<!doctype html> <html lang="en"> <head> <meta content="text/html; charset=utf-8" http-equiv="Content-Type"> <meta name="Googlebot-News" content="noindex"> <title>CSO News • The Register</title> <meta name="robots" content="max-snippet:-1, max-image-preview:standard, max-video-preview:0"> <meta name="viewport" content="initial-scale=1.0, width=device-width"/> <meta name="description" content="Latest news for chief security officers"> <script> var RegZoot = { }; var RegCC = [ ]; var RegPageType = 'Section'; var RegTruePageType = 'www section'; var RegEagleType = 'RT-2FLite'; var RegBirds = ["eagle","falcon","hawk"]; </script> <link rel="canonical" href="https://www.theregister.com/security/cso/"> <script src="/Design/javascript/html5shiv.min.js"></script> <script> // IE8 only polyfilly for eventListener // source: https://developer.mozilla.org/en-US/docs/Web/API/EventTarget/addEventListener#Compatibility !function(){if(Event.prototype.preventDefault||(Event.prototype.preventDefault=function(){this.returnValue=!1}),Event.prototype.stopPropagation||(Event.prototype.stopPropagation=function(){this.cancelBubble=!0}),!Element.prototype.addEventListener){var e=[],t=function(t,n){var o=this,r=function(e){e.target=e.srcElement,e.currentTarget=o,void 0!==n.handleEvent?n.handleEvent(e):n.call(o,e)};if("DOMContentLoaded"==t){var a=function(e){"complete"==document.readyState&&r(e)};if(document.attachEvent("onreadystatechange",a),e.push({object:this,type:t,listener:n,wrapper:a}),"complete"==document.readyState){var p=new Event;p.srcElement=window,a(p)}}else this.attachEvent("on"+t,r),e.push({object:this,type:t,listener:n,wrapper:r})},n=function(t,n){for(var o=0;o<e.length;){var r=e[o];if(r.object==this&&r.type==t&&r.listener==n){"DOMContentLoaded"==t?this.detachEvent("onreadystatechange",r.wrapper):this.detachEvent("on"+t,r.wrapper),e.splice(o,1);break}++o}};Element.prototype.addEventListener=t,Element.prototype.removeEventListener=n,HTMLDocument&&(HTMLDocument.prototype.addEventListener=t,HTMLDocument.prototype.removeEventListener=n),Window&&(Window.prototype.addEventListener=t,Window.prototype.removeEventListener=n)}}(); document.attachEvent("onreadystatechange", function() { if (document.readyState === "complete") { // list of icons we want <= IE8 to replace with their png equivalents var svg_icons_png_equiv = [ // masthead icons (twitter + facebook are also shared for footer): 'reg_logo.svg', 'twitter.svg', 'facebook.svg', 'linkedin.svg', // navigation bar icons: 'vulture.svg', 'vulture_white.svg', 'search.svg', 'search_white.svg', // footer icons: 'sitpub_footer.svg', 'linkedin_white.svg', 'rss.svg', // lectures section icons: 'reglecture_logo.svg', // story template icons: 'reddit.svg', 'linkedin_alt.svg', 'linkedin.svg', 'calendar.svg', 'location.svg', 'rect_comment_bubble_white.svg', 'rect_comment_bubble_black.svg', 'envelope.svg', 'polls_unit_arrow.svg' ]; for (i = 0; i <= svg_icons_png_equiv.length - 1; i++) { var svg_icon = svg_icons_png_equiv[i]; var img_svg_icons = $('img[src$="' + svg_icon + '"]'); img_svg_icons.each(function() { $(this).attr('src', $(this).attr('src').replace('.svg','.png')); }); } var ad_params = { src: 'https://regmedia.co.uk/2018/06/15/gg2b_book.png', href: 'https://forms.theregister.com/gg2b/?td=iaomwtkie78' }; bird_alternative('ad_wp_top', ad_params); } }); </script> <link rel=stylesheet type="text/css" href="/css/e5c206ed408f082870465a2c478e657ff0db3937/scaffolding.css"> <link rel=stylesheet type="text/css" href="/css/e5c206ed408f082870465a2c478e657ff0db3937/design.css"> <style> #nav-security, #nav-security-cso { text-decoration: underline !important; } </style> <link rel=stylesheet type="text/css" href="/css/e5c206ed408f082870465a2c478e657ff0db3937/rows_basic.css"> <link rel=alternate type="application/atom+xml" href="/headlines.atom" title="The Register: whole site"> <link rel=alternate type="application/atom+xml" href="/security/cso/headlines.atom" title="The Register: CSO section"> <script> var RegCR = false; </script> <script src="/design_picker/14513432720673f1c1ee02761ba265b674b7bee1/javascript/_.js"></script> <script> RegGPT('reg_security/cso','0df13fad2ea597c71ae99fa84c3f976d','0df13fad2ea597c71ae99fa84c3f976d'); </script> <script async src="https://www.googletagmanager.com/gtag/js"></script> <link rel=search href="https://search.theregister.com/"> <link rel=search type="application/opensearchdescription+xml" title="El Reg Search" href="/Design/page/search.osd"> <link rel="icon" href="/design_picker/13249a2e80709c7ff2e57dd3d49801cd534f2094/graphics/favicons/favicon.ico" sizes="any"><!-- 32×32 --> <link rel="icon" href="/design_picker/13249a2e80709c7ff2e57dd3d49801cd534f2094/graphics/favicons/favicon.svg" type="image/svg+xml"> <link rel="apple-touch-icon" href="/design_picker/13249a2e80709c7ff2e57dd3d49801cd534f2094/graphics/favicons/apple-touch-icon.png"><!-- 180×180 --> <link rel="manifest" href="/design_picker/13249a2e80709c7ff2e57dd3d49801cd534f2094/graphics/favicons/site.webmanifest"> <meta name="msapplication-TileColor" content="#ff0000"> <meta name="msapplication-config" content="/design_picker/13249a2e80709c7ff2e57dd3d49801cd534f2094/graphics/favicons/browserconfig.xml"> <meta name="theme-color" content="#ff0000"> <script src="/Design/javascript/respond.min.js"></script> </head> <body class="fullwidth" data-pagetype='Section' data-iebrowser='7'> <div id="page"> <div data-oop="1" data-pos="top" data-raptor="kite" aria-hidden="true" class="adun"></div> <div id="masthead"> <div class="los_amigos"> <div class="left_nav"> <a id="mob_user_link" href="https://account.theregister.com/register/" aria-label="Your Account"> <img class="account_icon" width="16" height="16" src="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/std/user_icon_white_extents_16x16.png" srcset="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/std/user_icon_white_extents.svg" alt=""> <img class="filled_icon" width="16" height="16" src="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/std/user_icon_white_filled_extents_16x16.png" srcset="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/std/user_icon_filled_white_extents.svg" alt=""> <span id="mob_user_text"><span>Sign in / up</span></span> </a> </div> <div class="center_nav"> <a href="https://www.theregister.com/" id="logo"> <img src="/design_picker/fa16d26efb42e6ba1052f1d387470f643c5aa18d/graphics/std/reg_logo_no_strapline.png" srcset="/design_picker/fa16d26efb42e6ba1052f1d387470f643c5aa18d/graphics/std/reg_logo_no_strapline.svg" width="190" height="35" alt="The Register® — Biting the hand that feeds IT"> </a> </div> <div class="right_nav"> <a href="https://search.theregister.com/" class="nav_search topnav_elem" data-name="Search" aria-label="Search"> <img width="16" height="16" src="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/std/magnifying_glass_white_extents_16x16.png" srcset="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/std/magnifying_glass_white_extents.svg" alt=""> </a> <div id="site_nav_mobile"> <noscript><div id="site_nav_mobile_hiding_stamp"></div></noscript> <button id="mobile_menu_toggle" aria-label="Open menu" type="button"> <img