"Ex-NSA grandee says Trump's staff cuts will 'devastate' America's national security."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 07 March 2025, 1505 UTC.

Content and Source:  Email subscription via https://feedly.com.

 https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fwww.theregister.co.uk%2Fsecurity%2Fheadlines.atom

Please scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

The Register – Security

94K followers29 articles per week

#security#tech

26

Most popular

Ex-NSA grandee says Trump's staff cuts will 'devastate' America's national security

NSA official warns of cybersecurity cuts

•

200+by Iain Thomson / 1d

Would 'destroy a pipeline of top talent essential for hunting' Chinese spies in US networks, Congress told Video Looming staffing cuts to America's security and intelligence agencies, if carried out, would "have a devastating effect on cybersecurity and our national security," former NSA bigwig Rob Joyce has told House representatives.…

So … Russia no longer a cyber threat to America?

US downgrades Russia cyber threat

•

100+by Jessica Lyons / 3d

Mixed messages from Pentagon, CISA as Trump gets pally with Putin and Kremlin strikes US critical networks Comment America's cybersecurity chiefs in recent days have been sending mixed messages about the threat posed by Russia in the digital world.…

Like whitebox servers, rent-a-crew crime 'affiliates' have commoditized ransomware

by Jessica Lyons / 3h

Which is why taking down chiefs and infra behind big name brand operations isn't working Interview There's a handful of cybercriminal gangs that Jason Baker, a ransomware negotiator with GuidePoint Security, regularly gets called in to respond to these days, and a year ago only one of these crews — Akira — was on threat hunters' radars and infecting organizations with the same ferocity as it is t

Yesterday

The Badbox botnet is back, powered by up to a million backdoored Androids

Badbox 2.0 infects million Android devices

•

by Iain Thomson / 13h

Best not to buy cheap hardware and use third-party app stores if you want to stay clear of this vast ad fraud effort Human Security’s Satori research team says it has found a new variant of the remote-controllable Badbox malware, and as many as a million infected Android devices running it to form a massive botnet.…

International cops seize ransomware crooks' favorite Russian crypto exchange

by Jessica Lyons / 16h

Did US Secret Service not get the memo, or? A coalition of international law enforcement has shut down Russian cryptocurrency exchange Garantex, a favorite of now-defunct ransomware crew Conti and others criminals for money laundering.…

Uncle Sam mulls policing social media of all would-be citizens

35by Iain Thomson / 18h

President ordered immigration officials to ramp up vetting of foreigners 'to the maximum degree' The US government's Citizenship and Immigration Service (USCIS) is considering monitoring not just the social media posts of non-citizens coming into the country, but also all those already in America going through an immigration or citizenship process.…

Toronto Zoo ransomware crooks snatch decades of visitor data

2 TTPs

•

by Connor Jones / 23h

Akira really wasn't horsing around with this one Toronto Zoo's final update on its January 2024 cyberattack arrived this week, revealing that visitor data going back to 2000 had been compromised.…

Up to $75M needed to fix up rural hospital cybersecurity as ransomware gangs keep scratching at the door

by Connor Jones / 1d

Attacks strike, facilities go bust, patients die. But it's preventable It will cost upward of $75 million to address the cybersecurity needs of rural US hospitals, Microsoft reckons, as mounting closures threaten the lives of Americans.…

Mar 5, 2025

Cybereason CEO leaves after months of boardroom blowups

Cybereason CEO resigns amid turmoil

•

by Iain Thomson / 1d

Complaint alleges 13 funding proposals foundered amid battle for control Eric Gan is no longer CEO of AI security biz Cybereason after what appears to have been a protracted and unpleasant fight with investors, including the SoftBank Vision Fund and Liberty Strategic Capital.…

Feds name and charge alleged Silk Typhoon spies behind years of China-on-US attacks

Silk Typhoon spies charged by Feds

•

by Jessica Lyons / 1d

Xi's freelance infosec warriors apparently paid up to $75K to crack a single American inbox US government agencies announced Wednesday criminal charges against alleged members of China's Silk Typhoon gang, plus internet domain seizures linked to a long-term Chinese espionage campaign that saw Beijing hire miscreants to compromise US government agencies and other major orgs.…

China's Silk Typhoon, tied to US Treasury break-in, now hammers IT and govt targets

3 TTPs

•

by Jessica Lyons / 1d

They're good at zero-day exploits, too Updated Silk Typhoon, the Chinese government crew believed to be behind the December US Treasury intrusions, has been abusing stolen API keys and cloud credentials in ongoing attacks targeting IT companies and state and local government agencies since late 2024, according to Microsoft Threat Intelligence.…

Apple drags UK government to court over 'backdoor' order

37by Connor Jones / 2d

A first-of-its-kind legal challenge set to be heard this month, per reports Updated Apple has reportedly filed a legal complaint with the UK's Investigatory Powers Tribunal (IPT) contesting the British government's order that it must forcibly break the encryption of iCloud data.…

