2024
Crypto exchange Kraken accuses blockchain security outfit CertiK of extortion
Researchers allegedly stole $3M using the vulnerability, then asked how much it was really worth Kraken, one of the largest cryptocurrency exchanges in the world, has accused a trio of security researchers of discovering a critical bug, expoliting it to steal millions in digital cash, then using stolen…
Russia’s cyber spies still threatening French national security, democracy
Publishing right before a major election is apparently just a coincidence A fresh report into the Nobelium offensive cyber crew published by France's computer emergency response team (CERT-FR) highlights the group's latest tricks as the country prepares for a major election and to host this year's Olympic and…
Qilin: We knew our Synnovis attack would cause a healthcare crisis at London hospitals
Cybercriminals claim they used a zero-day to breach pathology provider’s systems Interview The ransomware gang responsible for the current healthcare crisis at London hospitals says it has no regrets about the attack, which was entirely deliberate, it told The Register in an interview.…
Amtrak confirms crooks are breaking into user accounts, derailing email addresses
Rail company goes full steam ahead with notification letters to Rewards customers about spilled card details and more US rail company Amtrak is writing to users of its Guest Rewards program to inform them that their data is potentially at risk following a derailment of their account security. …
That PowerShell ‘fix’ for your root cert ‘problem’ is a malware loader in disguise
Control-C, Control-V, Enter ... Hell Crafty criminals are targeting thousands of orgs around the world in social-engineering attacks that use phony error messages to trick users into running malicious PowerShell scripts. …
Rogue uni IT director pleads guilty after fraudulently buying $2.1M of tech
Two decades in the clink would be quite an education A now-former IT director has pleaded guilty to defrauding the university at which he was employed – and a computer equipment supplier – for $2.1 million over five years.…
Dark-web kingpin puts ‘stolen’ internal AMD databases, source code up for sale
Chip designer really gonna need to channel some Zen right now AMD's IT team is no doubt going through its logs today after cyber-crooks put up for sale what is claimed to be internal data stolen from the US microprocessor designer.…
EU attempt to sneak through new encryption-eroding law slammed by Signal, politicians
If you call 'client-side scanning' something like 'upload moderation,' it still undermines privacy, security On Thursday, the EU Council is scheduled to vote on a legislative proposal that would attempt to protect children online by disallowing confidential communication.…
CHERI Alliance formed to promote memory security tech … but where’s Arm?
Academic-industry project takes next step as key promoter chip designer licks its wounds A group of technology organizations has formed the CHERI Alliance CIC (Community Interest Company) to promote industry adoption of the security technology focused on memory access.…
Uncle Sam ends financial support to orgs hurt by Change Healthcare attack
Billions of dollars made available but worst appears to be over The US government is winding down its financial support for healthcare providers originally introduced following the ransomware attack at Change Healthcare in February.…