Five Eyes intel chiefs warn China's IP theft program now at 'unprecedented' levels Spies come in from the cold for their first public chinwag Cybersecurity Month18 Oct 2023 |
Cisco's critical zero-day bug gets even worse – 'thousands' of IOS XE devices pwned Good news: There's a free scanner to check your kit. Bad news: Still no fix Cybersecurity Month17 Oct 2023 | 4
Cisco zero-day bug allows router hijacking and is being actively exploited We'd say 'Hurry up and patch' but it hasn't written one yet. While you wait, disable HTTP Cybersecurity Month16 Oct 2023 | 12
Signal shoots down zero-day rumors, finds 'no evidence' of device takeover Looks to be related to critical libwebp bug found — and fixed — last month Cybersecurity Month16 Oct 2023 | 5
EPA flushes water supply cybersecurity rule after losing legal fight with industry, states What could possibly go wrong? Cybersecurity Month13 Oct 2023 | 38
530K people's info feared stolen from cloud PC gaming biz Shadow Will players press start to continue with this outfit? Cyber-crime13 Oct 2023 | 10
Squid games: 35 security holes still unpatched in proxy after 2 years, now public We'd like to say don't panic … but maybe? Research13 Oct 2023 | 9
Europe mulls open sourcing TETRA emergency services' encryption algorithms Turns out secrecy doesn't breed security Cybersecurity Month12 Oct 2023 | 26
US construction giant unearths concrete evidence of cyberattack Simpson Manufacturing yanks systems offline, warns of ongoing disruption Cyber-crime12 Oct 2023 | 11
AI safety guardrails easily thwarted, security study finds OpenAI GPT-3.5 Turbo chatbot defenses dissolve with '20 cents' of API tickling AI + ML12 Oct 2023 | 28
Casino giant Caesars tells thousands: Yup, ransomware crooks stole your data House always wins, er, wait ... Cybersecurity Month12 Oct 2023 | 10
US Navy sailor admits selling secret military blueprints to China for $15K Worth it for 20 years behind bars? Cyber-crime11 Oct 2023 | 26
CISOs' salary growth slows – with pay gap widening We still doubt any infosec leaders will be going without heating this winter Cybersecurity Month11 Oct 2023 | 1
From chaos to cadence: Celebrating two decades of Microsoft's Patch Tuesday Feature IT folks look back on 20 years of what is now infosec tradition Cybersecurity Month11 Oct 2023 | 17
Go ahead, let the unknowable security risks of Windows Copilot onto your PC fleet Column Or maybe don't let Microsoft's desire to defeat Google dictate your defensive strategy AI + ML11 Oct 2023 | 69
It's 2023 and Microsoft WordPad can be exploited to hijack vulnerable systems Patch Tuesday Happy Halloween! Security bugs under attack squashed, more flaws fixed Patches10 Oct 2023 | 16
SBF on trial: The Python code that allegedly let Alameda hedge fund spend people's FTX deposits And Caroline Ellison says she was told by Bankman-Fried to take $10B from customer accounts Cyber-crime10 Oct 2023 | 18
Fresh curl tomorrow will patch 'worst' security flaw in ages Updated It’s bad, folks. Pair of CVEs incoming on October 11 Patches10 Oct 2023 | 11
Vietnam accused of Predator spyware attack on EU and US politicians Awkward, seeing as the US and Vietnam just announced a refreshed relationship Cybersecurity Month10 Oct 2023 | 1
Forcing Apple to allow third-party app stores isn't enough Opinion You're excited about Meta offering iOS apps via Facebook ads? Really? Applications09 Oct 2023 | 74
FTC: Please stop falling for social media scams, you've given crooks at least $650M so far this year Internet considered harmful Cybersecurity Month07 Oct 2023 | 67
Online tracking is alive and well in link decoration Analysis The pending death of third-party cookies won't do much for other privacy intrusions Cybersecurity Month06 Oct 2023 | 16
China uses Alibaba's Euro logistic hub to spy on stuff, Belgian intelligence fears Cloud and e-commerce giant mussels up, says allegations are waffle Cybersecurity Month06 Oct 2023 | 12
GoldDigger Android trojan targets Vietnamese banking apps, code contains hints of wider targets More malware scum using acessibility features to steal personal info Security06 Oct 2023 |
Cisco warns of critical flaw in Emergency Responder code Hard-coded credentials strike again Security05 Oct 2023 | 11
Another security update, Apple? You're really keeping up with your tech rivals Zero day? More like every day, amirite? Patches05 Oct 2023 | 3
BlackBerry to split into two companies, foraging for tastier fare for shareholders Hopes to float IoT biz and keep infosec ops, then make a second pressing CxO05 Oct 2023 | 15
Microsoft delays debut of IoT security offer due to 'unexpected system challenges' Updated Software giant tells partners not to sell it but also happy to take your cash now Channel05 Oct 2023 | 11
IT networks under attack via critical Confluence zero-day. Patch now 'Handful' of customers hit so far, public-facing instances at risk Patches04 Oct 2023 | 16
Make-me-root 'Looney Tunables' security hole on Linux needs your attention What's up, Doc? Try elevated permissions Patches04 Oct 2023 | 47
