News

Microsoft's latest security patch troubles Windows 11 users

The Register - Mon, 18/07/2022 - 15:00
The curse of Patch Tuesday strikes again as error codes wreak minor havoc

Complaints over Microsoft's latest patch Tuesday have intensified after some Windows 11 users found their systems worse for wear following installation.…

Categories: News

Bill for US telcos to bin Chinese kit blows out by $3 billion

The Register - Mon, 18/07/2022 - 05:59
Carriers likely to get cents on the dollar for ditched Huawei and ZTE kit unless more funds are found

The US Federal Communications Commission (FCC) notified Congress on Friday that the cost to rip and replace equipment kit from Huawei and ZTE installed at US telcos is more than $3 billion higher than funding allocated for the program.…

Categories: News

TikTok's chief security officer steps aside, thanks to Oracle move

The Register - Mon, 18/07/2022 - 04:58
Takes up advisory role that might leave time to play with parent company's homebrew cloudy SmartNICs

TikTok's Global Chief Security Officer Roland Cloutier has "transitioned" from his job into "a strategic advisory role focusing on the business impact of security and trust programs."…

Categories: News

Alibaba execs hauled in to discuss Shanghai Police data leak

The Register - Mon, 18/07/2022 - 02:15
Plus: Weibo cracks down on political puns; Singaporean crypto biz Vauld restructures; Philippines fights Facebook rumors

Asia In Brief  Senior execs from Alibaba Cloud were summoned to discuss the data leak that saw information pertaining to a billion Chinese citizens sold on the dark web, according to Nikkei and The Wall Street Journal.…

Categories: News

North Koreans spotted harassing SMBs with malware

The Register - Sat, 16/07/2022 - 15:34
Also: Lawyers told to dissuade clients from paying off ransomware crooks, and more

In brief  SMBs, beware: Microsoft said this week it has discovered a North Korean crew targeting small businesses with ransomware since September of last year.…

Categories: News

CISA pulls the fire alarm on Juniper Networks bugs

The Register - Fri, 15/07/2022 - 21:57
Hate to ruin your Friday

Juniper Networks has patched critical-rated bugs across its Junos Space, Contrail Networking and NorthStar Controller products that are serious enough to prompt CISA to weigh in and advise admins to update the software as soon as possible.…

Categories: News

Thousands of websites run buggy WordPress plugin that allows complete takeover

The Register - Fri, 15/07/2022 - 20:15
All versions are susceptible, there's no patch, so now's a good time to remove this add-on

Miscreants have reportedly scanned almost 1.6 million websites in attempts to exploit an arbitrary file upload vulnerability in a previously disclosed buggy WordPress plugin.…

Categories: News

Windows Network File System flaw results in arbitrary code execution as SYSTEM

The Register - Fri, 15/07/2022 - 15:15
Follina was all very exciting, but did you patch CVE-2022-30136?

Trend Micro Research has published an anatomy of a Windows remote code execution vulnerability lurking in the Network File System.…

Categories: News

Digital burglary at recruitment agency Morgan Hunt confirmed

The Register - Fri, 15/07/2022 - 08:30
Third-party software developer blamed for 'improperly storing credentials to our database'

The bad news keeps on rolling for British recruitment agency Morgan Hunt amid confirmation it suffered a digital burglary, with intruders making off with the personal data for some of the freelancers on its books.…

Categories: News

Meet Mantis, the tiny shrimp that launched 3,000 DDoS attacks

The Register - Fri, 15/07/2022 - 03:28
Watch out for deadly pinchers after that record-breaking attack

The botnet behind the largest-ever HTTPS-based distributed-denial-of-service (DDoS) attack is now named after a tiny shrimp.…

Categories: News

Homeland Security warns: Expect Log4j risks for 'a decade or longer'

The Register - Thu, 14/07/2022 - 23:59
Great, another thing that's gone endemic

Organizations can expect risks associated with Log4j vulnerabilities for "a decade or longer," according to the US Department of Homeland Security.…

Categories: News

Lenovo issues firmware updates after UEFI vulnerabilities disclosed

The Register - Thu, 14/07/2022 - 17:15
Déjà vu all over again for laptop maker as researchers poke holes in its code

Security researchers have spotted fresh flaws in Lenovo laptops just months after the vendor patched a bunch of its products.…

Categories: News

Cloud security needs assistants

The Register - Thu, 14/07/2022 - 16:45
Join the Register and Palo Alto Networks to hear the merits of the agents vs agentless approach

Sponsored  Cloud security is a challenge likely to keep a lot of IT professionals awake at night. So there might be some relief in knowing what types of tool offer the best protection – agent-based or agentless – and if organizations really have to rely on just one or the other.…

Categories: News

Amazon handed doorbell cam Ring data to US police 11 times so far in 2022

The Register - Thu, 14/07/2022 - 14:45
Massachusetts senator Markey on the charge to stop normalizing surveillance for law enforcement purposes

Amazon-owned home security company Ring turned over footage to US law enforcement without permission from the devices' owners 11 times so far in 2022, according to details unveiled by Massachusetts senator Ed Markey.…

Categories: News

Why less can be more in backup and recovery management

The Register - Thu, 14/07/2022 - 09:40
The simplified approach to data protection in hybrid clouds

Webinar  Most IT infrastructures evolve over time as the needs of the business and its users change to meet fresh demands and comply with updated organizational policies and regulatory requirements.…

Categories: News

1.9m patient records exposed in healthcare debt collector ransomware attack

The Register - Wed, 13/07/2022 - 22:06
The P in PFC now stands for Pwned

Professional Finance Company, a Colorado-based debt collector whose customers include hundreds of US hospitals, medical clinics, and dental groups, recently disclosed that more than 1.9 million people's private data – including names, addresses, social security numbers and health records – was exposed during a ransomware infection.…

Categories: News

This big phish can swim around MFA, says Microsoft Security

The Register - Wed, 13/07/2022 - 20:04
Slippery AiTM attacks targeted more than 10,000 orgs over the past nine months

A widespread phishing campaign that has hit more than 10,000 organizations since September 2021 uses adversary-in-the-middle (AiTM) proxy sites to get around multifactor authentication (MFA) features and steal credentials that are then used to compromise business email accounts.…

Categories: News

SCOTUS judges 'doxxed' after overturning Roe v Wade

The Register - Wed, 13/07/2022 - 19:28
Physical and IP addresses as well as credit card info revealed in privacy breach

The US Supreme Court justices who overturned Roe v. Wade last month may have been doxxed – had their personal information including physical and IP addresses, and credit card info revealed – according to threat intel firm Cybersixgill.…

Categories: News

Mergers and acquisitions put zero trust to the ultimate test

The Register - Wed, 13/07/2022 - 18:00
Bypasses an arduous integration process with right security footing from the start

When Jay Chaudhry launched Zscaler in 2007, he envisioned a number of use cases for the zero-trust platform, from security for a growing distributed, virtualized IT environment a nascent cloud computing environment to improved network visibility and identity governance.…

Categories: News

X.org servers update closes 2 security holes, adds neat component tweaks

The Register - Wed, 13/07/2022 - 17:00
Arbitrary code execution flaws in the X Keyboard Extension were bad news

X.org has released a bunch of updates, which includes closing two security holes and, yes, this affects Wayland users too.…

Categories: News

Pages

Subscribe to Sec Tec Limited aggregator - News