width="16" height="16" src="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/icon/burger_menu_white_16x16.png" srcset="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/icon/burger_menu_white_extents.svg" alt=""> <img width="16" height="16" src="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/icon/burger_menu_white_close_16x16.png" srcset="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/icon/burger_menu_white_close_extents.svg" alt=""> </button> </div> </div> </div> <div id="top_panel_wrapper"> <div id="top_panel"> <div class="block_section nav"> <div class="nav_col first_col"> <div class="nav_top_group"> <div class="nav_topics"> <div class="nav_head_bk"> <h2 class="main_head">Topics</h2> </div> <div> <nav> <div class="nav_elem"> <div class="cat_header"> <div id="nav-security"> <a href="#subnav-box-nav-security" data-toggle-for="subnav-box-nav-security" class="topnav_elem mob_only">Security</a> <h2 class="desk_only section_nav-security"> <a href="#subnav-box-nav-security" data-toggle-for="subnav-box-nav-security" class="topnav_elem desk_only">Security</a> </h2> </div> </div><div id="subnav-box-nav-security" class="subnav_box"><a href="https://www.theregister.com/security/" class="subnav_elem" id="nav-security-all"><span class="prefix_all">All </span>Security</a><a href="https://www.theregister.com/security/cyber_crime/" class="subnav_elem" id="nav-security-cyber_crime">Cyber-crime</a><a href="https://www.theregister.com/security/patches/" class="subnav_elem" id="nav-security-patches">Patches</a><a href="https://www.theregister.com/security/research/" class="subnav_elem" id="nav-security-research">Research</a><a href="https://www.theregister.com/security/cso/" class="subnav_elem" id="nav-security-cso">CSO</a> <noscript><a href="#masthead" class="subnav_elem close_box" aria-label="Top navigation">(X)</a></noscript> </div> </div><div class="nav_elem"> <div class="cat_header"> <div id="nav-off_prem"> <a href="#subnav-box-nav-off_prem" data-toggle-for="subnav-box-nav-off_prem" class="topnav_elem mob_only">Off-Prem</a> <h2 class="desk_only section_nav-off_prem"> <a href="#subnav-box-nav-off_prem" data-toggle-for="subnav-box-nav-off_prem" class="topnav_elem desk_only">Off-Prem</a> </h2> </div> </div><div id="subnav-box-nav-off_prem" class="subnav_box"><a href="https://www.theregister.com/off_prem/" class="subnav_elem" id="nav-off_prem-all"><span class="prefix_all">All </span>Off-Prem</a><a href="https://www.theregister.com/off_prem/edge_iot/" class="subnav_elem" id="nav-off_prem-edge_iot">Edge + IoT</a><a href="https://www.theregister.com/off_prem/channel/" class="subnav_elem" id="nav-off_prem-channel">Channel</a><a href="https://www.theregister.com/off_prem/paas_iaas/" class="subnav_elem" id="nav-off_prem-paas_iaas">PaaS + IaaS</a><a href="https://www.theregister.com/off_prem/saas/" class="subnav_elem" id="nav-off_prem-saas">SaaS</a> <noscript><a href="#masthead" class="subnav_elem close_box" aria-label="Top navigation">(X)</a></noscript> </div> </div><div class="nav_elem"> <div class="cat_header"> <div id="nav-on_prem"> <a href="#subnav-box-nav-on_prem" data-toggle-for="subnav-box-nav-on_prem" class="topnav_elem mob_only">On-Prem</a> <h2 class="desk_only section_nav-on_prem"> <a href="#subnav-box-nav-on_prem" data-toggle-for="subnav-box-nav-on_prem" class="topnav_elem desk_only">On-Prem</a> </h2> </div> </div><div id="subnav-box-nav-on_prem" class="subnav_box"><a href="https://www.theregister.com/on_prem/" class="subnav_elem" id="nav-on_prem-all"><span class="prefix_all">All </span>On-Prem</a><a href="https://www.theregister.com/on_prem/systems/" class="subnav_elem" id="nav-on_prem-systems">Systems</a><a href="https://www.theregister.com/on_prem/storage/" class="subnav_elem" id="nav-on_prem-storage">Storage</a><a href="https://www.theregister.com/on_prem/networks/" class="subnav_elem" id="nav-on_prem-networks">Networks</a><a href="https://www.theregister.com/on_prem/hpc/" class="subnav_elem" id="nav-on_prem-hpc">HPC</a><a href="https://www.theregister.com/on_prem/personal_tech/" class="subnav_elem" id="nav-on_prem-personal_tech">Personal Tech</a><a href="https://www.theregister.com/on_prem/cxo/" class="subnav_elem" id="nav-on_prem-cxo">CxO</a><a href="https://www.theregister.com/on_prem/public_sector/" class="subnav_elem" id="nav-on_prem-public_sector">Public Sector</a> <noscript><a href="#masthead" class="subnav_elem close_box" aria-label="Top navigation">(X)</a></noscript> </div> </div><div class="nav_elem"> <div class="cat_header"> <div id="nav-software"> <a href="#subnav-box-nav-software" data-toggle-for="subnav-box-nav-software" class="topnav_elem mob_only">Software</a> <h2 class="desk_only section_nav-software"> <a href="#subnav-box-nav-software" data-toggle-for="subnav-box-nav-software" class="topnav_elem desk_only">Software</a> </h2> </div> </div><div id="subnav-box-nav-software" class="subnav_box"><a href="https://www.theregister.com/software/" class="subnav_elem" id="nav-software-all"><span class="prefix_all">All </span>Software</a><a href="https://www.theregister.com/software/ai_ml/" class="subnav_elem" id="nav-software-ai_ml">AI + ML</a><a href="https://www.theregister.com/software/applications/" class="subnav_elem" id="nav-software-applications">Applications</a><a href="https://www.theregister.com/software/databases/" class="subnav_elem" id="nav-software-databases">Databases</a><a href="https://www.theregister.com/software/devops/" class="subnav_elem" id="nav-software-devops">DevOps</a><a href="https://www.theregister.com/software/oses/" class="subnav_elem" id="nav-software-oses">OSes</a><a href="https://www.theregister.com/software/virtualization/" class="subnav_elem" id="nav-software-virtualization">Virtualization</a> <noscript><a href="#masthead" class="subnav_elem close_box" aria-label="Top navigation">(X)</a></noscript> </div> </div><div class="nav_elem"> <div class="cat_header"> <div id="nav-offbeat"> <a href="#subnav-box-nav-offbeat" data-toggle-for="subnav-box-nav-offbeat" class="topnav_elem mob_only">Offbeat</a> <h2 class="desk_only section_nav-offbeat"> <a href="#subnav-box-nav-offbeat" data-toggle-for="subnav-box-nav-offbeat" class="topnav_elem desk_only">Offbeat</a> </h2> </div> </div><div id="subnav-box-nav-offbeat" class="subnav_box"><a href="https://www.theregister.com/offbeat/" class="subnav_elem" id="nav-offbeat-all"><span class="prefix_all">All </span>Offbeat</a><a href="https://www.theregister.com/Debates/" class="subnav_elem" id="nav-offbeat-debates">Debates</a><a href="https://www.theregister.com/offbeat/columnists/" class="subnav_elem" id="nav-offbeat-columnists">Columnists</a><a href="https://www.theregister.com/offbeat/science/" class="subnav_elem" id="nav-offbeat-science">Science</a><a href="https://www.theregister.com/offbeat/geeks_guide/" class="subnav_elem" id="nav-offbeat-geeks_guide">Geek's Guide</a><a href="https://www.theregister.com/offbeat/bofh/" class="subnav_elem" id="nav-offbeat-bofh">BOFH</a><a href="https://www.theregister.com/offbeat/legal/" class="subnav_elem" id="nav-offbeat-legal">Legal</a><a href="https://www.theregister.com/offbeat/bootnotes/" class="subnav_elem" id="nav-offbeat-bootnotes">Bootnotes</a><a