The Register - Anti-Virus

Syndikovat obsah
Biting the hand that feeds IT — Enterprise Technology News and Analysis
Aktualizace: 27 min 30 sek zpět

AI hallucinates software packages and devs download them – even if potentially poisoned with malware

56 min 59 sek zpět
Simply look out for libraries imagined by ML and make them real, with actual malicious code. No wait, don't do that

In-depth  Several big businesses have published source code that incorporates a software package previously hallucinated by generative AI.…

Kategorie: Viry a Červi

Execs in Japan busted for winning dev bids then outsourcing to North Koreans

1 hodina 27 min zpět
Government issues stern warning over despot money-making scheme

Two executives were issued arrest warrants in Japan on Wednesday, reportedly for charges related to establishing a business that outsourced work to North Korean IT engineers.…

Kategorie: Viry a Červi

China encouraged armed offensive against Myanmar government to protest proliferation of online scams

3 hodiny 30 min zpět
Report claims Beijing is most displaced by junta's failure to address slave labor scam settlements

The military junta controlling Myanmar has struggled to control all of its territory thanks in part to China backing rebel forces as a way of expressing its displeasure about cyberscam centers operating from the country.…

Kategorie: Viry a Červi

Apple fans deluged with phony password reset requests

27 Březen, 2024 - 23:06
Beware support calls offering a fix

Apple device owners, consider yourselves warned: a targeted multi-factor authentication bombing campaign is under way, with the goal of exhausting iUsers into allowing an unwanted password reset.…

Kategorie: Viry a Červi

Majority of Americans now use ad blockers

27 Březen, 2024 - 22:26
We're dreaming of a white list, because we're just like the ones you used to know

More than half of Americans are using ad blocking software, and among advertising, programming, and security professionals that fraction is more like two-thirds to three-quarters.…

Kategorie: Viry a Červi

'Thousands' of businesses at mercy of miscreants thanks to unpatched Ray AI flaw

27 Březen, 2024 - 21:40
Anyscale claims issue is 'long-standing design decision' – as users are raided by intruders

Thousands of companies remain vulnerable to a remote-code-execution bug in Ray, an open-source AI framework used by Amazon, OpenAI, and others, that is being abused by miscreants in the wild to steal sensitive data and illicitly mine for cryptocurrency.…

Kategorie: Viry a Červi

Meta accused of snarfing people's Snapchat data via traffic decryption

27 Březen, 2024 - 16:30
I ain't afraid of no ghosts, but in this case...

To spy on rival Snapchat and get data on how the app was being used, Meta – when it was operating as Facebook – allegedly initiated a program called Project Ghostbusters, which intercepted data traffic from mobile apps. And it used that data to harm its competitors' ad business.…

Kategorie: Viry a Červi

Miscreants are exploiting enterprise tech zero days more and more, Google warns

27 Březen, 2024 - 15:00
Crooks know where the big bucks are

The discovery and exploitation of zero-day vulnerabilities in enterprise-specific software and appliances appears to be outpacing the leveraging of zero-day bugs overall, judging by Google's latest research.…

Kategorie: Viry a Červi

Street newspaper appears to have Big Issue with Qilin ransomware gang

27 Březen, 2024 - 12:00
The days of cybercriminals having something of a moral compass are over

The parent company of The Big Issue, a street newspaper and social enterprise for homeless people, is wrestling with a cybersecurity incident claimed by the Qilin ransomware gang.…

Kategorie: Viry a Červi

The easy road to pervasive DLP

27 Březen, 2024 - 04:16
How Forcepoint Data Security Everywhere does what it says on the tin

Sponsored Post  The coronavirus pandemic appears to have changed the employment landscape forever, with estimates suggesting that up to a quarter of staff still spend some of their working week outside of the office compared to just 6 percent prior to 2020.…

Kategorie: Viry a Červi

Uncle Sam's had it up to here with 'unforgivable' SQL injection flaws

26 Březen, 2024 - 17:45
Software slackers urged to up their game

The US has clearly had enough of software vendors shipping products with "unforgivable" vulnerabilities, and is now urging them to launch formal code reviews to stamp out SQL injection flaws.…

Kategorie: Viry a Červi

Ransomware can mean life or death at hospitals, but DEF CON hackers have a plan

26 Březen, 2024 - 14:15
ARPA-H joins the challenge, adds $20M to cash rewards

Interview  As ransomware gangs target critical infrastructure – especially hospitals and other healthcare organizations – DARPA has added another government agency partner to its Artificial Intelligence Cyber Challenge (AIxCC).…

Kategorie: Viry a Červi

FreeBSD Foundation hands out Beacon gongs for safer software

26 Březen, 2024 - 11:15
Multiple CHERI-related projects win money for important research that prizes safety over speed

The inaugural Beacon Awards has handed three prizes to projects working on safer software for CHERI-enabled hardware running on the CheriBSD operating system.…

Kategorie: Viry a Červi

UK elections are unaffected by China's cyber-interference, says deputy PM

26 Březen, 2024 - 10:30
Sanctions galore for APT31, which has been blamed for two major attacks on democracy

The UK's deputy prime minister, Oliver Dowden, says China has been unsuccessful in its attempts to undermine UK elections.…

Kategorie: Viry a Červi

Row breaks out over true severity of two DNSSEC flaws

26 Březen, 2024 - 09:24
Some of us would be happy being rated 7.5 out of 10, just sayin'

Updated  Two DNSSEC vulnerabilities were disclosed last month with similar descriptions and the same severity score, but they are not the same issue.…

Kategorie: Viry a Červi

New Zealand to world: China attacked us, too!

26 Březen, 2024 - 04:30
Reveals 2021 incident that saw parliamentary agencies briefly probed

The government of South Pacific island nation New Zealand has revealed that it, too, has been attacked by China.…

Kategorie: Viry a Červi

US charges Chinese nationals with cyber-spying on pretty much everyone for Beijing

25 Březen, 2024 - 23:15
Plus: Alleged front sanctioned, UK blames PRC for Electoral Commission theft, and does America need a Cyber Force?

The United States on Monday accused seven Chinese men of breaking into computer networks, email accounts, and cloud storage belonging to numerous critical infrastructure organizations, companies, and individuals, including US businesses, politicians, and their political parties.…

Kategorie: Viry a Červi

Over 170K users caught up in poisoned Python package ruse

25 Březen, 2024 - 19:00
Supply chain attack targeted GitHub community of Top.gg Discord server

More than 170,000 users are said to have been affected by an attack using fake Python infrastructure with "successful exploitation of multiple victims."…

Kategorie: Viry a Červi

Tech trade union confirms cyberattack behind IT, email outage

25 Březen, 2024 - 16:31
Systems have been pulled offline as a precaution

Exclusive  The Communications Workers Union (CWU), which represents hundreds of thousands of employees in sectors across the UK economy including tech and telecoms, is currently working to mitigate a cyberattack.…

Kategorie: Viry a Červi

Mozilla fixes $100,000 Firefox zero-days following two-day hackathon

25 Březen, 2024 - 16:00
Users may have to upgrade twice to protect their browsers

Mozilla has swiftly patched a pair of critical Firefox zero-days after a researcher debuted them at a Vancouver cybersec competition.…

Kategorie: Viry a Červi