January 2024
Major IT outage at Europe’s largest caravan and RV club makes for not-so-happy campers
1 million members still searching for answers as IT issues floor primary digital services The UK's Caravan and Motorhome Club (CAMC) is battling a suspected cyberattack with members reporting widespread IT outages for the past five days.…
Using GoAnywhere MFT for file transfers? Patch now – an exploit’s out for a critical bug
Ancient path traversal exploit offers remote attackers admin access Security experts are wasting no time in publishing working exploits for a critical vulnerability in Fortra GoAnywhere MFT, which was publicly disclosed just over a day ago.…
What Microsoft’s latest email breach says about this IT security heavyweight
Senator Wyden tells The Reg this latest security lapse is 'inexcusable' Comment For most organizations – especially security vendors – disclosing a corporate email breach, in which executives' internal messages and attachments were stolen, would noticeably ding their stock prices.…
COVID-19 test lab accused of exposing 1.3 million patient records to open internet
Now that's a Dutch crunch A password-less database containing an estimated 1.3 million sets of Dutch COVID-19 testing records was left exposed to the open internet, and it's not clear if anyone is taking responsibility.…
GCHQ’s NCSC warns of ‘realistic possibility’ AI will help state-backed malware evade detection
That means Brit spies want the ability to do exactly that, huh? The idea that AI could generate super-potent and undetectable malware has been bandied about for years – and also already debunked. However, an article published today by the UK National Cyber Security Centre (NCSC) suggests there…
CISA boss swatted: ‘While my own experience was certainly harrowing, it was unfortunately not unique’
Election officials, judges, politicians, and gamers are in swatters' crosshairs CISA Director Jen Easterly has confirmed she was the subject of a swatting attempt on December 30 after a bogus report of a shooting at her home.…
Accused PII seller faces jail for running underground fraud op
More than 5,000 victims claimed over a 3-year period but filing reckons accused didn't even use a VPN A Baltimore man faces a potential maximum 20-year prison sentence after being charged for his alleged role in running an online service that sold personal data which was later used…
UK water giant admits attackers broke into system as gang holds it to ransom
Comes mere months after Western intelligence agencies warned of attacks on water providers Southern Water confirmed this morning that criminals broke into its IT systems, making off with a "limited amount of data."…
Australia imposes cyber sanctions on Russian it says ransomwared health insurer
'Aleksandr Ermakov' isn't allowed down under after being linked to ten-million-record leak Australia's government has used the "significant cyber incidents" sanctions regime it introduced in 2021 for the first time, against a Russian named Aleksandr Gennadievich Ermakov whom authorities have deemed responsible for the 2022 attack on health…