Us, hacked by LockBit? No, says TSMC, that would be our IT supplier So, uh, who's gonna pay that $70M ransom? Cyber-crime30 Jun 2023 | 2
Crook who stole $23m+ in YouTube song royalties gets five years behind bars Claims he wants to stay in the music biz after time in a Sing Sing Cyber-crime29 Jun 2023 | 26
Network security guy in extradition tug of war between US and Russia Group-IB spinout confirms Kislitsin is wanted by both Washington and Moscow Cyber-crime29 Jun 2023 | 7
Miscreants leak texts and info siphoned by Android stalkerware app LetMeSpy Just as America's Supremes set a high bar for cyberstalking Cyber-crime27 Jun 2023 | 9
Now BlackCat extortionists threaten to leak stolen plastic surgery pics Sharing a cancer patient's nude snaps earlier wasn't enough for these scumbags Cyber-crime22 Jun 2023 | 10
A (cautionary) tale of two patched bugs, both exploited in the wild One affects VMware's monitoring tool and the other TP-Link routers Patches21 Jun 2023 | 8
Apple squashes kernel bug used by TriangleDB spyware Snoops may be targeting macOS in addition to iPhones, Kaspersky says Patches21 Jun 2023 | 3
Oreo cookie maker says crooks gobbled up staff info 50K-plus employees' personal info swiped after law firm rolled Cyber-crime20 Jun 2023 | 6
Reddit confirms BlackCat gang pinched some data Crooks demand $4.5m to keep '80GB' of corp info private – and no API price hikes Cyber-crime20 Jun 2023 | 4
Guess what happened to this US agency using outdated software? Infosec in brief Also: Hackers target security researchers, MaaS model flourishing, and this week's vulnerabilities Patches19 Jun 2023 | 16
Third MOVEit bug fixed a day after PoC exploit made public Millions of people's personal info swiped, Clop leaks begin with 'Shell's stolen data' Patches16 Jun 2023 | 18
US government hit by Russia's Clop in MOVEit mass attack CISA chief tells us exploitation 'largely opportunistic', not on same level of SolarWinds CSO15 Jun 2023 | 7
Chinese spies blamed for data-harvesting raids on Barracuda email gateways Snoops 'aggressively targeted' specific govt, academic accounts CSO15 Jun 2023 | 2
LockBit victims in the US alone paid over $90m in ransoms since 2020 As America, UK, Canada, Australia and friends share essential bible to detect and thwart infections CSO14 Jun 2023 | 2
Last of the Gozi 3 sentenced over Windows info-stealing malware ops Banking trojan still going strong as feds put bulletproof hosting point man behind bars Cyber-crime13 Jun 2023 |
UK telco watchdog Ofcom, Minnesota Dept of Ed named as latest MOVEit victims As another CVE is assigned Cyber-crime13 Jun 2023 | 12
Microsoft stole our stolen dark web data, says security outfit Suit claims Redmond took far more than allowed from Hold's 360M-credential database Security12 Jun 2023 | 8
Hold it – another vulnerability found in MOVEit file transfer software Infosec in brief Also, the FBI's $180k investment in AN0M keeps paying off, and this week's critical vulnerabilities Cyber-crime12 Jun 2023 | 7
Is it a drone? Is it a balloon? Whatever it is the US warns locals not to let them fly in Iran Some of this kit is ending up in Russia Personal Tech10 Jun 2023 | 67
Darkweb credit card marts in decline across Asia, researchers claim India tops the charts for document theft Security09 Jun 2023 | 1
North Korea's Lazarus Group linked to Atomic Wallet heist Users' cryptocurrency wallets look unlikely to be refilled Cyber-crime08 Jun 2023 | 6
Barracuda tells its ESG owners to 'immediately' junk buggy kit That patch we issued? Yeah, it wasn't enough Security08 Jun 2023 | 12
Clop ransomware crew sets June extortion deadline for MOVEit victims Plus: The Feds weigh in with advice, details CSO07 Jun 2023 | 2
British Airways, Boots, BBC payroll data stolen in MOVEit supply-chain attack Microsoft blames Russian Clop ransomware crew for theft of staff info Cyber-crime05 Jun 2023 | 27
Deployed publicly accessible MOVEit Transfer? Oh no. Mass exploitation underway Time to MOVEit, MOVEit. We don't like to MOVEit, MOVEit Patches01 Jun 2023 | 10
Dark Pink cyber-spies add info stealers to their arsenal, notch up more victims Not to be confused with K-Pop sensation BLACKPINK, gang pops military, govt and education orgs Research01 Jun 2023 | 3
Pegasus-pusher NSO gets new owner keen on the commercial spyware biz Investors roll the dice against government sanctions and lawsuits Security30 May 2023 | 15
Alien versus Predator? No, this Android spyware works together Phone-hugging code can record calls, read messages, track geolocation, access camera, other snooping Research27 May 2023 | 8
BlackByte ransomware crew lists city of Augusta after cyber 'incident' Mayor promises to comment on Friday Cyber-crime26 May 2023 | 2
Five Eyes and Microsoft accuse China of attacking US infrastructure again Defeating Volt Typhoon will be hard, because the attacks look like legit Windows admin activity Cyber-crime25 May 2023 | 10
Philly Inquirer says Cuba ransomware gang's data leak claims are fake news Now that's a Rocky relationship Cyber-crime24 May 2023 |
