BYOD should stand for bring your own disaster, according to Microsoft ransomware data

The Register - Thu, 05/10/2023 - 14:03
Rising number of RaaS baddies drive global attack numbers up 200%

Microsoft research says that 80-90 percent of ransomware attacks over the past year originated from unmanaged devices.…

Categories: News

Lorenz ransomware crew bungles blackmail blueprint by leaking two years of contacts

The Register - Thu, 05/10/2023 - 11:00
Data leakers become data leakees

The Lorenz ransomware group leaked the details of every person who contacted it via its online contact form over the course of the last two years.…

Categories: News

North Korea goes phishing in South’s shipyards

The Register - Thu, 05/10/2023 - 06:29
Kim Jong-un looks at industry's progress with green eyes, says South Korea's spy agency

South Korea's National Intelligence Service (NIS) has warned North Korea is attacking its shipbuilding sector.…

Categories: News

IT networks under attack via critical Confluence zero-day. Patch now

The Register - Wed, 04/10/2023 - 23:19
'Handful' of customers hit so far, public-facing instances at risk

Atlassian today said miscreants have exploited a critical bug in on-premises instances of Confluence Server and Confluence Data Center to create and abuse admin accounts within the enterprise colab software.  …

Categories: News

Make-me-root 'Looney Tunables' security hole on Linux needs your attention

The Register - Wed, 04/10/2023 - 22:27
What's up, Doc? Try elevated permissions

Grab security updates for your Linux distributions: there's a security hole that can be fairly easily exploited by rogue users, intruders, and malicious software to gain root access and take over the box.…

Categories: News

'Gay furry hackers' brag of second NATO break-in, steal and leak more data

The Register - Wed, 04/10/2023 - 21:22
'No impact on missions,' military powerhouse insists

NATO is "actively addressing" multiple IT security incidents after a hacktivist group claimed it once again breached some of the military alliance's websites, this time stealing what's claimed to be more than 3,000 files and 9GB of data.…

Categories: News

Red Cross lays down hacktivism law as Ukraine war rages on

The Register - Wed, 04/10/2023 - 20:03
Rules apply to cyber vigilantes and their home nations, but experts cast doubt over potential benefits

New guidelines have been codified to govern the rules of engagement concerning hacktivists involved in ongoing cyber warfare.…

Categories: News

CISA barred from coordinating with social media sites to police misinformation

The Register - Wed, 04/10/2023 - 19:15
The 5th Circuit's re-ruling adds CISA to a list of alleged first-amendment violators. Next stop: Supreme Court

The US Fifth Circuit Court of Appeals has modified a ruling from last month to add the Cybersecurity and Infrastructure Security Agency (CISA) to a list of US government entities prohibited from working with social media firms to curtail the spread of misinformation. …

Categories: News

Trio of TorchServe flaws means PyTorch users need an urgent upgrade

The Register - Wed, 04/10/2023 - 02:28
Meta, the project's maintainer, shrugs

A trio of now-patched security issues in TorchServe, an open-source tool for scaling PyTorch machine-learning models in production, could lead to server takeover and remote code execution (RCE), according to security researchers.…

Categories: News

US v Sam Bankman-Fried trial begins ... as imploded crypto biz boss sues his insurer

The Register - Wed, 04/10/2023 - 00:47
After netizens' funds go up in smoke, ex-CEO seeks cash to foot legal bills

The first of two US government prosecutions of former FTX CEO Sam Bankman-Fried commenced in New York on Monday, only a day after the cryptocurrency tycoon sued his own insurance company for failing to cover his legal costs.…

Categories: News

CISA adds latest Chrome zero-day to Known Exploited Vulnerabilities Catalog

The Register - Tue, 03/10/2023 - 13:00
Chrome’s second zero-day of the month puts fed security at 'significant risk'

The US's Cybersecurity and Infrastructure Security Agency (CISA) has added the latest actively exploited zero-day vulnerability affecting Google Chrome to its Known Exploited Vulnerabilities (KEV) Catalog.…

Categories: News

Co-founder of collapsed crypto biz Three Arrows cuffed at airport

The Register - Tue, 03/10/2023 - 02:30
Plus: Philippine state health insurance knocked offline by ransomware, China relaxes data export laws, and more

Asia in brief  Zhu Su, co-founder of fallen crypto business Three Arrows Capital (3AC), was arrested last Friday at Changi Airport in Singapore as he attempted to leave the country.…

Categories: News

Feds hopelessly behind the times on ransomware trends in alert to industry

The Register - Mon, 02/10/2023 - 22:29
Better late than never, we guess

An urgent ransomware warning from the Feds has some industry analysts scratching their heads and wondering if Uncle Sam's noggin has been buried in the sand for too long.…

Categories: News

Security researchers believe mass exploitation attempts against WS_FTP have begun

The Register - Mon, 02/10/2023 - 14:45
Early signs emerge after Progress Software said there were no active attempts last week

Security researchers have spotted what they believe to be a "possible mass exploitation" of vulnerabilities in Progress Software's WS_FTP Server.…

Categories: News

AWS stirs the MadPot – busting bot baddies and eastern espionage since 2010

The Register - Mon, 02/10/2023 - 11:45
Security exec Mark Ryland spills the tea on hush-hush threat intel tool

Interview  AWS has unveiled MadPot, its previously secret threat-intelligence tool that one of the cloud giant's security execs tells us has thwarted Chinese and Russian spies – and millions of bots.…

Categories: News

Yes, Singapore immigration plans to scan your face instead of your passport

The Register - Mon, 02/10/2023 - 02:00
No, that does not mean you can leave it at home just yet

Last week the internet was abuzz with talk that Singapore's commercial Changi airport was no longer going to require passports for clearance at immigration. Although it is true the paper documentation will be replaced by biometric measures, it's not quite time to pack the document away.…

Categories: News

Now MOVEit maker Progress patches holes in WS_FTP

The Register - Sun, 01/10/2023 - 22:51
Plus: Johnson Controls hit by IT 'incident', Exim and Chrome security updates, and more

Infosec in brief  Progress Software, maker of the mass-exploited MOVEit document transfer tool, is back in the news with more must-apply security patches, this time for another file-handling product: WS_FTP.…

Categories: News

Microsoft Bing Chat pushes malware via bad ads

The Register - Fri, 29/09/2023 - 21:54
From AI to just plain aaaiiiee!

Microsoft introduced its Bing Chat AI search assistant in February and a month later began serving ads alongside it to help cover costs.…

Categories: News

PhD student guilty of 3D-printing 'kamikaze' drone for Islamic State terrorists

The Register - Fri, 29/09/2023 - 20:31
'Research purposes' excuse didn't fly

A PhD student has been found guilty of building a potentially deadly drone for Islamic State terrorists, in part using his home 3D printer.…

Categories: News

Norway wants Facebook behavioral advertising banned across Europe

The Register - Fri, 29/09/2023 - 14:45
But Meta was just about to start asking people for their permission!

Norway has told the European Data Protection Board (EDPB) it believes a countrywide ban on Meta harvesting user data to serve up advertising on Facebook and Instagram should be made permanent and extended across Europe.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News