lugapelsiteadmin
DigiCert gives unlucky folks 24 hours to replace doomed certificates after code blunder
For the want of an underscore DigiCert has given some unlucky customers 24 hours to replace their SSL/TLS security certificates it previously issued them – due to a five-year-old blunder in its backend software.…
‘LockBit of phishing’ EvilProxy used in more than a million attacks every month
Leaves a trail of ransomware infections, data theft, business email compromise in its wake Insight The developers of EvilProxy – a phishing kit dubbed the "LockBit of phishing" – have produced guides on using legitimate Cloudflare services to disguise malicious traffic. This adds to the ever-growing arsenal of…
Ransomware gangs are loving this dumb but deadly make-me-admin ESXi vulnerability
Get those patches applied – all the big dogs are abusing it Do you have your VMware ESXi hypervisor joined to Active Directory? Well, the latest news from Microsoft serves as a reminder that you might not want to do that given the recently patched vulnerability that has…
Proofpoint phishing palaver plagues millions with ‘perfectly spoofed’ emails from IBM, Nike, Disney, others
They DKIM here, they DKIM there A huge phishing campaign exploited a security blind-spot in Proofpoint's email filtering systems to send an average of three million "perfectly spoofed" messages a day purporting to be from Disney, IBM, Nike, Best Buy, and Coca-Cola – all of which are Proofpoint…
Malaysia is working on an internet ‘kill switch’, says minister
Follows requirement for social media and messaging platforms to get a license Legislation for an internet "kill switch" will reach Malaysia’s Parliament in October, according to the country's minister for Law and Institutional Reform.…
Meta’s AI safety system defeated by the space bar
'Ignore previous instructions' thwarts Prompt-Guard model if you just add some good ol' ASCII code 32 Meta's machine-learning model for detecting prompt injection attacks – special prompts to make neural networks behave inappropriately – is itself vulnerable to, you guessed it, prompt injection attacks.…
Intruders at HealthEquity rifled through storage, stole 4.3M people’s data
No mention of malware or ransomware – somewhat of a rarity these days HealthEquity, a US fintech firm for the healthcare sector, admits that a "data security event" it discovered at the end of June hit the data of a substantial 4.3 million individuals. Stolen details include addresses,…
Google apologizes for breaking password manager for millions of Windows users with iffy Chrome update
Happy Sysadmin Day Google celebrated Sysadmin Day last week by apologizing for breaking its password manager for millions of Windows users – just as many Windows admins were still hard at work mitigating the impact of the faulty CrowdStrike update.…
Microsoft admits 8.5M CrowdStruck machines estimate was lowballed
Promises to discourage use of kernel mode by AV – so they don't crash the world again Microsoft has admitted that its estimate of 8.5 million machines crashed by CrowdStrike's faulty software update was almost certainly too low, and vowed to reduce infosec vendors' reliance on kernel-mode drivers…
China ponders creating a national ‘cyberspace ID’
Because clearly it's better for Beijing to know who you are than for every ISP and social service to keep its own records Beijing may soon issue "cyberspace IDs" to its citizens, after floating a proposal for the scheme last Friday.…