Viry a Červi

Uncle Sam seeks to claw back $5M+ stolen from trade union through spoofed email

The Register - Anti-Virus - 6 Červen, 2024 - 15:30
Funds are currently seized after being sent to offshore accounts

The US Justice Department is seeking permission to recover more than $5 million worth of funds stolen from a trade union by business email compromise (BEC) scammers.…

Kategorie: Viry a Červi

Microsoft shows venerable and vulnerable NTLM security protocol the door

The Register - Anti-Virus - 6 Červen, 2024 - 14:00
Time to get moving if you still rely on this deprecated feature

Microsoft has finally decided to add the venerable NTLM authentication protocol to the Deprecated Features list.…

Kategorie: Viry a Červi

7-year-old Oracle WebLogic bug under active exploitation

The Register - Anti-Virus - 6 Červen, 2024 - 12:37
Experts say Big Red will probably re-release patch in an upcoming cycle

A seven-year-old Oracle vulnerability is the latest to be added to CISA's Known Exploited Vulnerability (KEV) catalog, meaning the security agency considers it a significant threat to federal government.…

Kategorie: Viry a Červi

Microsoft Research chief scientist has no issue with Windows Recall

The Register - Anti-Virus - 6 Červen, 2024 - 09:26
As tool emerges to probe OS feature's SQLite-based store of user activities

Asked to explore the data privacy issues arising from Microsoft Recall, the Windows maker's poorly received self-surveillance tool, Jaime Teevan, chief scientist and technical fellow at Microsoft Research, brushed aside concerns.…

Kategorie: Viry a Červi

TikTok confirms CNN, other high-profile accounts hijacked via zero-day vulnerability

The Register - Anti-Virus - 5 Červen, 2024 - 23:45
Beware of zero-click malware sliding into your DMs

Miscreants exploited a zero-day in TikTok to compromised the accounts of CNN and other big names. The app maker has confirmed there was a cyberattack, and that it has scrambled to secure accounts and prevent any further exploitation.…

Kategorie: Viry a Červi

What is RansomHub? Looks like a Knight ransomware reboot

The Register - Anti-Virus - 5 Červen, 2024 - 22:13
Malware code potentially sold off, tweaked, back at it infecting victims

RansomHub, a newish cyber-crime operation that has claimed to be behind the theft of data from Christie's auction house and others, is "very likely" some kind of rebrand of the Knight ransomware gang, according to threat hunters.…

Kategorie: Viry a Červi

Emergency patches released for critical vulns impacting EOL Zyxel NAS boxes

The Register - Anti-Virus - 5 Červen, 2024 - 19:30
That backdoor's not meant to be there?

Zyxel just released security fixes for two of its obsolete network-attached storage (NAS) devices after an intern at a security vendor reported critical flaws months ago.…

Kategorie: Viry a Červi

4 cuffed following probe into holiday scheme for cybercrooks

The Register - Anti-Virus - 5 Červen, 2024 - 14:06
Public officials allegedly bribed to allow extradition-dodging travel

Four arrests were made this week as part of an international probe into two overlapping corruption schemes that allowed cybercrims on INTERPOL watch lists to travel freely without flagging any alerts.…

Kategorie: Viry a Červi

Microsoft paid Tenable a bug bounty for an Azure flaw it says doesn't need a fix, just better documentation

The Register - Anti-Virus - 5 Červen, 2024 - 08:44
Let customers interfere with other tenants? That's our cloud working by design, Redmond seems to say

A vulnerability — or just Azure working as intended, depending on who you ask — in Microsoft's cloud potentially allows miscreants to wave away firewall rules and access other people's private web resources.…

Kategorie: Viry a Červi

Command senior chief busted for secretly setting up Wi-Fi on US Navy combat ship

The Register - Anti-Virus - 4 Červen, 2024 - 22:04
In the Navy, no, you cannot have an unauthorized WLAN. In the Navy, no, that's not a good plan

The US Navy has cracked down on an illicit Wi-Fi network installed on a combat ship by demoting the senior enlisted leader who ordered it to be set up.…

