New Relic's cyber-something revealed as attack on staging systems, some users

The Register - 2 hours 27 min ago
Ongoing investigation found evidence of stolen employee creds and social engineering

Nine days after issuing a vaguely worded warning about a possible cyber security incident, web tracking and analytics outfit New Relic has revealed a two-front attack.…

Categories: News

60 US credit unions offline after ransomware infects backend cloud outfit

The Register - Sat, 02/12/2023 - 00:01
Supply chain attacks: The gift that keeps on giving

A ransomware infection at a cloud IT provider has disrupted services for 60 or so credit unions across the US, all of which were relying on the attacked vendor. …

Categories: News

Apple slaps patch on WebKit holes in iPhones and Macs amid fears of active attacks

The Register - Fri, 01/12/2023 - 21:31
Two CVEs can be abused to steal sensitive info or execute code

Apple has issued emergency fixes to plug security flaws in iPhones, iPads, and Macs that may already be under attack.…

Categories: News

UEFI flaws allow bootkits to pwn potentially hundreds of devices using images

The Register - Fri, 01/12/2023 - 20:12
Exploits bypass most secure boot solutions from the biggest chip vendors

Hundreds of consumer and enterprise devices are potentially vulnerable to bootkit exploits through unsecured BIOS image parsers.…

Categories: News

US readies prison cell for another Russian Trickbot developer

The Register - Fri, 01/12/2023 - 15:08
Hunt continues for the other elusive high-ranking members

Another member of the Trickbot malware crew now faces a lengthy prison sentence amid US law enforcement's ongoing search for its leading members.…

Categories: News

Regulator says stranger entered hospital, treated a patient, took a document ... then vanished

The Register - Fri, 01/12/2023 - 10:15
Scottish health group to tweak security checks, access authorization to avoid a repeat

NHS Fife is on the wrong end of a stern ticking off by Britain's data regulator after it made a howling privacy error that aided an as yet unknown person who had entered a hospital ward only to walk off with data on 14 patients.…

Categories: News

Interpol makes first border arrest using Biometric Hub to ID suspect

The Register - Fri, 01/12/2023 - 07:25
Global database of faces and fingerprints proves its worth

European police have for the first time made an arrest after remotely checking Interpol's trove of biometric data to identify a suspected smuggler.…

Categories: News

Today's 'China is misbehaving online' allegations come from Google, Meta

The Register - Fri, 01/12/2023 - 02:59
Zuck boots propagandists, Big G finds surge of action directed at Taiwan

Meta and Google have disclosed what they allege are offensive cyber ops conducted by China.…

Categories: News

Uh-oh, update Google Chrome – exploit already out there for one of these 6 security holes

The Register - Thu, 30/11/2023 - 20:45
Plus: 3 critical CVEs in Zyxel NAS devices

Google has rolled out six Chrome security fixes including one emergency patch for a bug for which exploit code is already out there. You're encouraged to thus grab the latest updates for the browser.…

Categories: News

Admin of $19M marketplace that sold social security numbers gets 8 years in jail

The Register - Thu, 30/11/2023 - 18:30
24 million Americans thought to have had their personal data stolen and sold for pennies

A Ukrainian national is facing an eight year prison sentence for running an online marketplace that sold the personal data of approximately 24 million US citizens.…

Categories: News

Black Basta ransomware operation nets over $100M from victims in less than two years

The Register - Thu, 30/11/2023 - 13:15
Assumed Conti offshoot averages 7 figures for each successful attack but may have issues with, er, 'closing deals'

The Black Basta ransomware group has reportedly generated upwards of $100 million in revenue since it started operations in April 2022.…

Categories: News

Locking down Industrial Control Systems

The Register - Thu, 30/11/2023 - 08:47
SANS unveils online hub with valuable tools and information for cybersecurity professionals defending ICS

Sponsored Post  Industrial Control Systems (ICS) which can automate processes, increase productivity and reduce labour costs, are rapidly gaining worldwide enterprise traction.…

Categories: News

Weak session keys let snoops take a byte out of your Bluetooth traffic

The Register - Thu, 30/11/2023 - 07:32
BLUFFS spying flaw present in iPhones, ThinkPad, plenty of chipsets

Multiple Bluetooth chips from major vendors such as Qualcomm, Broadcom, Intel, and Apple are vulnerable to a pair of security flaws that allow a nearby miscreant to impersonate other devices and intercept data.…

Categories: News

US lawmakers have Chinese LiDAR on their threat-detection radar

The Register - Thu, 30/11/2023 - 02:29
Amid fears Beijing could harvest spatial data, letter suggests Huawei-style bans may be needed

A US congressional committee has questioned whether Chinese-made Light Detection and Ranging (LiDAR) devices might have a negative impact on national security, and suggested they may therefore be worthy of the same bans that prevent stateside adoption of other tech.…

Categories: News

Rogue ex-Motorola techie admits cyberattack on former employer, passport fraud

The Register - Thu, 30/11/2023 - 01:15
Pro tip: Don't use your new work email to phish your old firm

An ex-Motorola technician in the US has admitted he tried to fraudulently obtain a passport while awaiting trial for a cyberattack on his former employer.…

Categories: News

Uncle Sam probes cyberattack on Pennsylvania water system by suspected Iranian crew

The Register - Wed, 29/11/2023 - 21:16
CISA calls for stronger IT defenses as Texas district also hit by ransomware crew

CISA is investigating a cyberattack against a Pennsylvania water authority by suspected Iranian miscreants. The intrusion forced operators to switch a pumping station to manual control.…

Categories: News

Okta data breach dilemma dwarfs earlier estimates

The Register - Wed, 29/11/2023 - 17:01
All customer support users told their info was accessed after analysis oversight

Okta has admitted that the number of customers affected by its October customer support system data breach is far greater than previously thought.…

Categories: News

British Library begins contacting customers as Rhysida leaks data dump

The Register - Wed, 29/11/2023 - 12:30
CRM databases were accessed and library users are advised to change passwords

The Rhysida ransomware group has published most of the data it claimed to have stolen from the British Library a month after the attack was disclosed.…

Categories: News

UK government rings the death knell for SIM farms

The Register - Wed, 29/11/2023 - 11:01
Acts under the guise of protecting the public from fraud, yet history suggests Home Office has other motives

The UK government plans to introduce new legislation to ban SIM farms, which it views as a widely abused means for carrying out cyber fraud.…

Categories: News

Brit borough council apologizes for telling website users to disable HTTPS

The Register - Wed, 29/11/2023 - 09:30
Planning portal back online with a more secure connection

Reading Borough Council has securely restored its planning portal after facing criticism for recommending questionable tech security practices to users.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News