href="https://www.theregister.com/offbeat/site_news/" class="subnav_elem" id="nav-offbeat-site_news">Site News</a><a href="https://www.theregister.com/offbeat/about_us/" class="subnav_elem" id="nav-offbeat-about_us">About Us</a> <noscript><a href="#masthead" class="subnav_elem close_box" aria-label="Top navigation">(X)</a></noscript> </div> </div> </nav> </div> </div> </div> <div class="nav_bottom_group"> <div class="nav_bottom_section nav_special_features"> <div class="nav_head_bk"> <a href="#subnav-box-nav-special_features" data-toggle-for="subnav-box-nav-special_features" id="nav-special_features" class="topnav_elem mob_only">Special Features</a> <h2 class="main_head"> <span class="topnav_elem desk_only">Special Features</span> </h2> </div> <nav> <div class="nav_elem"> <div id="subnav-box-nav-special_features" class="subnav_box"> <a href="https://www.theregister.com/special_features">All Special Features</a> <a href="https://www.theregister.com/special_features/cybersecurity_month">Cybersecurity Month</a> <a href="https://www.theregister.com/special_features/vmware_explore">VMware Explore</a> <a href="https://www.theregister.com/special_features/blackhat_and_defcon">Blackhat and DEF CON</a> <a href="https://www.theregister.com/special_features/cloud_infrastructure_month">Cloud Infrastructure Month</a> <a href="https://www.theregister.com/special_features/malware_month">Malware Month</a> <a href="https://www.theregister.com/special_features/the_reg_in_space">The Reg in Space</a> <a href="https://www.theregister.com/special_features/spotlight_on_rsa">Spotlight on RSA</a> </div> </div> </nav> </div> <div class="nav_bottom_section nav_elem nav_vendor_voice"> <div class="nav_head_bk"> <h2 class="main_head"> <span class="topnav_elem desk_only">Vendor Voice</span> </h2> </div> <nav> <div class="nav_elem"> <div class="cat_header"> <div id="nav-tag-vendor-voice"> <a href="#subnav-box-nav-tag-vendor-voice" data-toggle-for="subnav-box-nav-tag-vendor-voice" class="topnav_elem mob_only">Vendor Voice</a> <h2 class="desk_only section_nav-tag-vendor-voice"> <a href="#subnav-box-nav-tag-vendor-voice" data-toggle-for="subnav-box-nav-tag-vendor-voice" class="topnav_elem desk_only">Vendor Voice</a> </h2> </div> </div> <div id="subnav-box-nav-tag-vendor-voice" class="subnav_box"> <a href="https://www.theregister.com/VendorVoice/" class="subnav_elem" id="nav-tag-vendor-voice-all"> <span class="prefix_all">All </span>Vendor Voice </a> <a href="https://www.theregister.com/VendorVoice/aws_here/" class="subnav_elem" id="nav-tag-vendor-voice-vv_aws_here"> HERE and AWS </a> <a href="https://www.theregister.com/VendorVoice/aws_vonage/" class="subnav_elem" id="nav-tag-vendor-voice-vv_aws_vonage"> Vonage </a> <a href="https://www.theregister.com/VendorVoice/aws_amdocs/" class="subnav_elem" id="nav-tag-vendor-voice-vv_aws_amdocs"> Amdocs </a> <a href="https://www.theregister.com/VendorVoice/aws_ge_vernova_manufacturing/" class="subnav_elem" id="nav-tag-vendor-voice-vv_aws_ge_vernova_manufacturing"> GE Vernova with AWS </a> <a href="https://www.theregister.com/VendorVoice/aws_ge_vernova/" class="subnav_elem" id="nav-tag-vendor-voice-vv_aws_ge_vernova"> GE Vernova with AWS </a> <a href="https://www.theregister.com/VendorVoice/siemens_aws/" class="subnav_elem" id="nav-tag-vendor-voice-vv_siemens_aws"> Siemens and AWS Gen AI </a> <a href="https://www.theregister.com/VendorVoice/siemens_aws_itot/" class="subnav_elem" id="nav-tag-vendor-voice-vv_siemens_aws_itot"> Siemens and AWS IT/OT </a> <a href="https://www.theregister.com/VendorVoice/aws_new_horizon_solutions/" class="subnav_elem" id="nav-tag-vendor-voice-vv_aws_new_horizon_solutions"> Amazon Web Services (AWS) New Horizon in Cloud Computing </a> <a href="https://www.theregister.com/VendorVoice/ddn/" class="subnav_elem" id="nav-tag-vendor-voice-vv_ddn"> DDN </a> <a href="https://www.theregister.com/VendorVoice/google_cloud_data_transformation/" class="subnav_elem" id="nav-tag-vendor-voice-vv_google_cloud_data_transformation"> Google Cloud Data Transformation </a> <a href="https://www.theregister.com/VendorVoice/google_gemini/" class="subnav_elem" id="nav-tag-vendor-voice-vv_google_gemini"> Google Gemini </a> <a href="https://www.theregister.com/VendorVoice/hpe_greenlake/" class="subnav_elem" id="nav-tag-vendor-voice-vv_hpe_greenlake"> Hewlett Packard Enterprise: Edge-to-Cloud Platform </a> <a href="https://www.theregister.com/VendorVoice/intelvpro/" class="subnav_elem" id="nav-tag-vendor-voice-vv_intelvpro"> Intel vPro </a> <a href="https://www.theregister.com/VendorVoice/vmware/" class="subnav_elem" id="nav-tag-vendor-voice-vv_vmware"> VMware </a> <noscript> <a href="#masthead" class="subnav_elem close_box" aria-label="Top navigation">(X)</a> </noscript> </div> </div> </nav> </div> <div class="nav_bottom_section nav_resources"> <div class="nav_head_bk"> <a href="#subnav-box-nav-resources" data-toggle-for="subnav-box-nav-resources" id="nav-resources" class="topnav_elem mob_only">Resources</a> <h2 class="main_head"> <span class="topnav_elem desk_only">Resources</span> </h2> </div> <nav id="top_nav"> <div class="nav_elem"> <div id="subnav-box-nav-resources" class="subnav_box"> <a href="https://whitepapers.theregister.com/">Whitepapers</a> <a href="https://whitepapers.theregister.com/events/list/">Webinars &amp; Events</a> <a href="https://account.theregister.com/edit/newsletter/">Newsletters</a> </div> </div> </nav> </div> </div> </div> </div> </div> </div> </div> <div class="sec_takeover_top compact"> <p>Sponsored By</p> <a href="http://pubads.g.doubleclick.net/gampad/clk?id=6811134191&iu=/6978" target="_blank"> <img src="https://regmedia.co.uk/2024/10/18/venafi_logo_250x100px.png" alt="CyberArk" width="250" height="100"> </a> </div> <div aria-hidden="true" class="adun" data-pos="top" data-raptor="condor" data-xsm=",fluid,mpu," data-sm=",fluid,mpu," data-md=",fluid,mpu," data-xmd=",fluid,leaderboard," data-lg=",fluid,leaderboard," data-xlg=",superleaderboard,billboard,fluid,leaderboard," data-xxlg=",superleaderboard,billboard,brandwidth,fluid,leaderboard,"> <noscript> <a href="https://pubads.g.doubleclick.net/gampad/jump?co=1&amp;iu=/6978/reg_security/cso&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=2&amp;c=2Z0KGiReb0I4Tip_FruBSZAAAABY&amp;t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0" target="_blank"> <img src="https://pubads.g.doubleclick.net/gampad/ad?co=1&amp;iu=/6978/reg_security/cso&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=2&amp;c=2Z0KGiReb0I4Tip_FruBSZAAAABY&amp;t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0" alt=""> </a> </noscript> </div> <div id=main-col class="image_lite"> <h2 id=site_sect class="dcl has_lateral_ornaments"><a href="/security/cso/">CSO</a></h2> <div class=headlines> <div class="img_lite_srow img_lite_rt-2f"> <article> <a href="/2024/11/23/trump_noem_homeland_security/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Trump taps border hawk to head DHS. Will Noem's 'enthusiasm' extend to digital domain?