Cybersecurity

Iran’s cyber operations in Israel a potential prelude to US election interference

Tactics are more sophisticated and supported in greater numbers Iran's anti-Israel cyber operations are providing a window into the techniques the country may deploy in the run-up to the 2024 US Presidential elections, Microsoft says.…

Raspberry Pi Pico cracks BitLocker in under a minute

Windows encryption feature defeated by $10 and a YouTube tutorial We're very familiar with the many projects in which Raspberry Pi hardware is used, from giving old computers a new lease of life through to running the animated displays so beloved by retailers. But cracking BitLocker? We doubt…

JetBrains urges swift patching of latest critical TeamCity flaw

Cloud version is safe, but no assurances offered about possible on-prem exploits JetBrains is encouraging all users of TeamCity (on-prem) to upgrade to the latest version following the disclosure of a critical vulnerability in the CI/CD tool.…

The spyware business is booming despite government crackdowns

'Almost zero data being shared across the industry on this particular threat,' we're told The commercial spyware economy – despite government and big tech's efforts to crack down – appears to be booming.…

DEF CON is canceled! No, really this time – but the show will go on

Longtime host Caesars ends relationship at short notice It's an annual meme that DEF CON infosec conference has been canceled, but this time it actually happened.…

Mozilla adds paid-for data-deletion tier to Monitor, its privacy-breach radar

Firefox maker promises to lean on personal info brokers to scrub records Mozilla on Tuesday expanded its free privacy-monitoring service with a paid-for tier called Mozilla Monitor Plus that will try to get data brokers to delete their copies of subscribers' personal information.…

Verizon says 63K employees’ info fell into the wrong hands – an insider this time

Telco says it's a private matter, data 'not shared externally' Verizon is notifying more than 63,000 people, mostly current employees, that an insider, accidentally or otherwise, had inappropriate access to their personal data.…

Chinese Coathanger malware hung out to dry by Dutch defense department

Attack happened in 2023 using a bespoke backdoor, confirming year-old suspicions Dutch authorities are lifting the curtain on an attempted cyberattack last year at its Ministry of Defense (MoD), blaming Chinese state-sponsored attackers for the espionage-focused intrusion.…

EquiLend back in the saddle as ransom payment rumors swirl

Still no word on how the intruders broke in or the full extent of any possible data compromise Global securities finance tech company EquiLend's systems are now back online after announcing a disruptive ransomware attack nearly two weeks ago.…

Double trouble for Fortinet customers as pair of critical vulns found in FortiSIEM

Admins should get a move on while info is scarce and exploits aren't yet available Fortinet's FortiSIEM product is vulnerable to two new maximum-severity security vulnerabilities that allow for remote code execution.…

Copyright © 2024 Lugapel