IT security analyst admits hijacking cyber attack to pocket ransom payments Ashley Liles altered blackmail emails in bid to make off with £300,000 in Bitcoin Cyber-crime24 May 2023 | 22
US bans North Korean outsourcer and its feisty freelancers They do your work – usually from Russia and China – then send their wages home to pay for missiles Cyber-crime24 May 2023 | 3
Dish confirms 300,000 people's data was exposed in February's attack But don't worry – we know it was deleted. Hmm. How would you know that? Cyber-crime23 May 2023 | 4
Uncle Sam strangles criminals' cashflow by reining in money mules Tech support scammer among those targeted by recent crackdowns Cyber-crime23 May 2023 | 7
Teen in court after '$600K swiped from DraftKings gamblers' Bet he didn't expect these computer hacking charges Cyber-crime19 May 2023 | 17
Russian IT guy sent to labor camp for DDoSing Kremlin websites Pro-Ukraine techie gets hard time Cyber-crime19 May 2023 | 25
Cisco squashes critical bugs in small biz switches You'll want to patch these as proof-of-concept exploit code is out there already Patches18 May 2023 |
Six million patients' data feared stolen from PharMerica Cue the inevitable class action lawsuit Cyber-crime18 May 2023 | 5
'Strictly limit' remote desktop – unless you like catching BianLian ransomware Do it or don't. We're not cops. But the FBI are, and they have this to say CSO17 May 2023 | 32
Feds offer $10m reward for info on alleged Russian ransomware crim Infecting cops' computers is one way to put a target on your back Cyber-crime17 May 2023 | 1
Cops crack gang that used bots to book and resell immigration appointments Keeping files that mention 'robot rental' may not have been the best way to cover their tracks Cyber-crime16 May 2023 | 24
Extra! Extra! Don’t quite read all about it: Cyber attack hits Philadelphia Inquirer Breaking news, literally Cyber-crime15 May 2023 |
No more macros? No problem, say miscreants, we'll adapt Microsoft blocking 'net scripts sparked 'monumental shift' in attacks CSO15 May 2023 | 10
Ransomware corrupts data, so backups can be faster and cheaper than paying up Smash and grab raids don’t leave time for careful encryption Cyber-crime15 May 2023 | 31
'Top three Balkans drug kingpins' arrested after cops crack their Sky ECC chats Maybe try carrier pigeons instead Cyber-crime13 May 2023 | 27
Ex-Ubiquiti dev jailed for 6 years after stealing internal corp data, extorting bosses Momentary lapse in VPN led to stretch in the cooler, $1.6m bill Cyber-crime12 May 2023 | 8
FBI-led Op Medusa slays NATO-bothering Russian military malware network Perseus to the rescue as Snake eats itself Cyber-crime09 May 2023 | 9
FYI: Intel BootGuard OEM private keys leak from MSI cyber heist Updated Plus: Court-ordered domain seizures of DDoS-for-hire sites Cyber-crime09 May 2023 | 13
Modern Auth comes to on-prem Exchange Server gear Guess this'll have to do while we wait for *checks notes* ES 2025 CSO08 May 2023 | 2
How to tell an AI bot wrote that scammy-looking tax email: No spelling mistakes Don't let the robots take your money! That's the IRS's job AI + ML04 May 2023 | 16
Meta does the 'We found baddies and crushed them' thing again – this time for AI Who would have thought crims would try using Facebook to fool people? Security03 May 2023 | 1
288 arrested in multinational Monopoly Market takedown US tells criminals it 'will find you' and has a particular set of skills Cyber-crime02 May 2023 | 16
China has 50 hackers for every FBI cyber agent, says Bureau boss Combatting it is going to take more money. Lots of more money. Cyber-crime01 May 2023 | 27
Crooks don't need ChatGPT to social-engineer victims, as they're more than happy to demonstrate RSA Conference Not today, AI Spotlight on RSA29 Apr 2023 | 10
Google sues CryptBot slingers, gets court order to shut down malware domains Hands off those Chrome users, they're ours! Cyber-crime27 Apr 2023 | 7
Mandiant's 'most prevalent threat actor' may be living under your roof – the teenager RSA Conference Plus they are cliquey as all hell Spotlight on RSA25 Apr 2023 | 18
Singapore tells its people: Go forth and block those ads As it preps to launch WhatsApp scam-shredder Personal Tech25 Apr 2023 | 33
That 3CX supply chain attack keeps getting worse: Other vendors hit In Brief Also, Finland sentences CEO of breach company to prison (kind of), and this week's laundry list of critical vulns CSO24 Apr 2023 | 9
European air traffic control confirms website 'under attack' by pro-Russia hackers Another cyber nuisance in support of Putin's war, nothing too serious Cyber-crime22 Apr 2023 | 10
ChatGPT fans need 'defensive mindset' to avoid scammers and malware Palo Alto Networks spots suspicious activity spikes such as naughty domains, phishing, and worse AI + ML21 Apr 2023 | 4
An earlier supply chain attack led to the 3CX supply chain attack, Mandiant says Threat hunters traced it back to malware-laced Trading Technologies' software Cyber-crime20 Apr 2023 | 2