</h4> <div class=standfirst> <span class="label">Analysis</span> Meanwhile, CISA chief Jen Easterly will step down prior to inauguration</div> <div class=time_comments> <span class="section_name">Public Sector</span><span class="time_stamp" title="23 Nov 17:39" data-epoch="1732383555">23 Nov 2024</span> | <span class="comment light_bg_comments">8</span></div> </div> </a> </article> <article> <a href="/2024/11/22/palo_alto_firewalls_under_exploit/" class=story_link> <div class="article_text_elements"> <h4>1000s of Palo Alto Networks firewalls hijacked as miscreants exploit critical hole</h4> <div class=standfirst>PAN-PAN! Intruders inject web shell backdoors, crypto-coin miners, more</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="22 Nov 21:27" data-epoch="1732310829">22 Nov 2024</span> | <span class="comment light_bg_comments">10</span></div> </div> </a> </article> <div class="bird ad-eagle"> <div class="bird_wrapper"> <div class="ad_inner_wrap"> <div aria-hidden="true" class="adun" data-pos="top" data-raptor="eagle" data-xsm=",mpu,dmpu," data-sm=",mpu,dmpu," data-md=",mpu,dmpu," data-xmd=",mpu,dmpu," data-lg=",dmpu,mpu," data-xlg=",dmpu,mpu," data-xxlg=",dmpu,mpu,"> <noscript> <a href="https://pubads.g.doubleclick.net/gampad/jump?co=1&amp;iu=/6978/reg_security/cso&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=3&amp;c=33Z0KGiReb0I4Tip_FruBSZAAAABY&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dtop%26test%3D0" target="_blank"> <img src="https://pubads.g.doubleclick.net/gampad/ad?co=1&amp;iu=/6978/reg_security/cso&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=3&amp;c=33Z0KGiReb0I4Tip_FruBSZAAAABY&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dtop%26test%3D0" alt=""> </a> </noscript> </div> </div> </div> </div> <article> <a href="/2024/11/20/musk_chinese_cyberspies/" class=story_link> <div class="article_text_elements"> <h4>Chinese cyberspies, Musk’s Beijing ties, labelled ‘real risk’ to US security by senator</h4> <div class=standfirst>Meet Liminal Panda, which prowls telecom networks in South Asia and Africa</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="20 Nov 23:50" data-epoch="1732146614">20 Nov 2024</span> | <span class="comment light_bg_comments">13</span></div> </div> </a> </article> <article> <a href="/2024/11/20/dlink_rip_replace_router/" class=story_link> <div class="article_text_elements"> <h4>D-Link tells users to trash old VPN routers over bug too dangerous to identify</h4> <div class=standfirst>Vendor offers 20% discount on new model, but not patches</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="20 Nov 14:32" data-epoch="1732113126">20 Nov 2024</span> | <span class="comment light_bg_comments">53</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/11/20/data_is_the_new_uranium/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Data is the new uranium – incredibly powerful and amazingly dangerous</h4> <div class=standfirst> <span class="label">Column</span> CISOs are quietly wishing they had less data, because the cost of management sometimes exceeds its value</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="20 Nov 07:15" data-epoch="1732086909">20 Nov 2024</span> | <span class="comment light_bg_comments">46</span></div> </div> </a> </article> <article> <a href="/2024/11/15/palo_alto_networks_firewall_zeroday/" class=story_link> <div class="article_text_elements"> <h4>Mystery Palo Alto Networks hijack-my-firewall zero-day now officially under exploit</h4> <div class=standfirst>Yank access to management interface, stat</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="15 Nov 21:07" data-epoch="1731704823">15 Nov 2024</span> | <span class="comment light_bg_comments">28</span></div> </div> </a> </article> <article> <a href="/2024/11/14/five_eyes_2023_top_vulnerabilities/" class=story_link> <div class="article_text_elements"> <h4>Five Eyes infosec agencies list 2023's most exploited software flaws</h4> <div class=standfirst>Slack patching remains a problem – which is worrying as crooks increasingly target zero-day vulns</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="14 Nov 08:31" data-epoch="1731573066">14 Nov 2024</span> | <span class="comment light_bg_comments">28</span></div> </div> </a> </article> <article> <a href="/2024/11/14/shrinklocker_ransomware_decryptor/" class=story_link> <div class="article_text_elements"> <h4>ShrinkLocker ransomware scrambled your files? Free decryption tool to the rescue</h4> <div class=standfirst>Plus: CISA's ScubaGear dives deep to fix M365 misconfigs</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="14 Nov 00:14" data-epoch="1731543246">14 Nov 2024</span> | <span class="comment light_bg_comments">3</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1b"> <article> <a href="/2024/11/13/teixeira_prison_discord/" class=story_link> <div class="article_text_elements"> <h4>Air National Guardsman gets 15 years after splashing classified docs on Discord</h4> <div class=standfirst>22-year-old talked of 'culling the weak minded' – hmm!</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="13 Nov 00:01" data-epoch="1731456081">13 Nov 2024</span> | <span class="comment light_bg_comments">93</span></div> </div> </a> </article> <article> <a href="/2024/11/12/http_citrix_vuln/" class=story_link> <div class="article_text_elements"> <h4>HTTP your way into Citrix's Virtual Apps and Desktops with fresh exploit code</h4> <div class=standfirst>'Once again, we've lost a little more faith in the internet,' researcher says</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="12 Nov 16:11" data-epoch="1731427872">12 Nov 2024</span> | <span class="comment light_bg_comments">3</span></div> </div> </a> </article> <article> <a href="/2024/10/29/hold_the_story_behind_the/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>The story behind the Health Infrastructure Security and Accountability Act</h4> <div class=standfirst>Health care breaches lead to legislation</div> <div class="time_comments"><span class="section_name">Partner Content</span></div> </div> </a> </article> <article> <a href="/2024/10/24/bitwarden_foss_doubts/" class=story_link> <div class="article_text_elements"> <h4>Bitwarden's FOSS halo slips as new SDK requirement locks down freedoms</h4> <div class=standfirst>Arguments continue but change suggests it's not Free Software anymore</div> <div class=time_comments> <span class="section_name">Applications</span><span class="time_stamp" title="24 Oct 11:36" data-epoch="1729769774">24 Oct 2024</span> | <span class="comment light_bg_comments">16</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-2c"> <div class="bird ad-falcon"> <div class="bird_wrapper"> <div class="ad_inner_wrap"> <div aria-hidden="true" class="adun" data-pos="top" data-raptor="falcon" data-xsm=",fluid,mpu," data-sm=",fluid,mpu," data-md=",fluid,mpu," data-xmd=",fluid,leaderboard,mpu," data-lg=",fluid,leaderboard,mpu," data-xlg=",fluid,billboard,superleaderboard,leaderboard,mpu," data-xxlg=",fluid,billboard,superleaderboard,brandwidth,brandimpact,leaderboard,mpu,"> <noscript> <a href="https://pubads.g.doubleclick.net/gampad/jump?co=1&amp;iu=/6978/reg_security/cso&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=4&amp;c=44Z0KGiReb0I4Tip_FruBSZAAAABY&amp;t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0" target="_blank"> <img