July 2024

Malware that is ‘not ransomware’ wormed its way through Fujitsu Japan’s systems

Company says data exfiltration was extremely difficult to detect Fujitsu Japan says an unspecified "advanced" malware strain was to blame for a March data theft, insisting the strain was "not ransomware", yet it hasn't revealed how many individuals are affected.…

Ransomware crews investing in custom data stealing malware

BlackByte, LockBit among the criminals using bespoke tools As ransomware crews increasingly shift beyond just encrypting victims' files and demanding a payment to unlock them, instead swiping sensitive info straight away, some of the more mature crime organizations are developing custom malware for their data theft.…

Big Tech’s eventual response to my LLM-crasher bug report was dire

Fixes have been made, it appears, but disclosure or discussion is invisible Column  Found a bug? It turns out that reporting it with a story in The Register works remarkably well ... mostly. After publication of my "Kryptonite" article about a prompt that crashes many AI chatbots, I…

ViperSoftX variant spotted abusing .NET runtime to disguise data theft

Freeware AutoIt also used to hide entire PowerShell environments in scripts A rapidly-changing infostealer malware known as ViperSoftX has evolved to become more dangerous, according to security researchers at threat detection vendor Trellix.…

Elexon’s Insight into UK electricity felled by expired certificate

Understanding the power needs of the UK begins with knowing when renewals are due Certificate Watch  Demonstrating that Microsoft is not alone in its inability to keep track of certificates is UK power market biz Elexon.…

Evolve Bank & Trust confirms LockBit stole 7.6 million people’s data

Making cyberattack among the largest ever recorded in finance industry Evolve Bank & Trust says the data of more than 7.6 million customers was stolen during the LockBit break-in in late May, per a fresh filing with Maine's attorney general.…

Houthi rebels are operating their own GuardZoo spyware

Fairly 'low budget', unsophisticated malware, say researchers, but it can collect the same data as Pegasus Interview  When it comes to surveillance malware, sophisticated spyware with complex capabilities tends to hog the limelight – for example NSO Group's Pegasus, which is sold to established governments. But it's actually…

Microsoft China staff can’t log on with an Android, so Redmond buys them iThings

Google's absence creates software distribution issues not even mighty Microsoft can handle Microsoft China will provide staff with Apple devices so they can log on to the software giant's systems.…

Scammers double-scam victims by offering to help recover from scams

Scum keep databases of the people they've already skimmed Australia's Competition and Consumer Commission has warned that scammers are targeting scam victims with fake offers to help them recover from scams.…

Microsoft forgets about SwiftKey’s support site

Injecting Copilot branding will not make TLS certificates auto-renew Another Microsoft certificate has expired, leaving SwiftKey users that are seeking support faced with an alarming certificate error.…

Copyright © 2024 Lugapel