News

McAfee and FireEye rename themselves ‘Trellix’

The Register - Thu, 20/01/2022 - 07:01
To evoke support for growing things, not the 1990s vendor of web-pages-made-easy-ware

LogoWatch  Newly combined security outfits McAfee and FireEye have revealed a new name: "Trellix".…

Categories: News

Singapore gives banks two-week deadline to fix SMS security

The Register - Thu, 20/01/2022 - 06:01
Edict follows widespread bank phishing scam claiming well over $6.3 million

A widespread phishing operation targeting Southeast Asia's second-largest bank – Oversea-Chinese Banking Corporation (OCBC) – has prompted the Monetary Authority of Singapore (MAS) to introduce regulations for internet banking that include use of an SMS Sender ID registry.…

Categories: News

Need to prioritize security bug patches? Don't forget to scan Twitter as well as use CVSS scores

The Register - Wed, 19/01/2022 - 21:22
Exploit, vulnerability discussion online can offer useful signals

Organizations looking to minimize exposure to exploitable software should scan Twitter for mentions of security bugs as well as use the Common Vulnerability Scoring System or CVSS, Kenna Security argues.…

Categories: News

Sniff those Ukrainian emails a little more carefully, advises Uncle Sam in wake of Belarusian digital vandalism

The Register - Wed, 19/01/2022 - 20:01
NotPetya started over there, don't forget

US companies should be on the lookout for security nasties from Ukrainian partners following the digital graffiti and malware attack launched against Ukraine by Belarus, the CISA has warned.…

Categories: News

Vulnerabilities and censorship tools among hot new features in Beijing's Olympics app

The Register - Wed, 19/01/2022 - 18:11
Visitors have to install it 14 days prior to arrival in China until their departure

Toronto-based Citizen Lab has warned that an app required by Beijing law to attend the 2022 Olympics contains vulnerabilities that can leak calls and data to malicious users, as well as the potential to subject the user to scanning for censored keywords.…

Categories: News

US mergers doubled in 2021 so FTC and DoJ seek new guidelines to stop illegal ones

The Register - Wed, 19/01/2022 - 12:31
Last set of rules written in 2010 – a whole different era in tech terms

The US Federal Trade Commission (FTC) and Department of Justice (DoJ) Antitrust Division are launching a joint public inquiry as a first step to modernising merger guidelines and preventing anticompetitive deals.…

Categories: News

Crypto.com acknowledges 'unauthorized activity' on servers, maintains no funds have been lost

The Register - Tue, 18/01/2022 - 21:12
Security biz PeckShield claims $15m in Ethereum taken

Crypto.com, a Singapore-based cryptocurrency exchange, has denied reports that the firm lost nearly $15m in Ethereum in a possible network intrusion over the weekend.…

Categories: News

International police shut down 15 server infrastructures as part of VPNLab.net's takedown

The Register - Tue, 18/01/2022 - 17:01
VPN service used by crims to support ransomware attacks and other illicit activity

Some 15 server infrastructures used by crims to prepare ransomware attacks were seized by cops yesterday as part of an international sting to take down VPNLab.net.…

Categories: News

More contractor pain: Parasol's sister firms, SJD Accountancy and Nixon Williams, confirm cyberattack

The Register - Tue, 18/01/2022 - 14:45
Ransomware suspected but not confirmed

SJD Accountancy and Nixon Williams – both contractor-focused beancounting firms owned by the same corporate parent as cyber-attack-struck UK umbrella company Parasol – have been hit by online attackers.…

Categories: News

Singapore monetary authority threatens action on bank over widespread phishing scam

The Register - Tue, 18/01/2022 - 13:04
Scam has claimed 469 victims in December alone, of which OCBC has issued goodwill payments to 30

The Monetary Authority of Singapore says it is considering supervisory action against Southeast Asia's second largest bank, Oversea-Chinese Banking Corporation (OCBC), which was criticised for its incident response to a widespread phishing scheme across the island nation.…

Categories: News

Why global DDoS protection is essential for Anycast networks

The Register - Tue, 18/01/2022 - 11:55
‘If you don’t have Anycast it’s not a good DNS service’

Paid Feature  In October 2021, in an incident lasting more than six hours, Facebook disappeared from the Internet. This wasn’t a temporary .com outage on the company’s primary domain but a complete shutdown of its public existence that also dragged into the darkness WhatsApp, Instagram, and Messenger.…

Categories: News

Microsoft patches the patch that broke VPNs, Hyper-V, and left servers in boot loops

The Register - Tue, 18/01/2022 - 11:34
Testing? Isn't that what users are for?

Microsoft has patched the patch that broke chunks of Windows and emitted fixes for a Patch Tuesday cock-up that left servers rebooting and VPNs disconnected.…

Categories: News

Bug in WebKit's IndexedDB implementation makes Safari 15 leak Google account info... and more

The Register - Mon, 17/01/2022 - 18:31
Glitch is spilling private data and there's not much Apple users can do about it

An improperly implemented API that stores data on browsers has caused a vulnerability in Safari 15 that leaks user internet activity and personal identifiers.…

Categories: News

Ukraine blames Belarus for PC-wiping 'ransomware' that has no recovery method and nukes target boxen

The Register - Mon, 17/01/2022 - 16:24
And for last week's digital graffiti operations, too

After last week's website defacements, Ukraine is now being targeted by boot record-wiping malware that looks like ransomware but with one crucial difference: there's no recovery method. Officials have pointed the finger at Belarus.…

Categories: News

Umbrella company Parasol Group confirms cyber attack as 'root cause' of prolonged network outage

The Register - Mon, 17/01/2022 - 13:28
'Malicious activity on our network' spotted, says CEO, as some contractors say they've still not been paid

Umbrella company Parasol Group has confirmed why it shut down part of its IT last week: it found unauthorised activity from an intruder.…

Categories: News

North Korea pulled in $400m in cryptocurrency heists last year – report

The Register - Sun, 16/01/2022 - 11:01
Plus: FIFA 22 players lose their identity and Texas gets phony QR codes

In brief  Thieves operating for the North Korean government made off with almost $400m in digicash last year in a concerted attack to steal and launder as much currency as they could.…

Categories: News

Russia starts playing by the rules: FSB busts 14 REvil ransomware suspects

The Register - Fri, 14/01/2022 - 21:01
Cybercrook gang has 'ceased to exist' says Putin's military service

Russia's internal security agency said today it had dismantled the REvil ransomware gang's networks and raided its operators' homes following arrests yesterday in Ukraine.…

Categories: News

Multi-day IT systems outage whacks umbrella biz Parasol Group amid fears of a cyber attack

The Register - Fri, 14/01/2022 - 16:30
Contractors say they haven't been paid, and are in the dark too

Contractors employed via umbrella company Parasol Group are increasingly nervous about a multi-day outage of some IT systems used to process payroll, with several suspecting a security attack as the root cause.…

Categories: News

Ukraine shrugs off mass govt website defacement as world turns to stare at Russia

The Register - Fri, 14/01/2022 - 15:49
Despite threatening messages nothing's been leaked, say victims

A "massive" cyber attack on Ukraine caught the world's eye this morning as the country's foreign ministry said its website, among others, had been taken down by unidentified hackers.…

Categories: News

Visibility, immutability, security … a revolutionary approach to fighting off ransomware

The Register - Fri, 14/01/2022 - 07:30
This webinar shows how throwing up barricades isn’t enough anymore

Webinar  It’s a truism that your data is your organisation's most precious asset. Here’s another. Once data is backed up, many organisations tend to forget about it.…

Categories: News

Pages

Subscribe to Sec Tec Limited aggregator - News