• Cybersecurity
• January 2, 2025

Chinese cyber-spies reportedly targeted sanctions intel in US Treasury raid

OFAC, Office of the Treasury Secretary feared hit in data-snarfing swoop Chinese spies who compromised the US Treasury Department's workstations reportedly stole data belonging to a government office responsible for sanctions against organizations and individuals.…

• Cybersecurity
• January 2, 2025

Apple offers to settle ‘snooping Siri’ lawsuit for an utterly incredible $95M

Even the sound of a zip could be enough to start the recordings, according to claims Apple has filed a proposed settlement in California suggesting it will pay $95 million to settle claims that Siri recorded owners' conversations without consent and allowed contractors to listen in.…

• Cybersecurity
• January 1, 2025

Eight things that should not have happened last year, but did

2024's Tech Fail Roll Of Dishonor Opinion  Happy new year! Tradition says that this is when we boldly look forward to what may happen in the 12 months to come. Do you really want to know that? Didn’t think so.…

• Cybersecurity
• January 1, 2025

US Army soldier who allegedly stole Trump’s AT&T call logs arrested

Brings the arrest count related to the Snowflake hacks to 3 A US Army soldier has been arrested in Texas after being indicted on two counts of unlawful transfer of confidential phone records information. …

• Cybersecurity
• December 31, 2024

US Treasury Department outs the blast radius of BeyondTrust’s key leak

Data pilfered as miscreants roamed affected workstations The US Department of the Treasury has admitted that miscreants were in its systems, accessing documents in what has been called a "major incident."…

• Cybersecurity
• December 31, 2024

China’s cyber intrusions took a sinister turn in 2024

From targeted espionage to pre-positioning - not that they are mutually exclusive The Chinese government's intrusions into America's telecommunications and other critical infrastructure networks this year appears to signal a shift from cyberspying as usual to prepping for destructive attacks.…

• Cybersecurity
• December 30, 2024

More telcos confirm Salt Typhoon breaches as White House weighs in

The intrusions allowed Beijing to 'geolocate millions of individuals' AT&T, Verizon, and Lumen Technologies confirmed that Chinese government-backed snoops accessed portions of their systems earlier this year, while the White House added another, yet-unnamed telecommunications company to the list of those breached by Salt Typhoon.…

• Cybersecurity
• December 30, 2024

It’s only a matter of time before LLMs jump start supply-chain attacks

'The greatest concern is with spear phishing and social engineering' Interview  Now that criminals have realized there's no need to train their own LLMs for any nefarious purposes - it's much cheaper and easier to steal credentials and then jailbreak existing ones - the threat of a large-scale…

• Cybersecurity
• December 28, 2024

How cops taking down LockBit, ALPHV led to RansomHub’s meteoric rise

Cut off one head, two more grow back in its place RansomHub, the ransomware collective that emerged earlier this year, quickly gained momentum, outpacing its criminal colleagues and hitting its victims especially hard. The group named and shamed hundreds of organizations on its leak site, while demanding exorbitant…

• Cybersecurity
• December 27, 2024

Microsoft adds another problem to the Windows 11 24H2 naughty list

Santa Satya pops one more issue into his sack just in time for Christmas The trickle of known issues with Windows 11 24H2 has continued with a new one just in time for festive season: installed the operating system using removable media? There's a chance it might stop…