The Register-Security.

"Probe finds US Coast Guard has left maritime cybersecurity adrift."

Views expressed in this cybersecurity, cyber crime, and security update are those of the reporters and correspondents.  Accessed on 12 February 2025, 0306 UTC.

Content and Source:  https://www.theregister.com.

Please check link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

 The Register – Security

93K followers32 articles per week

#security#tech

42

Today

Probe finds US Coast Guard has left maritime cybersecurity adrift

Impact (Enterprise TA0040)

•

by Jessica Lyons / 3h

•

Coast Guard finalizes maritime cybersecurity rule

Numerous systemic vulnerabilities could scuttle $5.4T industry Despite the escalating cyber threats targeting America's maritime transportation system, the US Coast Guard still lacks a comprehensive strategy to secure this critical infrastructure - nor does it have reliable access to data on cybersecurity vulnerabilities and past attacks, the Government Accountability Office (GAO) warns.…

Yup, AMD's Elba and Giglio definitely sound like they work corporate security

Cisco launches new smart switches

•

by Tobias Mann / 3h

Which is why Cisco is adding these Pensando DPUs to more switches Cisco is cramming into more of its switches Pensando data processing units (DPUs) from AMD, which will be dedicated to handling security, storage, and other tasks.…

'Key kernel maintainers' still back Rust in the Linux kernel, despite the doubters

Rust integration in Linux kernel clarified

•

by Thomas Claburn / 4h

Rustaceans could just wait for unwelcoming C coders to slowly SIGQUIT... The Rust for Linux project is alive and well, despite suggestions to the contrary, even if not every Linux kernel maintainer is an ally.…

Triplestrength hits victims with triple trouble: Ransomware, cloud hijacks, crypto-mining

21 TTPs

•

by Jessica Lyons / 6h

These crooks have no chill A previously unknown gang dubbed Triplestrength poses a triple threat to organizations: It infects victims' computers with ransomware, then hijacks their cloud accounts to illegally mine for cryptocurrency.…

UK, US, Oz blast holes in LockBit's bulletproof hosting provider Zservers

US UK Australia sanction Zservers

•

by Connor Jones / 8h

Huge if true: Brit Foreign Sec says Putin running a 'corrupt mafia state' One of the bulletproof hosting (BPH) providers used by the LockBit ransomware operation has been hit with sanctions in the US, UK, and Australia (AUKUS), along with six of its key allies.…

Man who SIM-swapped the SEC's X account pleads guilty

Eric Council Jr pleads guilty

•

by Connor Jones / 10h

Said to have asked search engine 'What are some signs that the FBI is after you?' An Alabama man is pleading guilty after being charged with SIM swapping the Securities and Exchange Commission's (SEC) X account in January last year.…

I'm a security expert, and I almost fell for a North Korea-style deepfake job applicant …Twice

by Jessica Lyons / 13h

Remote position, webcam not working, then glitchy AI face ... Red alert! Twice, over the past two months, Dawid Moczadło has interviewed purported job seekers only to discover that these "software developers" were scammers using AI-based tools — likely to get hired at a security company also using artificial intelligence, and then steal source code or other sensitive IP.…

Yesterday

Apple warns 'extremely sophisticated attack' may be targeting iThings

Apple fixes zero-day vulnerability

•

21by Iain Thomson / 1d

Cupertino mostly uses bland language when talking security, so this sounds nasty Apple has warned that some iPhones and iPads may have been targeted by an “extremely sophisticated attack” and has posted patches that hopefully prevent it.…

All your 8Base are belong to us: Ransomware crew busted in global sting

Police seize 8Base ransomware site

•

by Iain Thomson / 1d

Dark web site seized, four cuffed in Thailand updated An international police operation spanning the US, Europe, and Asia has shuttered the 8Base ransomware crew's dark web presence and resulted in the arrest of four European suspects accused of stealing $16 million from more than 1,000 victims worldwide.…

US news org still struggling to print papers a week after 'cybersecurity event'

by Connor Jones / 1d

Publications across 25 states either producing smaller issues or very delayed ones US newspaper publisher Lee Enterprises is one week into tackling a nondescript "cybersecurity event," saying the related investigation may take "weeks or longer" to complete.…

Feb 9, 2025

UK armed forces fast-tracking cyber warriors to defend digital front lines

UK military recruits cyber warriors

•

by Connor Jones / 1d

High starting salaries promised after public sector infosec pay criticized The UK's Ministry of Defence (MoD) is fast-tracking cybersecurity specialists in a bid to fortify its protection against increasing attacks.…