Leeds United kick card swipers into Row Z after 5-day cyberattack

6 TTPs

•

by Connor Jones / 2d

English football club offers apologies after fans' card details stolen from online retail store English football club Leeds United says cyber criminals targeted its retail website during a five-day assault in February and stole the card details of "a small number of customers." …

Qilin ransomware gang boasts of cyberattacks on cancer clinic, Ob-Gyn facility

2 TTPs

•

by Connor Jones / 2d

•

Utsunomiya Central Clinic hit by ransomware

'No regrets' crew continues extorting victims, leaking highly sensitive data Qilin – the "no regrets" ransomware crew wreaking havoc on the global healthcare industry – just claimed responsibility for fresh attacks on a cancer treatment clinic in Japan and a women's healthcare facility in the US.…

Mar 4, 2025

How prevention is better than cure

by David Gordon / 2d

Stop cyberattacks before they happen with preventative endpoint security Sponsored Post Every organization is vulnerable to cyber threats, and endpoint devices are a common target for cyber criminals.…

Ransomware thugs threaten Tata Technologies with leak if demands not met

2 TTPs

•

by Iain Thomson / 2d

•

Tata Technologies suffers data breach

Hunters International ready to off-shore 1.4 TB of info allegedly swiped from Indian giant A subsidiary of Indian multinational Tata has allegedly fallen victim to the notorious ransomware gang Hunters International.…

VMware splats guest-to-hypervisor escape bugs already exploited in wild

Execution (Enterprise TA0002)

•

by Jessica Lyons / 2d

The heap overflow zero-day in the memory unsafe code by Miss Creant Broadcom today pushed out patches for three VMware hypervisor-hijacking bugs, including one rated critical, that have already been found and exploited by criminals.…

How Google tracks Android device users before they've even opened an app

35by Connor Jones / 3d

No warning, no opt-out, and critic claims ... no consent Research from a leading academic shows Android users have advertising cookies and other gizmos working to build profiles on them even before they open their first app.…

Mar 3, 2025

It's bad enough we have to turn on cams for meetings, now the person staring at you may be an AI deepfake

by Brandon Vigliarolo / 3d

Says the biz trying to sell us stuff to catch that, admittedly High-profile deepfake scams that were reported here at The Register and elsewhere last year may just be the tip of the iceberg. Attacks relying on spoofed faces in online meetings surged by 300 percent in 2024, it is claimed.…

Plugging the holes in open banking

by Mohan Veloo, Field CTO, APCJ, F5 / 3d

Enhancing API security for financial institutions Partner Content Open banking has revolutionized financial services, empowering consumers to share their financial data with third-party providers, including fintech innovators.…

Cybersecurity not the hiring-'em-like-hotcakes role it once was

by Iain Thomson / 3d

Ghost positions, HR AI no help – biz should talk to infosec staff and create 'realistic' job outline, say experts Analysis It's a familiar refrain in the security industry that there is a massive skills gap in the sector. And while it's true there are specific shortages in certain areas, some industry watchers believe we may be reaching the point of oversupply for generalists.…

Microsoft unveils finalized EU Data Boundary as European doubt over US grows

by Richard Speed / 4d

Some may have second thoughts about going all-in with an American vendor, no matter where their data is stored Microsoft has completed its EU data boundary, however, analysts and some regional cloud players are voicing concerns over dependencies on a US entity, even with the guarantees in place.…

Polish space agency confirms cyberattack

Cyberattack on Polish Space Agency

•

by Connor Jones / 4d

Officials vow to uncover who was behind it The Polish Space Agency (POLSA) is currently dealing with a "cybersecurity incident," it confirmed via its X account on Sunday.…

UK watchdog investigates TikTok and Reddit over child data privacy concerns

by Lindsay Clark / 4d

ICO looking at what data is used to serve up recommendations The UK's data protection watchdog has launched three investigations into certain social media platforms following concerns about the protection of privacy among teenage users.…

Mar 2, 2025

Governments can't seem to stop asking for secret backdoors

44by Rupert Goodwins / 4d

Cut off one head and 100 grow back? Decapitation may not be the way to go Opinion With Apple pulling the plug on at-rest end-to-end encryption (E2EE) for UK users, and Signal threatening to pull out of Sweden if that government demands E2EE backdoors, it's looking bleak.…

US Cyber Command reportedly pauses cyberattacks on Russia

9 TTPs

•

92by Iain Thomson / 4d

PLUS: Phishing suspects used fishing gear as alibi; Apple's 'Find My' can track PCs and Androids; and more Infosec In Brief US Defense Secretary Pete Hegseth has reportedly ordered US Cyber Command to pause offensive operations against Russia – as the USA’s Cybersecurity and Infrastructure Security Agency (CISA) has denied any change in its posture.…

End of feed