'Gay furry hackers' brag of second NATO break-in, steal and leak more data 'No impact on missions,' military powerhouse insists Cyber-crime04 Oct 2023 | 9
Trio of TorchServe flaws means PyTorch users need an urgent upgrade Meta, the project's maintainer, shrugs: We fixed it, let's move on Security04 Oct 2023 | 2
Arm patches GPU driver bug exploited by spyware to snoop on targets As Qualcomm warns of similar fixes coming for its chips Cybersecurity Month03 Oct 2023 | 5
Microsoft Defender 'finally' stops flagging Tor Browser as malware Just because you're paranoid… Cybersecurity Month03 Oct 2023 | 8
Japan drives for infosec self-sufficiency – at least in one layer of deep defenses CYNEX Alliance brings industry, government, and academia together to share info and devise tools Cybersecurity Month03 Oct 2023 |
Watermarking AI images to fight misinfo and deepfakes may be pretty pointless Exclusive Basically, it's 'not going to work' AI + ML02 Oct 2023 | 29
Feds hopelessly behind the times on ransomware trends in alert to industry Better late than never, we guess Cybersecurity Month02 Oct 2023 | 6
AWS stirs the MadPot – busting bot baddies and eastern espionage Interview Security exec Mark Ryland spills the tea on hush-hush threat intel tool Cyber-crime02 Oct 2023 | 5
PhD student guilty of 3D-printing 'kamikaze' drone for Islamic State terrorists 'Research purposes' excuse didn't fly Cyber-crime29 Sep 2023 | 49
Chinese snoops stole 60K State Department emails in that Microsoft email heist No classified systems involved apparently, but internal diplomatic notes, travel details, staff SSNs, etc CSO28 Sep 2023 | 4
China's national security minister rates fake news among most pressing cyber threats He's also worried about alliances that freeze out Chinese tech Security28 Sep 2023 | 8
Volkswagen stuck in neutral after 'IT disruption' Updated Factories and offices are going nowhere, fast On-Prem28 Sep 2023 | 32
Routers have been rooted by Chinese spies, US and Japan warn BlackTech crew looking to steal sensitive data traffic Software27 Sep 2023 | 8
Cryptocoin Ponzi scheme AirBit Club co-founder jailed 12 years behind bars, and ordered to forfeit $65m in illicit proceeds Legal27 Sep 2023 | 12
Twitter, aka X, tops charts for misinformation, EU official says In measure of fakery, Musk's social media biz has highest noise-to-signal ratio Off-Prem26 Sep 2023 | 96
ROBOT crypto attack on RSA is back as Marvin arrives More precise timing tests find many implementations vulnerable Research26 Sep 2023 | 9
Ukraine accuses Russian spies of hunting for war-crime info on its servers Russian have shifted tactics in the first half of 2023, with mixed results Cybersecurity Month26 Sep 2023 | 21
Mixin suspends deposits and withdrawals after $200m cryptocurrency heist Cloud provider blamed for loss of 20% of exchange's capital Cybersecurity Month25 Sep 2023 | 37
If you're cautious about using ML and bots at work, that's not a bad idea DataGrail Summit Alex Stamos: 'We don't really know what's gonna go wrong with AI yet' AI + ML22 Sep 2023 | 33
US govt IT help desk techie 'leaked top secrets' to foreign nation National defense files can earn you $55K … and espionage charges Cybersecurity Month21 Sep 2023 | 15
TransUnion reckons big dump of stolen customer data came from someone else Updated Prolific info-thief strikes again Cyber-crime21 Sep 2023 | 6
India's biggest tech centers named as cyber crime hotspots Global tech companies' Bharat offices attract the wrong sort of interest Security21 Sep 2023 | 2
Feds raise alarm over Snatch ransomware as extortion crew brags of Veterans Affairs hit Invasion of the data snatchers Cyber-crime20 Sep 2023 | 3
Signal adopts new alphabet jumble to protect chats from quantum computers X3DH readied for retirement as PQXDH is rolled out Security20 Sep 2023 | 18
International Criminal Court hit in cyber-attack amid Russia war crimes probe Right as judges issued warrants against Putin Cyber-crime20 Sep 2023 | 22
Singapore may split liability for phishing losses between banks and victims Won't someone please think of the banks? Cyber-crime20 Sep 2023 | 14
Marvell disputes claim Cavium backdoored chips for Uncle Sam Allegations date back a decade to leaked Snowden docs Research19 Sep 2023 | 8
Russian allegedly smuggled US weapons electronics to Moscow Feds claim sniper scope displays sold in sanctions-busting move Cyber-crime19 Sep 2023 | 23
Australia to build six 'cyber shields' to defend its shores Local corporate regulator warns boards that cyber is totally a directorial duty Security19 Sep 2023 | 26
Thousands of Juniper Junos firewalls still open to hijacks, exploit code available to all Unauthenticated and remote code execution possible without dropping a file on disk Security18 Sep 2023 | 6
Former CIO accuses Penn State of faking cybersecurity compliance Now-NASA boffin not impressed Security18 Sep 2023 | 5
Microsoft worker accidentally exposes 38TB of sensitive data in GitHub blunder Included secrets, private keys, passwords, 30,000+ internal Teams messages Security18 Sep 2023 | 21