Cybersecurity

China’s Silk Typhoon, tied to US Treasury break-in, now hammers IT and govt targets

They're good at zero-day exploits, too Silk Typhoon, the Chinese government crew believed to be behind the December US Treasury intrusions, has been abusing stolen API keys and cloud credentials in ongoing attacks targeting IT companies and state and local government agencies since late 2024, according to Microsoft…

Apple drags UK government to court over ‘backdoor’ order

A first-of-its-kind legal challenge set to be heard this month, per reports Apple has reportedly filed a legal complaint with the UK's Investigatory Powers Tribunal (IPT) contesting the UK government's order that it must forcibly break the encryption of iCloud data.…

Leeds United kick card swipers into Row Z after 5-day cyberattack

English football club offers apologies after fans' card details stolen from online retail store English football club Leeds United says cyber criminals targeted its retail website during a five-day assault in February and stole the card details of "a small number of customers." …

Qilin ransomware gang claims attacks on cancer clinic, OB-GYN facility

List of attacks by 'No regrets' crew leaking highly sensitive data continues to grow Qilin – the "no regrets" ransomware crew wreaking havoc on the global healthcare industry – just claimed responsibility for fresh attacks on a cancer treatment clinic in Japan and a women's healthcare facility in…

How prevention is better than cure

Stop cyberattacks before they happen with preventative endpoint security Sponsored Post  Every organization is vulnerable to cyber threats, and endpoint devices are a common target for cyber criminals.…

How Google tracks Android device users before they’ve even opened an app

No warning, no opt-out, and critic claims ... no consent Research from a leading academic shows Android users have advertising cookies and other gizmos working to build profiles on them even before they open their first app.…

It’s bad enough we have to turn on cams for meetings, now the person staring at you may be an AI deepfake

Says the biz trying to sell us stuff to catch that, admittedly High-profile deepfake scams that were reported here at The Register and elsewhere last year may just be the tip of the iceberg. Attacks relying on spoofed faces in online meetings surged by 300 percent in 2024,…

Plugging the holes in open banking

Enhancing API security for financial institutions Partner Content  Open banking has revolutionized financial services, empowering consumers to share their financial data with third-party providers, including fintech innovators.…

So … Russia no longer a cyber threat to America?

Mixed messages from Pentagon, CISA as Trump gets pally with Putin and Kremlin strikes US critical networks Comment  America's cybersecurity chiefs in recent days have been sending mixed messages about the threat posed by Russia in the digital world.…

Cybersecurity not the hiring-’em-like-hotcakes role it once was

Ghost positions, HR AI no help – biz should talk to infosec staff and create 'realistic' job outline, say experts Analysis  It's a familiar refrain in the security industry that there is a massive skills gap in the sector. And while it's true there are specific shortages in…

Copyright © 2024 Lugapel