src="https://pubads.g.doubleclick.net/gampad/ad?co=1&amp;iu=/6978/reg_security/cso&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=4&amp;c=44Z0KGiReb0I4Tip_FruBSZAAAABY&amp;t=ct%3Dns%26unitnum%3D426raptor%3Dfalcon%26pos%3Dmid%26test%3D0" alt=""> </a> </noscript> </div> </div> </div> </div> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/10/14/gryphon_healthcare_breach/" class=story_link> <div class="article_text_elements"> <h4>US healthcare org admits up to 400,000 people's personal info was snatched</h4> <div class=standfirst>It waited till <em>just</em> before Columbus Day weekend to make mandated filing, but don't worry, we saw it</div> <div class=time_comments> <span class="section_name">Cybersecurity Month</span><span class="time_stamp" title="14 Oct 22:03" data-epoch="1728943387">14 Oct 2024</span> | <span class="comment light_bg_comments">3</span></div> </div> </a> </article> <article> <a href="/2024/10/10/cisa_ivanti_fortinet_vulns/" class=story_link> <div class="article_text_elements"> <h4>CISA adds fresh Ivanti vuln, critical Fortinet bug to hall of shame</h4> <div class=standfirst>Usual three-week window to address significant risks to federal agencies applies</div> <div class=time_comments> <span class="section_name">Cybersecurity Month</span><span class="time_stamp" title="10 Oct 13:34" data-epoch="1728567254">10 Oct 2024</span> | <span class="comment light_bg_no_comments"></span></div> </div> </a> </article> <article> <a href="/2024/10/09/trinity_ransomware_targets_healthcare_orgs/" class=story_link> <div class="article_text_elements"> <h4>Ransomware gang Trinity joins pile of scumbags targeting healthcare</h4> <div class=standfirst>As if hospitals and clinics didn't have enough to worry about</div> <div class=time_comments> <span class="section_name">Cybersecurity Month</span><span class="time_stamp" title="09 Oct 13:45" data-epoch="1728481508">09 Oct 2024</span> | <span class="comment light_bg_comments">6</span></div> </div> </a> </article> <article> <a href="/2024/10/03/ciso_salary_survey/" class=story_link> <div class="article_text_elements"> <h4>Average North American CISO pay now $565K, mainly thanks to one weird trick</h4> <div class=standfirst>Best way to boost your package is to leave, or pretend to</div> <div class=time_comments> <span class="section_name">Cybersecurity Month</span><span class="time_stamp" title="03 Oct 14:01" data-epoch="1727964068">03 Oct 2024</span> | <span class="comment light_bg_comments">12</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/10/03/ransomware_spree_infects_100_orgs/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Ransomware crew infects 100+ orgs monthly with new MedusaLocker variant</h4> <div class=standfirst> <span class="label">Exclusive</span> Crooks 'like a sysadmin, with a malicious slant'</div> <div class=time_comments> <span class="section_name">Cybersecurity Month</span><span class="time_stamp" title="03 Oct 10:00" data-epoch="1727949609">03 Oct 2024</span> | <span class="comment light_bg_comments">3</span></div> </div> </a> </article> <article> <a href="/2024/10/03/dsit_web_tracking_survey/" class=story_link> <div class="article_text_elements"> <h4>Brits hate how big tech handles their data, but can't be bothered to do much about it</h4> <div class=standfirst>Managing the endless stream of cookie banners leaves little energy for anything else</div> <div class=time_comments> <span class="section_name">Cybersecurity Month</span><span class="time_stamp" title="03 Oct 09:15" data-epoch="1727946913">03 Oct 2024</span> | <span class="comment light_bg_comments">38</span></div> </div> </a> </article> <article> <a href="/2024/10/02/draytek_routers_bugs/" class=story_link> <div class="article_text_elements"> <h4>700K+ DrayTek routers are sitting ducks on the internet, open to remote hijacking</h4> <div class=standfirst>With 14 serious security flaws found, what a gift for spies and crooks</div> <div class=time_comments> <span class="section_name">Cybersecurity Month</span><span class="time_stamp" title="02 Oct 21:33" data-epoch="1727904789">02 Oct 2024</span> | <span class="comment light_bg_comments">21</span></div> </div> </a> </article> <article> <a href="/2024/10/02/cisa_optigo_switch_flaws/" class=story_link> <div class="article_text_elements"> <h4>Two simple give-me-control security bugs found in Optigo network switches used in critical manufacturing</h4> <div class=standfirst>Poor use of PHP include() strikes again</div> <div class=time_comments> <span class="section_name">Cybersecurity Month</span><span class="time_stamp" title="02 Oct 20:39" data-epoch="1727901590">02 Oct 2024</span> | <span class="comment light_bg_comments">4</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-2d"> <div class="bird ad-hawk"> <div class="bird_wrapper"> <div class="ad_inner_wrap"> <div aria-hidden="true" class="adun" data-pos="mid" data-raptor="hawk" data-xsm=",fluid,mpu," data-sm=",fluid,mpu," data-md=",fluid,mpu," data-xmd=",fluid,leaderboard,mpu," data-lg=",fluid,leaderboard,mpu," data-xlg=",fluid,billboard,superleaderboard,leaderboard,mpu," data-xxlg=",fluid,billboard,superleaderboard,brandwidth,brandimpact,leaderboard,mpu,"></div> </div> </div> </div> </div> <div class="img_lite_srow img_lite_rt-3c has_label"> <h3 class="row_label"><a class="row_title_link has_lateral_ornaments" href="/Popular/" aria-label="Popular Stories">Popular</a></h3> <article> <a href="/2024/11/22/on_call/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Techie left 'For support, contact me' sign on a server. Twenty years later, someone did</h4> <div class=standfirst> <span class="label">On Call</span> A certain very famous PC manufacturer may not be very good at documenting its legacy tech</div> </div> </a> </article> <article> <a href="/2024/11/22/cisa_red_team_exercise/" class=story_link> <div class="article_text_elements"> <h4>Here's what happens if you don't layer network security – or remove unused web shells</h4> <div class=standfirst>TL;DR: Attackers will break in and pwn you, as a US government red team demonstrated</div> </div> </a> </article> <article> <a href="/2024/11/22/ai_pcs_productivity/" class=story_link> <div class="article_text_elements"> <h4>Whomp-whomp: AI PCs make users less productive</h4> <div class=standfirst>People just don't know how to wrangle chatbots into useful things, Intel says</div> </div> </a> </article> <article> <a href="/2024/11/22/broadcom_vmware_acquisition_first_anniversary/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>A year after Broadcom took control of VMware, it's in the box seat</h4> <div class=standfirst> <span class="label">UPDATED</span> Customers are 'all miserable' but not yet deciding to bail - and AT&amp;T appears to have settled its licensing dispute</div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/10/02/cve_pileup_nvd_missed_deadline/" class=story_link> <div class="article_text_elements"> <h4>NIST's security flaw database still backlogged with 17K+ unprocessed bugs. Not great</h4> <div class=standfirst>Logjam 'hurting infosec processes world over' one expert tells us as US body blows its own Sept