29 Jul

Microsoft admits 8.5M CrowdStruck machines estimate was lowballed

Microsoft has admitted that its estimate of 8.5 million machines crashed by CrowdStrike’s faulty software update was almost certainly too low, and vowed to reduce

Author rabih
29 Jul

Intruders at HealthEquity rifled through storage, stole 4.3M people’s data

HealthEquity, a US fintech firm for the healthcare sector, admits that a “data security event” it discovered at the end of June hit the data

Author rabih
29 Jul

Google apologizes for breaking password manager for millions of Windows users with iffy Chrome update

Google celebrated Sysadmin Day last week by apologizing for breaking its password manager for millions of Windows users – just as many Windows admins were

Author rabih
29 Jul

Beware of fake AI tools masking very real malware threats

Generative AI (GenAI) is making waves across the world. Its popularity and widespread use has also attracted the attention of cybercriminals, leading to various cyberthreats.

Author rabih
29 Jul

Microsoft admits 8.5 million CrowdStruck machines estimate was lowballed

Microsoft has admitted that its estimate of 8.5 million machines crashed by CrowdStrike’s faulty software update was almost certainly too low, and vowed to reduce

Author rabih
29 Jul

China ponders creating a national ‘cyberspace ID’

Beijing may soon issue “cyberspace IDs” to its citizens, after floating a proposal for the scheme last Friday. Although the policy is only open for

Author rabih
29 Jul

Secure Boot useless on hundreds of PCs from major vendors after key leak

Infosec in brief Protecting computers’ BIOS and the boot process is essential for modern security – but knowing it’s important isn’t the same as actually

Author rabih
26 Jul

CrowdStrike meets Murphy’s Law: Anything that can go wrong will

Opinion CrowdStrike’s recent Windows debacle will surely earn a prominent place in the annals of epic tech failures. On July 19, the cybersecurity giant accomplished

Author rabih
26 Jul

Progress discloses second critical flaw in Telerik Report Server in as many months

Progress Software’s latest security advisory warns customers about the second critical vulnerability targeting its Telerik Report Server in as many months. CVE-2024-6327 is an insecure

Author rabih
26 Jul

Telegram for Android hit by a zero-day exploit – Week in security with Tony Anscombe

Video Attackers abusing the “EvilVideo” vulnerability could share malicious Android payloads via Telegram channels, groups, and chats, all while making them appear as legitimate multimedia

Author rabih
26 Jul

North Korean chap charged for attacks on US hospitals, military, NASA – and even China

The US Department of Justice on Thursday charged a North Korean national over a series of ransomware attacks on stateside hospitals and healthcare providers, US

Author rabih
26 Jul

North Korean chap charged for attacks on US hospitals, miiltary, NASA – and even China

The US Department of Justice on Thursday charged a North Korean national over a series of ransomware attacks on stateside hospitals and healthcare providers, US

Author rabih
26 Jul

North Korean chap charged for attacks on US hospitals, NASA – and even China

The US Department of Justice on Thursday charged a North Korean national over a series of ransomware attacks on stateside hospitals and healthcare providers, US

Author rabih
26 Jul

Malware crew Stargazers Goblin used 3,000 GitHub accounts to make bank

Infosec researchers have discovered a network of over three thousand malicious GitHub accounts used to spread malware, targeting groups including gamers, malware researchers, and even

Author rabih
26 Jul

CrowdStrike update blunder may cost world billions – and insurance ain’t covering it all

The cost of CrowdStrike’s apocalyptic Falcon update that brought down millions of Windows computers last week may be in the billions of dollars, and insurance

Author rabih
25 Jul

Beware of fake CrowdStrike domains pumping out Lumma infostealing malware

CrowdStrike is the latest lure being used to trick Windows users into downloading and running the notorious Lumma infostealing malware, according to the security shop’s

Author rabih
25 Jul

FYI: Data from deleted GitHub repos may not actually be deleted

Researchers at Truffle Security have found, or arguably rediscovered, that data from deleted GitHub repositories (public or private) and from deleted copies (forks) of repositories

Author rabih
25 Jul

Uncle Sam accuses telco IT pro of decade-long spying campaign for China

The US is looking to prosecute a Chinese immigrant over claims he has been drip-feeding information of interest to Beijing since at least 2012. Ping

Author rabih
Load moreLoadingAll items loaded