Thursday, May 19, 2022

US federal alert warns of the discovery of malicious cyber tools

Cybersecurity officials said the evidence suggests Russia is behind the tools – configured to target North American energy concernsMultiple US government agencies issued a joint alert Wednesday warning of the discovery of malicious cyber tools created by unnamed advanced...

Home Office’s visa service apologises for email address data breach

Private contractor running UKVCAS sent email to visa applicants with over 170 email addresses copiedThe Home Office’s visa service has apologised for a data breach in which the email addresses of more than 170 people were mistakenly copied into...

Not using a password manager? Here’s why you should be…

Experts recommend password managers for convenience and enhanced online safety, yet few of us use themIn a competitive field, passwords are one of the worst things about the internet. Long and complex passwords are more secure but difficult to...

How the tech community has rallied to Ukraine’s cyber-defence | Joyce Hakmeh and Esther Naylor

From an army of volunteers to EU and Nato teams, the variety of online actors working for the cause is unprecedentedAs the conflict in Ukraine escalates, expert cyber-watchers have been speculating about the kind of cyber-attacks that Russia might...

Russia unleashed data-wiper virus on Ukraine, say cyber experts

UK government and banks on alert for new form of malware said to have infected hundreds of machinesRussia-Ukraine crisis: live newsCyber experts have identified a new strain of computer-disabling malware unleashed on Ukrainian targets as part of Russia’s offensive,...

Police use of Pegasus malware not illegal, Israeli inquiry finds

Police have been accused of spying on at least 26 individuals who are not criminal suspectsAn inquiry into allegations that Israel’s police force systematically hacked into the mobile phones of Israeli citizens has found that while the police did...

Russian ransomware attacks ‘increased during 2021’, joint review finds

Britain, the US and Australia point to growth in ‘sophisticated, high-impact ransomware incidents’ There have been further increases in “sophisticated, high-impact ransomware incidents” coming from Russia and other former Soviet states during 2021, Britain, the US and Australia said...

How the growing Russian ransomware threat is costing companies dear

With KP Snacks the latest cyber-attack victim, firms must learn to defend themselves against a mounting menaceThe January snow lay thick on the Moscow ground, as masked officers of the FSB – Russia’s fearsome security agency – prepared to...

Cyber attack on UK’s Defence Academy caused ‘significant’ damage

Former senior officer says unsolved hack of MoD training school systems did not succeed but still had costsA cyber-attack on the UK’s Defence Academy caused “significant” damage, a retired high-ranking officer has revealed.Air Marshal Edward Stringer, who left the...

Polish opposition says government use of spyware is ‘crisis for democracy’

Opposition leader Donald Tusk calls for inquiry after watchdog says rivals were targeted by Pegasus spywarePolish opposition leader Donald Tusk said on Tuesday reports that the government spied on its opponents represented the country’s biggest “crisis for democracy” since...

UN-backed investigator into possible Yemen war crimes targeted by spyware

Analysis of Kamel Jendoubi’s mobile phone reveals he was targeted in August 2019The mobile phone of a UN-backed investigator who was examining possible war crimes in Yemen was targeted with spyware made by Israel’s NSO Group, a new forensic...

How cut-and-pasted programming is putting the internet and society at risk | John Naughton

A vulnerability has been exposed in Minecraft, the bestselling video game of all time – and the security implications outside the world of gaming are vastIn one of those delicious coincidences that warm the cockles of every tech columnist’s...

The new PPI? Claims firms turn their fire on data breaches

People are being told they are entitled to compensation as more companies move into the industryClaims companies and law firms looking for the next bonanza in payouts are targeting people who have been the victim of a data breach,...

NSO Group spyware used to hack at least nine US officials’ phones – report

Revelation comes just weeks after the Biden administration placed NSO on a US blacklistThe iPhones of at least nine US state department officials were recently hacked by a government using NSO Group spyware, according to a new report that...

Cabinet Office fined £500,000 over New Year honours list data breach

Regulator says safety of hundreds of individuals was jeopardised after their addresses were posted onlineThe Cabinet Office has been fined £500,000 by the UK’s data watchdog after the postal addresses of the 2020 New Year honours recipients were disclosed...
The Hacker News

New Bluetooth Hack Could Let Attackers Remotely Unlock Smart Locks and Cars

A novel Bluetooth relay attack can let cybercriminals more easily than ever remotely unlock and operate cars, break open residential smart locks, and breach secure areas. The vulnerability has to do with weaknesses in the current implementation of Bluetooth Low Energy (BLE),...
SecurityWeek

Phishers Add Chatbot to the Phishing Lure

Researchers have discovered a new approach being taken by phishers to increase victim engagement and confidence: the addition of an interactive chatbot. We have all become accustomed to the chatbots used by many of the largest service providers –...
SecurityWeek

QuSecure Lauches Quantum-Resilient Encryption Platform

New firm launches to provide the Easy Button for implementing quantum secure encryption The pressure to implement quantum secure encryption is increasing. This isn’t because functioning quantum computers able to crack asymmetric encryption are expected tomorrow, but because of the...
The Register

Iran, China-linked gangs join Putin’s disinformation war online

They're using the invasion 'to take aim at the usual adversaries,' Mandiant told The Reg Pro-Beijing and Iran miscreants are using the war in Ukraine to spread disinformation that supports these countries' political interests — namely, advancing anti-Western narratives...
ZDNet

Cyberattacks and misinformation activity against Ukraine continues say security researchers

Malware and fake news continues, says Mandiant.