The Register

The botnet’s still alive and evolving

Badbox 2.0, the botnet that infected millions of smart TV boxes and connected devices before private security researchers and law enforcement partially disrupted its infrastructure, is readying for a third round of fraud and digital attacks, according to one of the threat hunters who uncovered the original scheme.…

Stealthy Falcon swoops on WebDAV and Redmond's even patching IE!

Patch Tuesday  It's Patch Tuesday time again, and Microsoft is warning that there are a bunch of critical fixes to sort out - and two actively exploited bugs.…

Lone Star State drivers with accident records need to be careful about fraud

The Texas Department of Transportation says a compromised user account was used to improperly download nearly 300,000 crash reports, exposing personal data that could be exploited for financial fraud against Lone Star drivers.…

The open-source XDR/SIEM provider’s servers are in other botnets’ crosshairs too

Cybercriminals are trying to spread multiple Mirai variants by exploiting a critical Wazuh vulnerability, researchers say – the first reported active attacks since the code execution bug was disclosed.…

AI is your secret weapon against ransomware crooks. Here's how to use it

Partner Content  Cybercriminals are evolving, and so are the tools to stop them. As AI becomes more accessible, attackers are sharpening their tactics. But here's the good news: defenders are, too. AI is no longer a buzzword; it's a frontline weapon in the fight against ransomware.…

Also axes secure software mandates - optional is the new secure, apparently

President Donald Trump late Friday signed a cybersecurity-focused executive order that, in the White House's words, "amends problematic elements of Obama and Biden-era Executive Orders."…

Chocolate Factory fixes issue, pays only $5K

A researcher has exposed a flaw in Google's authentication systems, opening it to a brute-force attack that left users' mobile numbers up for grabs.…

A milestone in cyberattack recovery – but deliveries will take a while and normal service not yet back

UK retailer Marks & Spencer has reinstated online orders for some customers, marking a major milestone in its recovery from a cyberattack in April.…

Majority of exposures located in the US, including datacenters, healthcare facilities, factories, and more

Security researchers managed to access the live feeds of 40,000 internet-connected cameras worldwide and they may have only scratched the surface of what's possible.…

Swift-based containerization framework aims to improve performance and security

Apple on Monday unveiled an open source containerization framework for creating and running Linux container images on the Mac.…

United Natural Foods shut down some of its systems on June 5 after spotting network intruders

North American grocery wholesaler United Natural Foods told regulators that a cyber incident temporarily disrupted operations, including its ability to fulfill customer orders.…

Big tech can't be bothered to fight crime. It can barely be bothered even to say so

Opinion  A lot of our tech world is nightmarish, but sometimes this is literally true.…

SentinelOne discovered the campaign when they tried to hit the security vendor's own servers

An IT services company, a European media group, and a South Asian government entity are among the more than 75 companies where China-linked groups have planted malware to access strategic networks should a conflict break out.…

Why an obsession with technology prevents us from reducing human-initiated cybersecurity breaches

Partner content  Cybersecurity leaders are fighting an invisible war, not just with threat actors but within their own organizations. It's a conflict I've spent a lot of time reflecting on, especially as I think about why certain leaders within organizations make the decisions they do.…

PLUS: Hitachi turns greybeards into AI agents; Tiananmen anniversary censorship; AWS in Taiwan; and more!

China’s space agency has revealed its Tianwen 2 probe has unfurled a ‘solar wing’.…

PLUS: Doxxers jailed; Botnets bounce back; CISA questioned over app-vetting program closure; And more

Infosec in Brief  If a cyberattack hit critical infrastructure in the US, it would likely crumble, former deputy national security adviser and NSA cybersecurity director Anne Neuberger said last week.…

Security, not model performance, is what's stalling adoption

Interview  Before AI becomes commonplace in enterprises, corporate leaders have to commit to an ongoing security testing regime tuned to the nuances of AI models.…

OpenAI boots accounts linked to 10 malicious campaigns

Fake IT workers possibly linked to North Korea, Beijing-backed cyber operatives, and Russian malware slingers are among the baddies using ChatGPT for evil, according to OpenAI's latest threat report.…

Destructive malware has been a hallmark of Putin's multi-modal war

A new strain of wiper malware targeting Ukrainian infrastructure is being linked to pro-Russian hackers, in the latest sign of Moscow's evolving cyber tactics.…

The cash has been frozen for more than two years

The US is looking to finally capture the $7.74 million it froze over two years ago after indicting alleged money launderers it claims are behind North Korean IT worker schemes.…