Trump administration wants to go on cyber offensive against China
The US has never attacked Chinese critical infrastructure before, right?
Cyber-crime5 months | 25
Security
Deloitte says cyberattack on Rhode Island benefits portal carries 'major security threat'
Personal and financial data probably stolen
Cyber-crime5 months | 2
Are your Prometheus servers and exporters secure? Probably not
Infosec in brief Plus: Netscaler brute force barrage; BeyondTrust API key stolen; and more
Security5 months | 1
Iran-linked crew used custom 'cyberweapon' in US critical infrastructure attacks
IOCONTROL targets IoT and OT devices from a ton of makers, apparently
Research5 months | 15
Scumbag gets 30 years in the clink for running CSAM dark-web chatrooms, abusing kids
'Today’s sentencing is more than just a punishment. It’s a message'
Cyber-crime5 months | 42
Google Timeline location purge causes collateral damage
Privacy measure leaves some mourning lost memories
Security5 months | 48
Cyber protection made intuitive and affordable
How Cynet delivered 100 percent Protection and 100 percent Detection Visibility in 2024 MITRE ATT&CK Evaluation
Partner Content
Taming the multi-vault beast
GitGuardian takes on enterprise secrets sprawl
Partner Content
North Korea's fake IT worker scam hauled in at least $88M over six years
DoJ thinks it's found the folks that ran it, and some of the 'IT warriors' sent out to fleece employers
Cyber-crime5 months | 2
Apache issues patches for critical Struts 2 RCE bug
More details released after devs allowed weeks to apply fixes
Patches5 months |
Lights out for 18 more DDoS booters in pre-Christmas Operation PowerOFF push
Holiday cheer comes in the form of three arrests and 27 shuttered domains
Cyber-crime5 months | 5
British Army zaps drones out of the sky with laser trucks
High-energy weapon proves its mettle in testing
Public Sector5 months | 145
Firefox ditches Do Not Track because nobody was listening anyway
Few websites actually respect the option, says Mozilla
Software5 months | 88
Citrix goes shopping in Europe and returns with gifts for security-conscious customers
Acquires two companies that help those on the nice list keep naughty list types at bay
Virtualization5 months |
Blocking Chinese spies from intercepting calls? There ought to be a law
Sen. Wyden blasts FCC's 'failure' amid Salt Typhoon hacks
Security5 months | 17
Krispy Kreme Doughnut Corporation admits to hole in security
Belly-busting biz says it's been hit by cowardly custards
Security5 months | 33
Three more vulns spotted in Ivanti CSA, all critical, one 10/10
Patch up, everyone – that admin portal is mighty attractive to your friendly cyberattacker
Patches5 months | 2
US names Chinese national it alleges was behind 2020 attack on Sophos firewalls
Also sanctions his employer – an outfit called Sichuan Silence linked to Ragnarok ransomware
Cyber-crime5 months | 4
Microsoft holds last Patch Tuesday of the year with 72 gifts for admins
Patch Tuesday Twas the night before Christmas, and all through the house, patching was done with the click of a mouse
Security5 months | 24
US military grounds entire Osprey tiltrotor fleet over safety concerns
Boeing-Bell V-22 can't outfly its checkered past, it seems
Public Sector5 months | 89
AMD secure VM tech undone by DRAM meddling
Boffins devise BadRAM attack to pilfer secrets from SEV-SNP encrypted memory
Systems5 months | 10
Fully patched Cleo products under renewed 'zero-day-ish' mass attack
Thousands of servers targeted while customers wait for patches
Research5 months |
Heart surgery device maker's security bypassed, data encrypted and stolen
Sounds like th-aorta get this sorted quickly
Cyber-crime5 months | 20
Bitfinex heist gets the Netflix treatment after 'cringey couple' sentenced
Streamer's trademark dramatic style takes on Bitcoin Bonnie and Clyde
Cyber-crime5 months | 6
WhatsApp finally fixes View Once flaw that allowed theft of supposedly vanishing pics
And it only took four months, tut
Security5 months | 22
Police arrest suspect in murder of UnitedHealthcare CEO, with grainy pics the only tech involved
McDonald's worker called it in, cops swooped, found 'gun, suppressor, manifesto'
Security5 months | 131
China's Salt Typhoon recorded top American officials' calls, says White House
No word yet on who was snooped on. Any bets?
