takes shots at Microsoft for shoddy security record with enterprise apps

The Register - Mon, 20/05/2024 - 18:47
Also, feds who switch to Google Workspace for 3 years get an extra year for free

Updated  Google has taken a victory lap in the wake of high-profile intrusions into Microsoft's systems, and says businesses should ditch Exchange and OneDrive for Gmail and Google Drive.…

Categories: News

Can I phone a friend? How cops circumvent face recognition bans

The Register - Mon, 20/05/2024 - 17:13
Just ask a pal in a neighboring town with laxer restrictions

Police in multiple major US cities have figured out a trick to circumvent their cities' bans on facial recognition technology. Just ask a friend in a city without any such restrictions to do it for you.…

Categories: News

Researchers call out QNAP for dragging its heels on patch development

The Register - Mon, 20/05/2024 - 15:00
WatchTowr publishes report claiming vendor failed to issue fixes after four months

Infosec boffins say they were forced to go public after QNAP failed to fix various vulnerabilities that were reported to it months ago.…

Categories: News

DoJ, ByteDance ask court: Hurry up and rule on TikTok ban already

The Register - Mon, 20/05/2024 - 14:30
Forced selloff case will likely be appealed again ... see you in (Supreme) court

The Department of Justice and Bytedance spent a rare moment unified on Friday when the duo asked for a fast-tracked court schedule for the Chinese short video apps divest or ban case.…

Categories: News

British Library's candid ransomware comms driven by 'emotional intelligence'

The Register - Mon, 20/05/2024 - 10:32
It quickly realized ‘dry’ progress updates weren’t cutting it

CyberUK  Emotional intelligence was at the heart of the British Library's widely hailed response to its October ransomware attack, according to CEO Roly Keating.…

Categories: News

Chinese telco gear may become <i>verboten</i> on German networks

The Register - Mon, 20/05/2024 - 07:28
Industry reportedly pressuring digital ministry not to cut the cord

Germany may soon remove Huawei and ZTE equipment from its 5G networks, according to media reports.…

Categories: News

Nissan infosec in the spotlight again after breach affecting more than 50K US employees

The Register - Mon, 20/05/2024 - 03:28
PLUS: Connected automakers put on notice; Cisco Talos develops macOS fuzzing technique; Last week's critical vulns

Infosec in brief  Nissan has admitted to another data loss – this time involving the theft of personal information belonging to more than 50,000 Nissan employees.…

Categories: News

An attorney says she saw her library reading habits reflected in mobile ads. That's not supposed to happen

The Register - Sat, 18/05/2024 - 18:04
Follow us down this deep rabbit hole of privacy policy after privacy policy

Feature  In April, attorney Christine Dudley was listening to a book on her iPhone while playing a game on her Android tablet when she started to see in-game ads that reflected the audiobooks she recently checked out of the San Francisco Public Library.…

Categories: News

Gawd, after that week, we wonder what's next for China and the Western world

The Register - Sat, 18/05/2024 - 13:35
For starters: Crypto, import tariffs, and Microsoft shipping out staff

Kettle  It's been a fairly troubling week in terms of the relationship between China and the Western world.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News