Judge says US Treasury ‘more vulnerable to hacking’ since Trump let the DOGE out

Trump criticizes judges blocking measures

•

by Simon Sharwood / 1d

Order requires destruction of departmental data accessed by Musky men Trump administration policies that allowed Elon Musk's Department of Government Efficiency to access systems and data at the Bureau of the Fiscal Service (BFS) have left the org “more vulnerable to hacking” according to federal Judge Paul A. Engelmayer in New York City.…

India's banking on the bank.in domain cleaning up its financial services sector

India introduces .bank.in domain

•

by Simon Sharwood / 1d

With over 2,000 banks in operation, a domain only they can use has potential to make life harder for fraudsters India’s Reserve Bank last week announced a plan to use adopt dedicated second-level domains – bank.in and fin.in – in the hope it improves trust in the financial services sector.…

DeepSeek's iOS app is a security nightmare, and that's before you consider its TikTok links

by Brandon Vigliarolo / 2d

PLUS: Spanish cops think they've bagged NATO hacker; HPE warns staff of data breach; Lazy Facebook phishing, and more! Infosec In Brief DeepSeek’s iOS app is a security nightmare that you should delete ASAP, according to researchers at mobile app infosec platform vendor NowSecure.…

Huawei revenue growing fast, suggesting China's scoffing at sanctions

by Simon Sharwood / 2d

PLUS: Japan shifts to pre-emptive cyber-defense; Thailand cuts cords connecting scam camps; China to launch 'moon hopper' in 2026; and more! Asia In Brief Huawei chair Liang Hua last week told a conference in China that the company expects to meet its revenue targets for 2024, meaning it earned around ¥860 billion ($118.25 billion) – 22 percent growth compared to its 2023 result.…

Feb 7, 2025

UK Home Office silent on alleged Apple backdoor order

27by Connor Jones / 4d

Blighty’s latest stab at encryption? A secret order to pry open iCloud, sources claim The UK's Home Office refuses to either confirm or deny reports that it recently ordered Apple to create a backdoor allowing the government to access any user's cloud data.…

UK industry leaders unleash hurricane-grade scale for cyberattacks

by Connor Jones / 4d

Freshly minted organization aims to take the guesswork out of incident severity for insurers and policy holders A world-first organization assembled to categorize the severity of cybersecurity incidents is up and running in the UK following a year-long incubation period.…

Feb 6, 2025

Apple missed screenshot-snooping malware in code that made it into the App Store, Kaspersky claims

7 TTPs

•

by Jessica Lyons / 4d

•

Malware targets crypto wallets using OCR

OCR plugin great for extracting crypto-wallet secrets from galleries Kaspersky eggheads say they’ve spotted the first app containing hidden optical character recognition spyware in Apple’s App Store. Cunningly, the software nasty is designed to steal cryptocurrency.…

If Ransomware Inc was a company, its 2024 results would be a horror show

Ransomware payments drop 35%

•

by Iain Thomson / 5d

35% drop in payments across the year as your backups got better and law enforcement made a difference Ransomware extortion payments fell in 2024, according to blockchain analyst biz Chainalysis this week.…

Coordinates of millions of smartphones feared stolen, sparking yet another lawsuit against data broker

by Thomas Claburn / 5d

Fourth time’s the harm? Gravy Analytics has been sued yet again for allegedly failing to safeguard its vast stores of personal data, which are now feared stolen. And by personal data we mean information including the locations of tens of millions of smartphones, coordinates of which were ultimately harvested from installed apps.…

Federal judge tightens DOGE leash over critical Treasury payment system access

Judge blocks Musk's DOGE Treasury access

•

100+by Brandon Vigliarolo and Jessica Lyons / 5d

Lawsuit: 'Scale of intrusion into individuals' privacy is massive and unprecedented' Updated Elon Musk's Department of Government Efficiency has had its access to US Treasury payment systems restricted - at least temporarily - following a lawsuit from advocacy groups and unions.…

Dems want answers on national security risks posed by hiring freeze, DOGE probes

Trump's hiring freeze raises concerns

•

by Brandon Vigliarolo / 5d

Are cybersecurity roles included? Are Elon's enforcers vetted? Inquiring minds want to know Updated Elected officials are demanding answers as to whether the Trump administration and Elon Musk's Department of Government Efficiency (DOGE) are hamstringing US national security.…