Iran-linked Cobalt Mirage extracts money, info from US orgs – report

The Register - Fri, 13/05/2022 - 13:11
Khamenei, can you just not? Not right now, fam

The Iran-linked Cobalt Mirage crew is running attacks against America for both financial gain and for cyber-espionage purposes, according to Secureworks' threat intelligence team.…

Categories: News

Researchers find 134 flaws in the way Word, PDFs, handle scripts

The Register - Fri, 13/05/2022 - 08:54
‘Cooperative mutation’ spots problems that checking scripts alone will miss

Black Hat Asia  Security researchers have devised a tool that detects flaws in the way apps like Microsoft Word and Adobe Acrobat process JavaScript, and it's proven so effective they've found 134 bugs – 59 of them considered worthy of a fix by vendors, 33 assigned a CVE number, and 17 producing bug bounty payments totaling $22,000.…

Categories: News

To predict the targets of Chinese malware, look at the target of Chinese laws

The Register - Fri, 13/05/2022 - 05:57
Around the time Beijing banned online gambling, RATs started targeting operators, say Taiwanese researchers

Black Hat Asia  Keep an eye on new Chinese government policies, if you want to anticipate malware attacks, a threat intelligence analyst suggested at the Black Hat Asia conference on Thursday.…

Categories: News

Anatomy of a campaign to inject JavaScript into compromised WordPress sites

The Register - Fri, 13/05/2022 - 05:09
Reverse-engineered code redirects visitors to dodgy corners of the internet

A years-long campaign by miscreants to insert malicious JavaScript into vulnerable WordPress sites, so that visitors are redirected to scam websites, has been documented by reverse-engineers.…

Categories: News

If you've got Intel inside, you probably need to get these security patches inside, too

The Register - Thu, 12/05/2022 - 22:06
So. Many. BIOS. Bugs

Intel has disclosed high-severity bugs in its firmware that's used in datacenter servers, workstations, mobile devices, storage products, and other gear. These flaws can be exploited to escalate privileges, leak information, or stop things from working.…

Categories: News

Ransomware the final nail in coffin for small university

The Register - Thu, 12/05/2022 - 15:10
Lincoln College shuttering after 157 years, ransomware attack from Iran final straw

A December attack against a long-standing college in Illinois has pushed the institution to permanently close. …

Categories: News

APT gang 'Sidewinder' goes on two-year attack spree across Asia

The Register - Thu, 12/05/2022 - 09:04
Launches almost 1,000 raids, plenty with upgraded malware

Black Hat Asia  The advanced persistent threat gang known as SideWinder has gone on an attack spree in the last two years, conducting almost 1,000 raids and deploying increasingly sophisticated attack methods.…

Categories: News

It's time to kick China off social media, says tech governance expert

The Register - Thu, 12/05/2022 - 07:57
'Mischief abroad' is the Middle Kingdom's goal – without the possibility of using Chinese sites to fight back

Black Hat Asia  The time has come to remove Chinese voices from global social media, according to Samir Saran, president of Delhi-based think tank Observer Research Foundation (ORF), a commissioner of The Global Commission on the Stability of Cyberspace, and a member of Microsoft's Digital Peace Now Initiative.…

Categories: News

Europe proposes tackling child abuse by killing privacy, strong encryption

The Register - Thu, 12/05/2022 - 07:35
If we're gonna go through this again, can we just literally go back in time?

Proposed Europe regulations that purport to curb child abuse by imposing mass surveillance would be a "disaster" for digital privacy and strong encryption, say cybersecurity experts.…

Categories: News

Ukraine war a sorting hat for cyber-governance loyalties: Black Hat founder Jeff Moss

The Register - Thu, 12/05/2022 - 05:59
Private orgs that flex with Russian bans may do more harm – to themselves – than good

Black Hat Asia  The war in Ukraine, and the Declaration for the Future of the Internet signed by 60 nations in late April, should be understood in the context of a global effort to recruit the nations of the world into blocs with different attitudes to internet governance.…

Categories: News

Five Eyes turn spotlight on MSPs: Potential weak links in IT supply-chain security

The Register - Wed, 11/05/2022 - 22:44
We can think of one thing the S stands for in some unfortunate cases

Miscreants are targeting managed service providers (MSPs) to break into their customers' networks and deploy ransomware, steal data, and spy on them, the Five Eyes nations' cybersecurity authorities have formally warned in a joint security alert.…

Categories: News

Fresh ransomware samples indicate REvil is back

The Register - Wed, 11/05/2022 - 15:30
Secureworks' investigation only the latest evidence Kaseya and JBS attackers are on the move again

New ransomware samples analyzed by Secureworks' threat intelligence team are the latest indication that high-profile ransomware operation REvil is once again up and running after months of relative inactivity.…

Categories: News

Yahoo Japan strives for universal passwordless authentication

The Register - Wed, 11/05/2022 - 09:19
30! million! users! already! moved! to! TXT! and/or! FIDO! Attacks! and! support! requests! both! down!

Yahoo Japan has revealed that it plans to go passwordless, and that 30 million of its 50 million monthly active users have already stopped using passwords in favor of a combination of FIDO and TXT messages.…

Categories: News

Microsoft closes Windows LSA hole under active attack

The Register - Wed, 11/05/2022 - 02:15
Plus many more flaws. And Adobe, Android, SAP join the bug-squashing frenzy

Microsoft patched 74 security flaws in its May Patch Tuesday batch of updates. That's seven critical bugs, 66 deemed important, and one ranked low severity.…

Categories: News

Email domain for NPM lib with 6m downloads a week grabbed by expert to make a point

The Register - Tue, 10/05/2022 - 23:36
Campaign to coax GitHub-owned outfit to improve security starts showing results

Special report  Security consultant Lance Vick recently acquired the expired domain used by the maintainer of a widely used NPM package to remind the JavaScript community that the NPM Registry still hasn't implemented adequate security.…

Categories: News

US, Europe formally blame Russia for data wiper attacks against Ukraine, Viasat

The Register - Tue, 10/05/2022 - 21:58
Thank goodness someone cleared that one up

The US and the European Union have officially blamed Russia for a series of destructive data-wiping malware infections in Ukrainian government and private-sector networks – and said they will "take steps" to defend against and respond to Kremlin-orchestrated attacks.…

Categories: News

Malware goes regional as attackers change tactics

The Register - Tue, 10/05/2022 - 15:30
SEO techniques employed to increase visibility of poisoned documents claims Netskope

Most malware attacks now originate from the same region as the victim, according to a new report, a sign that malicious actors are changing their tactics.…

Categories: News

Industry pushes back against India's data security breach reporting requirements

The Register - Tue, 10/05/2022 - 03:47
Filling in a form at 4am improves infosec or privacy how, exactly?

Opposition is building to India's recently introduced rules on reporting computer security breaches, which have come under fire for being impractical, ineffective, and impinging on privacy.…

Categories: News

Biden signs cybercrime tracking bill into law

The Register - Mon, 09/05/2022 - 23:09
All part of a larger push by the Feds to improve cybersecurity reporting

US President Joe Biden has signed into law a bill that aims to improve how the federal government tracks and prosecutes cybercrime.…

Categories: News

It costs just $7 to rent DCRat to backdoor your network

The Register - Mon, 09/05/2022 - 20:29
Budget-friendly tool breaks the you-get-what-you-pay-for rule

A budget-friendly remote access trojan (RAT) that's under active development is selling on underground Russian forums for about $7 for a two-month subscription, according to BlackBerry researchers today. …

Categories: News


Subscribe to Sec Tec Limited aggregator - News