deadline</div> <div class=time_comments> <span class="section_name">Cybersecurity Month</span><span class="time_stamp" title="02 Oct 12:31" data-epoch="1727872265">02 Oct 2024</span> | <span class="comment light_bg_comments">8</span></div> </div> </a> </article> <article> <a href="/2024/09/30/rackspace_zero_day_attack/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Rackspace internal monitoring web servers hit by zero-day</h4> <div class=standfirst> <span class="label">Exclusive</span> Intruders accessed machines via tool bundled with ScienceLogic, 'limited' info taken, customers told not to worry</div> <div class=time_comments> <span class="section_name">Cybersecurity Month</span><span class="time_stamp" title="30 Sep 23:08" data-epoch="1727737717">30 Sep 2024</span> | <span class="comment light_bg_comments">10</span></div> </div> </a> </article> <article> <a href="/2024/09/30/tmobile_data_breaches_settlement/" class=story_link> <div class="article_text_elements"> <h4>T-Mobile US to cough up $31.5M after that long string of security SNAFUs</h4> <div class=standfirst>At least seven intrusions in five years? Yeah, those promises of improvement more than 'long overdue'</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="30 Sep 21:59" data-epoch="1727733557">30 Sep 2024</span> | <span class="comment light_bg_comments">4</span></div> </div> </a> </article> <article> <a href="/2024/09/27/microsoft_has_some_thoughts_about/" class=story_link> <div class="article_text_elements"> <h4>Recall the Recall recall? Microsoft thinks it can make that Windows feature palatable</h4> <div class=standfirst>AI screengrab service to be opt-in, features encryption, biometrics, enclaves, more</div> <div class=time_comments> <span class="section_name">OSes</span><span class="time_stamp" title="27 Sep 20:18" data-epoch="1727468289">27 Sep 2024</span> | <span class="comment light_bg_comments">122</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/09/25/chinas_salt_typhoon_cyber_spies/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>China's Salt Typhoon cyber spies are deep inside US ISPs</h4> <div class=standfirst> <span class="label">Updated</span> Expecting a longer storm season this year?</div> <div class=time_comments> <span class="section_name">Networks</span><span class="time_stamp" title="25 Sep 21:46" data-epoch="1727300769">25 Sep 2024</span> | <span class="comment light_bg_comments">4</span></div> </div> </a> </article> <article> <a href="/2024/09/23/splinter_red_team_tool/" class=story_link> <div class="article_text_elements"> <h4>Move over, Cobalt Strike. Splinter’s the new post-exploit menace in town</h4> <div class=standfirst>No malware crew linked to this latest red-teaming tool yet</div> <div class=time_comments> <span class="section_name">Research</span><span class="time_stamp" title="23 Sep 06:46" data-epoch="1727073975">23 Sep 2024</span> | <span class="comment light_bg_no_comments"></span></div> </div> </a> </article> <article> <a href="/2024/09/20/cisa_software_cybercrime_villains/" class=story_link> <div class="article_text_elements"> <h4>CISA boss: Makers of insecure software must stop enabling today's cyber villains</h4> <div class=standfirst>Write better code, urges Jen Easterly. And while you're at it, give crime gangs horrible names like 'Evil Ferret'</div> <div class=time_comments> <span class="section_name">Software</span><span class="time_stamp" title="20 Sep 00:33" data-epoch="1726792392">20 Sep 2024</span> | <span class="comment light_bg_comments">93</span></div> </div> </a> </article> <article> <a href="/2024/09/19/valencia_ransomware_california_city/" class=story_link> <div class="article_text_elements"> <h4>Valencia Ransomware explodes on the scene, claims California city, fashion giant, more as victims</h4> <div class=standfirst>Boasts 'appear to be credible' experts tell <i>El Reg</i></div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="19 Sep 23:24" data-epoch="1726788254">19 Sep 2024</span> | <span class="comment light_bg_comments">7</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/09/18/chinese_spies_found_on_us_hq_firm_network/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Chinese spies spent months inside aerospace engineering firm's network via legacy IT</h4> <div class=standfirst> <span class="label">Exclusive</span> Getting sloppy, Xi</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="18 Sep 17:00" data-epoch="1726678813">18 Sep 2024</span> | <span class="comment light_bg_comments">32</span></div> </div> </a> </article> <article> <a href="/2024/09/17/vmware_vcenter_patch/" class=story_link> <div class="article_text_elements"> <h4>VMware patches remote make-me-root holes in vCenter Server, Cloud Foundation</h4> <div class=standfirst>Bug reports made in China</div> <div class=time_comments> <span class="section_name">Virtualization</span><span class="time_stamp" title="17 Sep 20:50" data-epoch="1726606224">17 Sep 2024</span> | <span class="comment light_bg_comments">1</span></div> </div> </a> </article> <article> <a href="/2024/09/12/capgemini_breach_data_dump/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>I stole 20 GB of data from Capgemini – and now I'm leaking it, says cybercrook</h4> <div class=standfirst> <span class="label">Updated</span> Allegedly pilfered database has source code, private keys, staff info, T-Mobile VM logs, more</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="12 Sep 20:48" data-epoch="1726174081">12 Sep 2024</span> | <span class="comment light_bg_comments">20</span></div> </div> </a> </article> <article> <a href="/2024/09/06/google_rust_c_code_language/" class=story_link> <div class="article_text_elements"> <h4>Google says replacing C/C++ in firmware with Rust is easy</h4> <div class=standfirst>Not so much when trying to convert coding veterans</div> <div class=time_comments> <span class="section_name">Software</span><span class="time_stamp" title="06 Sep 21:44" data-epoch="1725659054">06 Sep 2024</span> | <span class="comment light_bg_comments">175</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/09/05/security_spending_boom_slowing/" class=story_link> <div class="article_text_elements"> <h4>Security boom is over, with over a third of CISOs reporting flat or falling budgets</h4> <div class=standfirst>Good news? Security is still getting a growing part of IT budget</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="05 Sep 14:34" data-epoch="1725546850">05 Sep 2024</span> | <span class="comment light_bg_comments">1</span></div> </div> </a> </article> <article> <a href="/2024/09/04/new_york_aide_china_agent/" class=story_link> <div class="article_text_elements"> <h4>Ex-senior New York State staffer charged in cash-for-favors scandal with China</h4> <div class=standfirst>Bagging two posh properties, three luxury cars on a govt salary a bit of a giveaway – allegedly</div> <div class=time_comments> <span class="section_name">Public Sector</span><span class="time_stamp" title="04 Sep 00:53" data-epoch="1725411217">04 Sep 2024</span> | <span class="comment light_bg_comments">6</span></div> </div> </a> </article> <article> <a