CSO5 months | 24
Crooks stole AWS credentials from misconfigured sites then kept them in open S3 bucket
Exclusive ShinyHunters-linked heist thought to have been ongoing since March
Research5 months | 9
OpenWrt orders router firmware updates after supply chain attack scare
A couple of bugs lead to a potentially bad time
CSO5 months | 9
Microsoft dangles $10K for hackers to hijack LLM email service
Outsmart an AI, win a little Christmas cash
CSO5 months | 12
Blue Yonder ransomware termites claim credit
Infosec in brief Also: Mystery US firm compromised by Chinese hackers for months; Safe links that aren't; Polish spy boss arrested, and more
Security5 months | 3
How Chinese insiders are stealing data scooped up by President Xi's national surveillance system
Feature 'It's a double-edged sword,' security researchers tell The Reg
Public Sector5 months | 52
Micropatchers share 1-instruction fix for NTLM hash leak flaw in Windows 7+
Updated Microsoft's OS sure loves throwing your creds at remote systems
Patches6 months | 13
Facing sale or ban, TikTok tossed under national security bus by appeals court
Video slinger looks to Supremes for salvation, though anything could happen under Trump
Personal Tech6 months | 43
Salt Typhoon forces FCC's hand on making telcos secure their networks
Proposal pushes stricter infosec safeguards after Chinese state baddies expose vulns
Security6 months | 4
Badass Russian techie outsmarts FSB, flees Putinland all while being tracked with spyware
Threatened with life in prison, Kyiv charity worker gives middle finger to state spies
Security6 months | 65
Protect your clouds
Get best practice advice on how to safeguard your cloud infrastructure from SANS
Sponsored Post
PoC exploit chains Mitel MiCollab 0-day, auth-bypass bug to access sensitive files
updated Still unpatched 100+ days later, watchTowr says
Cyber-crime6 months | 4
Microsoft: Another Chinese cyberspy crew targeting US critical orgs 'as of yesterday'
Redmond threat intel maven talks explains this persistent pain to The Reg
Security6 months | 16
Solana blockchain's popular web3.js npm package backdoored to steal keys, funds
Damage likely limited to those running bots with private PKI access
Cyber-crime6 months | 7
British hospitals hit by cyberattacks still battling to get systems back online
Updated Children's hospital and cardiac unit say criminals broke in via shared 'digital gateway service'
Cyber-crime6 months | 21
BT Group confirms attackers tried to break into Conferencing division
Sensitive data allegedly stolen from US subsidiary following Black Basta post
Cyber-crime6 months | 8
Shape the future of UK cyber security
Support the industry by sponsoring the UK Cyber Team Competition
Partner Content
Ransomware hangover, Putin grudge blamed for vodka maker's bankruptcy
Stoli Group on the rocks in the US
Security6 months | 35
T-Mobile US CSO: Spies jumped from one telco to another in a way 'I've not seen in my career'
Interview Security chief talks to El Reg as Feds urge everyone to use encrypted chat
CSO6 months | 54
Cops arrest suspected admin of German-language crime bazaar
Drugs, botnets, forged docs, and more generated fortune for platform sellers
Cyber-crime6 months | 24
Microsoft says premature patch could make Windows Recall forget how to work
Installed the final non-security preview update of 2024? Best not hop onto the Dev Channel
CSO6 months | 25
Eurocops take down 'secure' criminal chat system known as Matrix
Updated They took the red pill
Cyber-crime6 months | 46
FTC scolds two data brokers for allegedly selling your location to the meter
'Where we go is who we are' totally isn't a creepy ad slogan at all
Personal Tech6 months | 22
Perfect 10 directory traversal vuln hits SailPoint's IAM solution
Updated 20-year-old info disclosure class bug still pervades security software
Patches6 months | 6
Major energy contractor reports 'limited' access to IT after ransomware locks files
ENGlobal customers include the Pentagon as well as major oil and gas producers
Security6 months | 11
Severity of the risk facing the UK is widely underestimated, NCSC annual review warns
National cyber emergencies increased threefold this year
Cyber-crime6 months | 18
Russia gives life sentence to Hydra dark web kingpin after seizing a ton of drugs
No exaggeration – literally a ton. Plus, 15 co-conspirators also put behind bars
Cyber-crime6 months | 27
Data on 760K workers from Xerox, Nokia, BofA, Morgan Stanley and more dumped online
Yet another result of the MOVEit mess
Cyber-crime6 months | 3
AWS unveils cloud security IR service for a mere $7K a month
Re:Invent Tap into the infinite scalability... of pricing
Security6 months | 5
Russia arrests one of its own – a cybercrime suspect on FBI's most wanted list
The latest in an unusual change of fortune for group once protected by the Kremlin
Cyber-crime6 months | 58
Telco security is a dumpster fire and everyone's getting burned
Opinion The politics of cybersecurity are too important to be left to the politicians
Security6 months | 63
Interpol nabs thousands, seizes millions in global cybercrime-busting op
Infosec in brief Also, script kiddies still a threat, Tornado Cash is back, UK firms lose billions to avoidable attacks, and more
Security6 months | 8
RansomHub claims to net data hat-trick against Bologna FC
Crooks say they have stolen sensitive files on managers and players
Cyber-crime6 months | 2
Zabbix urges upgrades after critical SQL injection bug disclosure
US agencies blasted 'unforgivable' SQLi flaws earlier this year
Patches6 months | 7
Biting the hand that feeds IT
