The Register - Anti-Virus
Malaysia is working on an internet 'kill switch', says minister
Legislation for an internet "kill switch" will reach Malaysia’s Parliament in October, according to the country's minister for Law and Institutional Reform.…
Meta's AI safety system defeated by the space bar
Meta's machine-learning model for detecting prompt injection attacks – special prompts to make neural networks behave inappropriately – is itself vulnerable to, you guessed it, prompt injection attacks.…
US border cops really must get a warrant in NY before searching your phones, devices
US border agents must obtain a warrant, in New York at least, to search anyone's phone and other electronic device when traveling in or out of the country, another federal judge has ruled.…
Intruders at HealthEquity rifled through storage, stole 4.3M people's data
HealthEquity, a US fintech firm for the healthcare sector, admits that a "data security event" it discovered at the end of June hit the data of a substantial 4.3 million individuals. Stolen details include addresses, telephone numbers and payment data.…
Google apologizes for breaking password manager for millions of Windows users with iffy Chrome update
Google celebrated Sysadmin Day last week by apologizing for breaking its password manager for millions of Windows users – just as many Windows admins were still hard at work mitigating the impact of the faulty CrowdStrike update.…
Post-CrowdStrike, Microsoft to discourage use of kernel drivers by security tools
Updated Microsoft has vowed to reduce cybersecurity vendors' reliance on kernel-mode code, which was at the heart of the CrowdStrike super-snafu this month.…
China ponders creating a national 'cyberspace ID'
Beijing may soon issue "cyberspace IDs" to its citizens, after floating a proposal for the scheme last Friday.…
Secure Boot useless on hundreds of PCs from major vendors after key leak
Infosec in brief Protecting computers' BIOS and the boot process is essential for modern security – but knowing it's important isn't the same as actually taking steps to do it.…
CrowdStrike meets Murphy's Law: Anything that can go wrong will
Opinion CrowdStrike's recent Windows debacle will surely earn a prominent place in the annals of epic tech failures. On July 19, the cybersecurity giant accomplished what legions of hackers could only dream of – bringing millions of Windows systems worldwide to their knees with a single botched update.…
Progress discloses second critical flaw in Telerik Report Server in as many months
Progress Software's latest security advisory warns customers about the second critical vulnerability targeting its Telerik Report Server in as many months.…
North Korean chap charged for attacks on US hospitals, military, NASA – and even China
The US Department of Justice on Thursday charged a North Korean national over a series of ransomware attacks on stateside hospitals and healthcare providers, US defense companies, NASA, and even a Chinese target.…
Malware crew Stargazers Goblin used 3,000 GitHub accounts to make bank
Infosec researchers have discovered a network of over three thousand malicious GitHub accounts used to spread malware, targeting groups including gamers, malware researchers, and even other threat actors who themselves seek to spread malware.…
CrowdStrike update blunder may cost world billions – and insurance ain't covering it all
The cost of CrowdStrike's apocalyptic Falcon update that brought down millions of Windows computers last week may be in the billions of dollars, and insurance isn't covering most of that.…
Beware of fake CrowdStrike domains pumping out Lumma infostealing malware
CrowdStrike is the latest lure being used to trick Windows users into downloading and running the notorious Lumma infostealing malware, according to the security shop's threat intel team, which spotted the scam just days after the Falcon sensor update fiasco.…
FYI: Data from deleted GitHub repos may not actually be deleted
Researchers at Truffle Security have found, or arguably rediscovered, that data from deleted GitHub repositories (public or private) and from deleted copies (forks) of repositories isn't necessarily deleted.…
Uncle Sam accuses telco IT pro of decade-long spying campaign for China
The US is looking to prosecute a Chinese immigrant over claims he has been drip-feeding information of interest to Beijing since at least 2012.…
You should probably fix this 5-year-old critical Docker vuln fairly sharpish
Docker is warning users to rev their Docker Engine into patch mode after it realized a near-maximum severity vulnerability had been sticking around for five years.…
Kaspersky says Uncle Sam snubbed proposal to open up its code for third-party review
Exclusive Despite the Feds' determination to ban Kaspersky's security software in the US, the Russian business continues to push its proposal to open up its data and products to independent third-party review – and prove to Uncle Sam that its code hasn't been and won't be compromised by Kremlin spies.…
Patch management still seemingly abysmal because no one wants the job
Comment Patching: The bane of every IT professional's existence. It's a thankless, laborious job that no one wants to do, goes unappreciated when it interrupts work, and yet it's more critical than ever in this modern threat landscape.…
How a cheap barcode scanner helped fix CrowdStrike'd Windows PCs in a flash
Not long after Windows PCs and servers at the Australian limb of audit and tax advisory Grant Thornton started BSODing last Friday, senior systems engineer Rob Woltz remembered a small but important fact: When PCs boot, they consider barcode scanners no differently to keyboards.…