July 2024

Kaspersky culls staff, closes doors in US amid Biden’s ban

After all we've done for you, America, sniffs antivirus lab Kaspersky has confirmed it will shutter its American operations and cut US-based jobs following President Biden's ban on the Russian business last month.…

ZDI shames Microsoft for – yet another – coordinated vulnerability disclosure snafu

'It seems like they really don't have a full grasp of what's going on with this patch' Exclusive  A Microsoft zero-day exploit that Trend Micro's Zero Day Initiative team claims it found and reported to Redmond in May was disclosed and patched by the Windows giant in July's…

Infoseccers claim Squarespace migration linked to DNS hijackings at Web3 firms

Company keeps quiet amid high-profile compromises Security researchers are claiming a spate of DNS hijackings at web3 businesses is linked to Squarespace's acquisition of Google Domains last year.…

Google reportedly in talks to buy infosec outfit Wiz for $23 billion

The security industry has never had a clear leader – could it be the Chocolate Factory? Ask any techie to name who leads the market for OSes, databases, networks or ERP and the answers are clear: Microsoft, Oracle, Cisco, and SAP.…

I spy another mSpy breach: Millions more stalkerware buyers exposed

Also: Velops routers love plaintext; everything is a dark pattern; Internet Explorer rises from the grave, and more Infosec in brief  Commercial spyware maker mSpy has been breached – again – and millions of purchasers can be identified from the spilled records.…

UK cyber-boss slams China’s bug-hoarding laws

Plus: Japanese scientists ID ancient supernova; AWS dismisses China trouble rumor; and more ASIA IN BRIEF  The interim CEO of the UK's National Cyber Security Centre (NCSC) has criticized China's approach to bug reporting.…

CISA broke into a US federal agency, and no one noticed for a full 5 months

Red team exercise revealed a score of security fails The US Cybersecurity and Infrastructure Security Agency (CISA) says a red team exercise at a certain unnamed federal agency in 2023 revealed a string of security failings that exposed its most critical assets.…

Three words to send a chill down your spine: Snowflake. Intrusion. Alert

And can AI save us from the scourge of malware? In theory, why not, but in practice ... Color us skeptical Kettle  For this week's Kettle episode, in which our journos as usual get together for an end-of-week chat about the news, it's security, security, security.…

Car dealer software slinger CDK Global said to have paid $25M ransom after cyberattack

15K dealerships take estimated $600M+ hit CDK Global reportedly paid a $25 million ransom in Bitcoin after its servers were knocked offline by crippling ransomware.…

White House urged to double check Microsoft isn’t funneling AI to China via G42 deal

Windows maker insisted everything will be locked down and secure – which given its reputation, uh-oh! Two House committee chairs have sent a public letter to the White House asking it to look into a deal between AI R&D outfit G42 and Microsoft.…

Copyright © 2024 Lugapel