href="/2024/08/26/31m_invoices_business_files_exposed/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>31.5M invoices, contracts, patient consent forms, and more exposed to the internet</h4> <div class=standfirst> <span class="label">Exclusive</span> Unprotected database with 12 years of biz records yanked offline</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="26 Aug 13:00" data-epoch="1724677206">26 Aug 2024</span> | <span class="comment light_bg_comments">28</span></div> </div> </a> </article> <article> <a href="/2024/08/22/hardcoded_credentials_bug_solarwinds_whd/" class=story_link> <div class="article_text_elements"> <h4>SolarWinds left critical hardcoded credentials in its Web Help Desk product</h4> <div class=standfirst>Why go to the effort of backdooring code when devs will basically do it for you accidentally anyway</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="22 Aug 22:36" data-epoch="1724366176">22 Aug 2024</span> | <span class="comment light_bg_comments">18</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/08/22/ucsc_phishing_test_ebola/" class=story_link> <div class="article_text_elements"> <h4>This uni thought it would be a good idea to do a phishing test with a fake Ebola scare</h4> <div class=standfirst>Needless to say, it backfired in a big way</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="22 Aug 10:32" data-epoch="1724322733">22 Aug 2024</span> | <span class="comment light_bg_comments">118</span></div> </div> </a> </article> <article> <a href="/2024/08/08/delta_crowdstrikes_offer_for_help/" class=story_link> <div class="article_text_elements"> <h4>Delta: CrowdStrike's offer to help in Falcon meltdown was too little, too late</h4> <div class=standfirst>Airline unimpressed with 'unhelpful and untimely' phone call from CEO, Falcon maker says claims untrue</div> <div class=time_comments> <span class="section_name">CxO</span><span class="time_stamp" title="08 Aug 22:30" data-epoch="1723156222">08 Aug 2024</span> | <span class="comment light_bg_comments">32</span></div> </div> </a> </article> <article> <a href="/2024/08/08/north_korea_laptop_farm_arrest/" class=story_link> <div class="article_text_elements"> <h4>US 'laptop farm' man accused of outsourcing his IT jobs to North Korea to fund weapons programs</h4> <div class=standfirst>American and Brit firms thought they were employing a Westerner, but not so, it's alleged</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="08 Aug 20:55" data-epoch="1723150520">08 Aug 2024</span> | <span class="comment light_bg_comments">19</span></div> </div> </a> </article> <article> <a href="/2024/08/08/report_tech_misconceptions_plague_the/" class=story_link> <div class="article_text_elements"> <h4>Report: Tech misconceptions plague the IT world</h4> <div class=standfirst>Just snapping the webcam shutter closed won't keep a user safe online</div> <div class=time_comments> <span class="section_name">Personal Tech</span><span class="time_stamp" title="08 Aug 10:31" data-epoch="1723113075">08 Aug 2024</span> | <span class="comment light_bg_comments">74</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/08/07/microsoft_delta_fight/" class=story_link> <div class="article_text_elements"> <h4>Microsoft punches back at Delta Air Lines and its legal threats</h4> <div class=standfirst>SatNad himself offered CrowdStrike recovery help, Redmond says, before suggesting airline's IT is in a mess</div> <div class=time_comments> <span class="section_name">CxO</span><span class="time_stamp" title="07 Aug 01:50" data-epoch="1722995420">07 Aug 2024</span> | <span class="comment light_bg_comments">39</span></div> </div> </a> </article> <article> <a href="/2024/08/05/national_public_data_lawsuit/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>That cyber-heist of 2.9B personal records? There's a class-action lawsuit looming for that</h4> <div class=standfirst> <span class="label">Updated</span> Background check biz accused of negligence</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="05 Aug 17:58" data-epoch="1722880691">05 Aug 2024</span> | <span class="comment light_bg_comments">11</span></div> </div> </a> </article> <article> <a href="/2024/08/05/snakekeylogger_malware_windows/" class=story_link> <div class="article_text_elements"> <h4>Sneaky SnakeKeylogger slithers into Windows inboxes to steal sensitive secrets</h4> <div class=standfirst>Malware logs users' keystrokes, pilfers credentials, exfiltrates data</div> <div class=time_comments> <span class="section_name">Research</span><span class="time_stamp" title="05 Aug 14:28" data-epoch="1722868092">05 Aug 2024</span> | <span class="comment light_bg_comments">15</span></div> </div> </a> </article> <article> <a href="/2024/08/03/darpa_c_to_rust/" class=story_link> <div class="article_text_elements"> <h4>DARPA suggests turning old C code automatically into Rust – using AI, of course</h4> <div class=standfirst>Who wants to make a TRACTOR pull request?</div> <div class=time_comments> <span class="section_name">Research</span><span class="time_stamp" title="03 Aug 10:03" data-epoch="1722679391">03 Aug 2024</span> | <span class="comment light_bg_comments">146</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/08/01/crowdstrike_lawsuit/" class=story_link> <div class="article_text_elements"> <h4>Too late now for canary test updates, says pension fund suing CrowdStrike</h4> <div class=standfirst>That horse has not just bolted, it's trampled all over kernel space</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="01 Aug 18:40" data-epoch="1722537613">01 Aug 2024</span> | <span class="comment light_bg_comments">114</span></div> </div> </a> </article> <article> <a href="/2024/08/01/mozilla_entrust/" class=story_link> <div class="article_text_elements"> <h4>Firefox's Mozilla follows Google in losing trust in Entrust's TLS certificates</h4> <div class=standfirst>Compliance failures and unsatisfactory responses mount from the long-time certificate authority</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="01 Aug 12:28" data-epoch="1722515306">01 Aug 2024</span> | <span class="comment light_bg_comments">16</span></div> </div> </a> </article> <article> <a href="/2024/07/31/ransomware_blood_supply_hospital/" class=story_link> <div class="article_text_elements"> <h4>Ransomware infection cuts off blood supply to 250+ hospitals</h4> <div class=standfirst>Scumbags go for the jugular</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="31 Jul 23:33" data-epoch="1722468786">31 Jul 2024</span> | <span class="comment light_bg_comments">39</span></div> </div> </a> </article> <article> <a href="/2024/07/31/digicert_certificates_extension/" class=story_link> <div class="article_text_elements"> <h4>More than 83K certs from nearly 7K DigiCert customers must be swapped out now</h4> <div class=standfirst>Small stay of execution in 'exceptional circumstances' promised – amid legal action to pause digital bonfire</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="31 Jul 21:15" data-epoch="1722460513">31 Jul 2024</span> | <span class="comment light_bg_comments">18</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/07/31/chrome_appbound_encryption/" class=story_link> <div