News

Victims fear leak at Everglades Correctional Institution could lead to violent extortion

A data breach at a Florida prison has inmates' families concerned for their welfare after their contact details were allegedly leaked to convicted criminals.…

Criminals used undocumented techniques and well-placed insiders to remotely withdraw money

A ring of cybercriminals managed to physically implant a Raspberry Pi on a bank's network to steal cash from an Indonesian ATM.…

Workers on joint US/UK/Australia nuclear submarine program are painting a target on themselves

The Director-General of Security at the Australian Security Intelligence Organization (ASIO) has lamented the fact that many people list their work in the intelligence community or on sensitive military projects in their LinkedIn profiles.…

Crims warned 40% of respondents that they and their families would suffer

Ransomware gangs now frequently threaten physical violence against employees and their families as a way to force victim organizations into paying their demands.…

Illumina allegedly lied about its testing devices meeting government standards

Biotech firm Illumina has agreed to cut the US government a check for the eminently affordable amount of $9.8 million to resolve allegations that it has been selling the feds genetic testing systems riddled with security vulnerabilities the company knew about but never bothered to fix.…

No way this will be abused

Microsoft has upgraded Azure AI Speech so that users can rapidly generate a voice replica with just a few seconds of sampled speech.…

H20 silicon under the microscope after slipping through US export bans

China's internet watchdog has hauled Nvidia in for a grilling over alleged backdoors in its H20 chips, the latest twist in the increasingly paranoid semiconductor spat between Washington and Beijing.…

Russia spying on foreign embassies? Say it ain't so

Russian cyberspies are abusing local internet service providers' networks to target foreign embassies in Moscow and collect intel from diplomats' devices, according to a Microsoft Threat Intelligence warning.…

US court docs reveal that infamous Chinese snoops filed IP papers like tax returns

Security researchers have uncovered more than a dozen patents for offensive cybersecurity tools filed by Chinese companies allegedly tied to Beijing's Silk Typhoon espionage crew.…

Regulators around the globe pay attention as results of 21-month cloud probe published

Britain's competition regulator says Microsoft and AWS are using their dominance to harm UK cloud customers and proposes to designate both with strategic market status (SMS) to take action against them.…

Government officials say they are monitoring the situation

A major supplier of healthcare equipment to the UK's National Health Service and local councils is on the verge of collapse 16 months after falling victim to cyber criminals.…

UK's Online Safety Act kicks off about as well as everyone expected

Analysis  With the UK's Online Safety Act (OSA) now in effect, it was only a matter of time before tech-savvy under-18s figured out how to bypass the rules and regain access to adult content.…

Italian operator calls for lawmakers to wake up to the critical role played by peering

Internet Exchange Points are an underappreciated resource that all internet users rely on, but governments have unfortunately ignored them, despite their status as critical infrastructure.…

Infosec issues spill into the real world and regional politics

Analysis  Thai and Cambodian tensions relating to issues including cybersecurity concerns boiled over into a kinetic skirmish at the border last week.…

Few passengers are told they can opt out, and when they do, airport staff may push back

US lawmakers are trying to extend the use of facial recognition at airports, despite many airline passengers objecting to the practice.…

IBM report shows a rush to embrace technology without safeguarding it, and as for governance...

Organizations rushing to implement AI are neglecting security and governance, IBM claims, with attackers already taking advantage of lax protocols to target models and applications.…

Read-only in weeks, deleted forever in months

Dropbox has given users of its password manager until the end of October to extract their data before pulling the plug on the service.…

'This was a deliberate, coordinated, digital attack'

Minnesota Governor Tim Walz has activated the state's National Guard and declared a state of emergency in response to a cyberattack on the city of Saint Paul.…

The lure? Identity security and privileged access management tools to verify humans and... machines

Palo Alto Networks will buy Israeli security biz CyberArk in a $25 billion cash-and-stock deal confirmed today.…

Distie insists global operations restored despite some websites only now coming back online

The cybercriminals claiming responsibility for Ingram Micro's ransomware attack put a deadline on leaking its data nearly a month after the raid.…