Kategorie: Viry a Červi

Pentagon 'doubling down' on Microsoft despite 'massive hack,' senators complain

The Register - Anti-Virus - 4 Červen, 2024 - 20:42
Meanwhile Mr Smith goes to Washington to testify before Congress

The Pentagon is "doubling down" on its investment in Microsoft products despite the serious failings at the IT giant that put America's national security at risk, say two US senators.…

Kategorie: Viry a Červi

London hospitals left in critical condition after ransomware attack

The Register - Anti-Virus - 4 Červen, 2024 - 17:43
Pathology lab provider targeted, affecting blood transfusions and surgeries

Hospitals in London are struggling to deliver pathology services after a ransomware attack at a service partner downed some key systems.…

Kategorie: Viry a Červi

Christie's stolen data sold to highest bidder rather than leaked, RansomHub claims

The Register - Anti-Virus - 4 Červen, 2024 - 16:32
Experts say auctioning the auctioneer’s data is unlikely to have been genuinely successful

The cybercrims who claimed the attack on Christie's fancy themselves as auctioneers as well, after they allegedly sold off the company's data to the highest bidder instead of leaking everything on the dark web.…

Kategorie: Viry a Červi

Microsoft accused of tracking kids with education software

The Register - Anti-Virus - 4 Červen, 2024 - 16:00
Privacy group seeks clarification of whether EU data protection law has been breached

Updated  A privacy campaign group with a strong record in legal upheavals has asked the Austrian data protection authority to investigate Microsoft 365 Education to clarify if it breaches transparency provisions under GDPR.…

Kategorie: Viry a Červi

Cybercrooks get cozy with BoxedApp to dodge detection

The Register - Anti-Virus - 4 Červen, 2024 - 14:00
Some of the biggest names in the game are hopping on the trend

Malware miscreants are increasingly showing a penchant for abusing legitimate, commercial packer apps to evade detection.…

Kategorie: Viry a Červi

Hudson Rock yanks report fingering Snowflake employee creds snafu for mega-leak

The Register - Anti-Virus - 4 Červen, 2024 - 04:25
Cloud storage giant lawyers up against infosec house

Analysis  Hudson Rock, citing legal pressure from Snowflake, has removed its online report that claimed miscreants broke into the cloud storage and analytics giant's underlying systems and stole data from potentially hundreds of customers including Ticketmaster and Santander Bank.…

Kategorie: Viry a Červi

NIST turns to IT consultants to clear National Vulnerability Database backlog

The Register - Anti-Virus - 3 Červen, 2024 - 23:46
Aims to get CVE logjam cleared by the end of FY 24

Facing a growing backlog of reported flaws, NIST has extended a commercial contract with an outside consultancy to help it get on top of its National Vulnerability Database (NVD).…

Kategorie: Viry a Červi

Crooks threaten to leak 3B personal records 'stolen from background check firm'

The Register - Anti-Virus - 3 Červen, 2024 - 21:36
Turns out opting out actually works?

Billions of records detailing people's personal information may soon be dumped online after being allegedly obtained from a Florida firm that handles background checks and other requests for folks' private info.…

Kategorie: Viry a Červi

Russia takes gold for disinformation as Olympics approach

The Register - Anti-Virus - 3 Červen, 2024 - 16:45
Featuring Tom Cruise deepfakes and multiple made-up terrorism threats

Still throwing toys out the pram over its relationship with international sport, Russia is engaged in a multi-pronged disinformation campaign against the Olympic Games and host nation France that's intensifying as the opening ceremony approaches.…

Kategorie: Viry a Červi

Check Point warns customers to patch VPN vulnerability under active exploitation

The Register - Anti-Virus - 3 Červen, 2024 - 14:02
Also, free pianos are the latest internet scam bait, Cooler Master gets pwned, and some critical vulnerabilities

Infosec in brief  Cybersecurity software vendor Check Point is warning customers to update their software immediately in light of a zero day vulnerability under active exploitation.…

Kategorie: Viry a Červi
Syndikovat obsah