News
Unknown actors deploy malware to steal data in occupied regions of Ukraine
A cyber espionage campaign targeting organizations in Russian-occupied regions of Ukraine is using novel malware to steal data, according to Russia-based infosec software vendor Kaspersky.…
India's absurd infosec reporting rules get just 15 followers
India's rules requiring local organizations to report infosec incidents within six hours of detection have been observed by a mere 15 entities/…
Xi, Putin, declare intent to rule the world of AI, infosec
Russian president Vladimir Putin and his Chinese counterpart Xi Jinping have set themselves the goal of dominating the world of information technology.…
BreachForums shuts down ... but the RaidForums cybercrime universe will likely spawn a trilogy
BreachForums has reportedly shut down for good, just days after US authorities arrested the online criminal marketplace's alleged chief administrator.…
You just gonna take that AWS? Let Microsoft school your users on cloud security?
Microsoft has torn the wraps off its multi-cloud security benchmark (MCSB), which replaces the four-year-old Azure Security Benchmark. Crucially, as the name suggests, it now has usage and configuration guidance that reaches into rival environments.…
Ex-Meta security staffer accuses Greece of spying on her phone
Meta's former security policy manager, who split her time between the US and Greece, is reportedly suing the Hellenic national intelligence service for hacking her phone.…
Putin to staffers: Throw out your iPhones, or 'give it to the kids'
Advisors and staff to Russia's maximum leader have been told to ditch their iPhones by the end of the month. Or, for those who don't want to throw their Apple devices in the bin, the other option is to "give it to the kids," according to a local Kommersant report.…
Google suspends top Chinese shopping app Pinduoduo
Google has suspended Chinese shopping app Pinduoduo from its Play store because versions of the software found elsewhere have included malware.…
Australian FinTech takes itself offline to deal with cyber incident that caused data leak
Latitude Financial has blamed a supplier for leaking creds that caused vast PII leak Australian outfit Latitude Financial has taken itself offline, and even stopped serving customers, while it tries to clean up an attack on its systems.…
Ferrari in a spin as crims steal a car-load of customer data
Italian automaker Ferrari has warned its well-heeled customers that their personal data may be at risk.…
Privacy fail: Pictures cropped, redacted by Google Pixel phones can be recovered
If you've owned a Google Pixel smartphone since the 3 series came out in 2018, bad news: any screenshot that you've cropped or redacted on your Pixel can be potentially restored without much fuss.…
BBC to staff: Uninstall TikTok from our corporate kit unless you can 'justify' having it
The world's oldest national broadcaster, the venerable British Broadcasting Corporation, has told staff they shouldn't keep the TikTok app on a BBC corporate device unless there is a "justified business reason."…
Vessels claiming to be Chinese warships are messing with passenger planes
Australian airline Qantas issued standing orders to its pilots last week advising them that some of its fleet experienced interference on VHF stations from sources purporting to be the Chinese Military.…
Police pounce on 'pompompurin' – alleged mastermind of BreachForums
In Brief A man accused of being the head of one of the biggest criminal online souks, BreachForums, has been arrested in Peekskill, New York.…
TikTok cannot be considered a private company, says Australian report
Asia In Brief ByteDance, the Chinese developer of TikTok, "can no longer be accurately described as a private enterprise" and is instead intertwined with China's government, according to a report [PDF] submitted to Australia's Select Committee on Foreign Interference through Social Media.…
BianLian ransomware crew goes 100% extortion after free decryptor lands
The BianLian gang is ditching the encrypting-files-and-demanding-ransom route and instead is going for full-on extortion.…
You've been pwned, how much will each stolen customer SSN cost you? How about $7.5k?
A Florida healthcare group has settled a class-action lawsuit after thieves stole more than 447,000 patients' names, Social Security numbers, and sensitive medical information, from its servers.…
Google: Turn off Wi-Fi calling, VoLTE to protect your Android from Samsung hijack bugs
Google security analysts have warned Android device users that several zero-day vulnerabilities in some Samsung chipsets could allow an attacker to completely hijack and remote-control their handsets knowing just the phone number.…
Eufy security cams 'ignore cloud opt-out, store unique IDs' of anyone who walks by
A lawsuit filed against eufy security cam maker Anker Tech claims the biz assigns "unique identifiers" to the faces of any person who walks in front of its devices – and then stores that data in the cloud, "essentially logging the locations of unsuspecting individuals" when they stroll past.…
Feds arrest and charge exiled Chinese billionaire over massive crypto fraud
Meet the newest member of the crypto rogues' gallery: Ho Wan Kwok, aka Guo Wengui, aka Miles Guo, whom the US Department of Justice on Wednesday arrested over what investigators have described as a "sprawling and complex scheme … to solicit investments in various entities and programs through false statements and representations to hundreds of thousands of Kwok's online followers."…
Pages
