2.8M US folks learn their personal info was swiped months ago in Sav-Rx IT heist

The Register - Tue, 28/05/2024 - 23:20
Theft happened in October, only now are details coming to light

Sav-Rx has started notifying about 2.8 million people that their personal information was likely stolen during an IT intrusion that happened more than seven months ago.…

Categories: News

BreachForums returns, just weeks after FBI-led takedown

The Register - Tue, 28/05/2024 - 19:45
Website whack-a-mole getting worse

BreachForums is back online just weeks after the notorious ransomware leak site was seized by law enforcement.…

Categories: News

SpiderOak One customers threaten to jump ship following datacenter upgrade

The Register - Tue, 28/05/2024 - 17:45
One tricky cluster is causing outrage among longstanding customers

Over a month after an April datacenter upgrade coincided with problems with some of its customers' backups, secure storage biz SpiderOak still isn't fully operational, and some angry users say they're ready to cut ties.…

Categories: News

Auction house Christie’s confirms criminals stole some client data

The Register - Tue, 28/05/2024 - 14:30
Centuries-old institution dodges questions on how it happened as ransomware gang claims credit

International auctioning giant Christie's has confirmed data was stolen during an online attack after a top-three ransomware group claimed credit.…

Categories: News

Take two APIs and call me in the morning: How healthcare research can cure cyber crime

The Register - Tue, 28/05/2024 - 09:30
In evolving smarter security, open source is the missing link

Opinion  Some ideas work better than others. Take DARPA, the US Defense Advanced Research Projects Agency. Launched by US President Dwight Eisenhower in 1957 response to Sputnik, its job is to create and test concepts that may be useful in thwarting enemies. Along the way, it's helped make happen GPS, weather satellites, PC technology, and something called the internet.…

Categories: News

How's Uncle Sam getting on with Biden's AI exec order? Pretty good, we're told

The Register - Mon, 27/05/2024 - 17:56
Former Pentagon deputy CIO Rob Carey tells us guardrails should steer Feds away from bad ML

Interview  President Biden's October executive order encouraging the safe use of AI included a ton of requirements for federal government agencies that are developing and deploying machine learning technologies.…

Categories: News

Bayer and 12 other major drug companies caught up in Cencora data loss

The Register - Mon, 27/05/2024 - 03:59
Plus: US water systems fail at cyber security

Infosec in brief  More than a dozen big pharmaceutical suppliers have begun notifying individuals that their data was stolen when US drug wholesaler Cencora was breached in February.…

Categories: News

Man behind deepfake Biden robocall indicted on felony charges, faces $6M fine

The Register - Sat, 25/05/2024 - 00:21
FCC wants to hit this political genius with first-of-a-kind punishment

The political consultant who admitted paying $150 to create a deepfake anti-Biden robocall has been indicted on charges of felony voter suppression and misdemeanor impersonation of a candidate.…

Categories: News

Best Buy and Geek Squad were most impersonated orgs by scammers in 2023

The Register - Fri, 24/05/2024 - 23:23
But criminals posing as Microsoft workers scored the most ill-gotten gains

The Federal Trade Commission (FTC) has shared data on the most impersonated companies in 2023, which include Best Buy, Amazon, and PayPal in the top three.…

Categories: News

Suspected supply chain attack backdoors courtroom recording software

The Register - Fri, 24/05/2024 - 21:29
An open and shut case, but the perps remain at large – whoever they are

Justice is served… or should that be saved now that audio-visual software deployed in more than 10,000 courtrooms is once again secure after researchers uncovered evidence that it had been backdoored for weeks.…

Categories: News

Three-year-old Apache Flink flaw under active attack

The Register - Fri, 24/05/2024 - 01:59
We know IT admins have busy schedules but c'mon

An improper access control bug in Apache Flink that was fixed in January 2021 has been added to the US government's Known Exploited Vulnerabilities Catalog, meaning criminals are right now abusing the flaw in the wild to compromise targets.…

Categories: News

Here's yet more ransomware using BitLocker against Microsoft's own users

The Register - Thu, 23/05/2024 - 22:21
ShrinkLocker throws steel and vaccine makers into the hurt locker

Yet more ransomware is using Microsoft BitLocker to encrypt corporate files, steal the decryption key, and then extort a payment from victim organizations, according to Kaspersky.…

Categories: News

Casino cyberattacks put a bullseye on Scattered Spider – and the FBI is closing in

The Register - Thu, 23/05/2024 - 21:16
Mandiant CTO chats to The Reg about the looming fate of this ransomware crew

Interview  The cyberattacks against Las Vegas casinos over the summer put a big target on the backs of prime suspects Scattered Spider, according to Mandiant CTO Charles Carmakal.…

Categories: News

Google guru roasts useless phishing tests, calls for fire drill-style overhaul

The Register - Thu, 23/05/2024 - 20:01
Current approaches aren't working and demonize security teams

A Google security bigwig has had enough of federally mandated phishing tests, saying they make colleagues hate IT teams for no added benefit.…

Categories: News

Veeam says critical flaw can't be abused to trash backups

The Register - Thu, 23/05/2024 - 15:30
It's still a rough one, so patch up

Veeam says the recent critical vulnerability in its Backup Enterprise Manager (VBEM) can't be used by cybercriminals to delete an organization's backups.…

Categories: News

70% of CISOs worry their org is at risk of a material cyber attack

The Register - Thu, 23/05/2024 - 14:30
Wait, why do you want this job again?

Chief information security officers around the globe "are nervously looking over the horizon," according to a survey of 1,600 CISOs that found more than two thirds (70 percent) worry their organization is at risk of a material cyber attack over the next 12 months. …

Categories: News

UK data watchdog wants six figures from N Ireland cops after 2023 data leak

The Register - Thu, 23/05/2024 - 09:30
Massive discount applied to save cop shop’s helicopter budget

Following a data leak that brought "tangible fear of threat to life", the UK's data protection watchdog says it intends to fine the Police Service of Northern Ireland (PSNI) £750,000 ($955,798).…

Categories: News

How Apple Wi-Fi Positioning System can be abused to track people around the globe

The Register - Thu, 23/05/2024 - 07:34
SpaceX is smart on this, Cupertino and GL.iNet not so much

In-depth  Academics have suggested that Apple's Wi-Fi Positioning System (WPS) can be abused to create a global privacy nightmare.…

Categories: News

Would you buy Pegasus spyware from this scammer?

The Register - Thu, 23/05/2024 - 06:45
You shouldn't – Indian infosec researchers warn you'll get random junk instead

Indian infosec firm CloudSEK warned on Wednesday that scammers are selling counterfeit code advertised as the NSO Group's notorious Pegasus spyware.…

Categories: News

'China-aligned' spyware slingers operating since 2018 unmasked at last

The Register - Thu, 23/05/2024 - 04:47
Unfading Sea Haze adept at staying under the radar

Bitdefender says it has tracked down and exposed an online gang that has been operating since 2018 nearly without a trace – and likely working for Chinese interests.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News