The Register - Anti-Virus
Oracle coughs up $115M to make privacy case go away
Oracle has agreed to cough up $115 million to settle a two-year class action lawsuit that alleged misuse of user data.…
EU gave CrowdStrike the keys to the Windows kernel, claims Microsoft
Did the EU force Microsoft to let third parties like CrowdStrike run riot in the Windows kernel as a result of a 2009 undertaking? This is the implication being peddled by the Redmond-based cloud and software titan.…
Two Russians sanctioned over cyberattacks on US critical infrastructure
Flying under the radar on Clownstrike day last week, two members of the Cyber Army of Russia Reborn (CARR) hacktivist crew are the latest additions to the US sanctions list.…
Cellebrite got into Trump shooter's Samsung device in just 40 minutes
Infosec in brief Unable to access the Samsung smartphone of the deceased Trump shooter for clues, the FBI turned to a familiar – if controversial – source to achieve its goal: digital forensics tools vendor Cellebrite.…
CrowdStrike's Falcon Sensor also linked to Linux kernel panics and crashes
Updated CrowdStrike's now-infamous Falcon Sensor software, which last week led to widespread outages of Windows-powered computers, has also been linked to crashes of Linux machines.…
UK cops arrest teen suspect in MGM Resorts cyberattack probe
Cops in the UK have arrested a suspected member of the notorious Scattered Spider crime gang, which is accused of crippling MGM Resorts in Las Vegas with ransomware last summer.…
CrowdStrike Windows patchpocalypse could take weeks to fix, IT admins fear
Kettle If you're an IT administrator with Windows boxes on your network, Friday can't have been a lot of fun. What's likely millions of systems were or still are stuck in blue-screen boot loop hell, mostly requiring manual intervention to fix.…
CrowdStrike file update bricks Windows machines around the world
Updated An update to a product from infosec vendor CrowdStrike is bricking computers running Windows globally.…
North Korea likely behind takedown of Indian crypto exchange WazirX
Indian crypto exchange WazirX has revealed it lost virtual assets valued at over $230 million after a cyber attack that has since been linked to North Korea.…
Beijing's attack gang Volt Typhoon was a false flag inside job conspiracy: China
China has wildly claimed the Volt Typhoon gang, which Five Eyes nations accuse of being a Beijing-backed attacker that targets critical infrastructure, was in fact made up by the US intelligence community.…
Judge mostly drags SEC's lawsuit against SolarWinds into the recycling bin
A judge has mostly thrown out a lawsuit brought by America's financial watchdog that accused SolarWinds and its chief infosec officer of misleading investors about its computer security practices and the backdooring of its Orion product.…
Kaspersky challenges US government to put up or shut up about Kremlin ties
Kaspersky has hit back after the US government banned its products – by proposing an independent verification that its software is above board and not backdoored by the Kremlin.…
Russia’s FIN7 is peddling its EDR-nerfing malware to ransomware gangs
Prolific Russian cybercrime syndicate FIN7 is using various pseudonyms to sell its custom security solution-disabling malware to different ransomware gangs.…
Maximum-severity Cisco vulnerability allows attackers to change admin passwords
Cisco just dropped a patch for a maximum-severity vulnerability that allows attackers to change the password of any user, including admins.…
Firms skip security reviews of major app updates about half the time
Updated Cybersecurity workers review major updates to software applications only 54 percent of the time, according to a poll of tech managers.…
Release the hounds! Securing datacenters may soon need sniffer dogs
Sniffer dogs may soon become a useful means of improving physical security in datacenters, as increasing numbers of people are adopting implants like NFC chips that have the potential to enable novel attacks on access control tools.…
Merged Exabeam and LogRhythm cut jobs, face lawsuit
Exabeam and LogRhythm – a pair of cyber security firms – finalized their merger on Wednesday, an occasion The Register understands was marked by swift job cuts and shareholder action to investigate the transaction.…
Kaspersky gives US customers six months of free updates as a parting gift
Updated Embattled Russian infosec shop Kaspersky is giving US customers six months of security updates for free as a parting gift as Uncle Sam kicks the antivirus maker out of the American market.…
Ransomware continues to pile on costs for critical infrastructure victims
Costs associated with ransomware attacks on critical national infrastructure (CNI) organizations skyrocketed in the past year.…