class="article_text_elements"> <h4>Chrome adopts app-bound encryption to stymie cookie-stealing malware</h4> <div class=standfirst>Windows users now get macOS-grade secret security</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="31 Jul 16:35" data-epoch="1722443706">31 Jul 2024</span> | <span class="comment light_bg_comments">4</span></div> </div> </a> </article> <article> <a href="/2024/07/31/microsoft_ddos_azure/" class=story_link> <div class="article_text_elements"> <h4>'Error' in Microsoft's DDoS defenses amplified 8-hour Azure outage</h4> <div class=standfirst>A playbook full of strategies and someone fumbles the implementation</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="31 Jul 12:58" data-epoch="1722430686">31 Jul 2024</span> | <span class="comment light_bg_comments">18</span></div> </div> </a> </article> <article> <a href="/2024/07/31/uk_electoral_commission_ico/" class=story_link> <div class="article_text_elements"> <h4>UK Electoral Commission slapped for basic cybersecurity fails</h4> <div class=standfirst>It took 13 months to notice 40 million voters' data was compromised</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="31 Jul 08:30" data-epoch="1722414609">31 Jul 2024</span> | <span class="comment light_bg_comments">25</span></div> </div> </a> </article> <article> <a href="/2024/07/31/digicert_certificates_revoked/" class=story_link> <div class="article_text_elements"> <h4>DigiCert gives unlucky folks 24 hours to replace doomed certificates after code blunder</h4> <div class=standfirst>For the want of an underscore</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="31 Jul 01:31" data-epoch="1722389506">31 Jul 2024</span> | <span class="comment light_bg_comments">27</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/07/30/crowdstrike_delta_microsoft_lawsuit/" class=story_link> <div class="article_text_elements"> <h4>Delta Air Lines dials up Microsoft's legal nemesis over CrowdStrike losses</h4> <div class=standfirst>Oh, Boies, here we go again</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="30 Jul 19:00" data-epoch="1722366014">30 Jul 2024</span> | <span class="comment light_bg_comments">17</span></div> </div> </a> </article> <article> <a href="/2024/07/30/scammers_spoofed_emails/" class=story_link> <div class="article_text_elements"> <h4>Proofpoint phishing palaver plagues millions with 'perfectly spoofed' emails from IBM, Nike, Disney, others</h4> <div class=standfirst>They DKIM here, they DKIM there</div> <div class=time_comments> <span class="section_name">Research</span><span class="time_stamp" title="30 Jul 06:27" data-epoch="1722320826">30 Jul 2024</span> | <span class="comment light_bg_comments">33</span></div> </div> </a> </article> <article> <a href="/2024/07/29/google_password_manager_outage/" class=story_link> <div class="article_text_elements"> <h4>Google apologizes for breaking password manager for millions of Windows users with iffy Chrome update</h4> <div class=standfirst>Happy Sysadmin Day</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="29 Jul 13:01" data-epoch="1722258067">29 Jul 2024</span> | <span class="comment light_bg_comments">13</span></div> </div> </a> </article> <article> <a href="/2024/07/26/crowdstrike_insurance_money/" class=story_link> <div class="article_text_elements"> <h4>CrowdStrike update blunder may cost world billions – and insurance ain't covering it all</h4> <div class=standfirst>We offer this formula instead: RND(100.0)*(10^9)</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="26 Jul 00:35" data-epoch="1721954111">26 Jul 2024</span> | <span class="comment light_bg_comments">60</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/07/25/data_from_deleted_github_repos/" class=story_link> <div class="article_text_elements"> <h4>FYI: Data from deleted GitHub repos may not actually be deleted</h4> <div class=standfirst>And the forking Microsoft-owned code warehouse doesn't see this as much of a problem</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="25 Jul 19:51" data-epoch="1721937092">25 Jul 2024</span> | <span class="comment light_bg_comments">49</span></div> </div> </a> </article> <article> <a href="/2024/07/25/kaspersky_us_review_snub/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Kaspersky says Uncle Sam snubbed proposal to open up its code for third-party review</h4> <div class=standfirst> <span class="label">Exclusive</span> Those national security threat claims? 'No evidence,' VP tells The Reg</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="25 Jul 12:01" data-epoch="1721908874">25 Jul 2024</span> | <span class="comment light_bg_comments">56</span></div> </div> </a> </article> <article> <a href="/2024/07/25/patch_management_study/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Patch management still seemingly abysmal because no one wants the job</h4> <div class=standfirst> <span class="label">Comment</span> Are your security and ops teams fighting to pass the buck?</div> <div class=time_comments> <span class="section_name">Malware Month</span><span class="time_stamp" title="25 Jul 07:27" data-epoch="1721892426">25 Jul 2024</span> | <span class="comment light_bg_comments">29</span></div> </div> </a> </article> <article> <a href="/2024/07/25/crowdstrike_remediation_with_barcode_scanner/" class=story_link> <div class="article_text_elements"> <h4>How a cheap barcode scanner helped fix CrowdStrike'd Windows PCs in a flash</h4> <div class=standfirst>This one weird trick saved countless hours and stress – no, really</div> <div class=time_comments> <span class="section_name">OSes</span><span class="time_stamp" title="25 Jul 02:29" data-epoch="1721874553">25 Jul 2024</span> | <span class="comment light_bg_comments">89</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/07/25/crowdstrike_timeline/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>The months and days before and after CrowdStrike's fatal Friday</h4> <div class=standfirst> <span class="label">Analysis</span> 'In the short term, they're going to have to do a lot of groveling'</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="25 Jul 00:17" data-epoch="1721866626">25 Jul 2024</span> | <span class="comment light_bg_comments">46</span></div> </div> </a> </article> <article> <a href="/2024/07/23/crowdstrike_failure_shows_need_for/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>How did a CrowdStrike file crash millions of Windows computers? We take a closer look at the code</h4> <div class=standfirst> <span class="label">Analysis</span> Maybe next time some staged rollouts? A bit of QA too?</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="23 Jul 20:52" data-epoch="1721767932">23 Jul 2024</span> | <span class="comment light_bg_comments">119</span></div> </div> </a> </article> <article> <a href="/2024/07/19/crowdstrike_windows_kettle/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>CrowdStrike Windows patchpocalypse could take weeks to fix, IT admins fear</h4> <div class=standfirst> <span class="label">Kettle</span> Our vultures gather to review this very freaky Friday</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="19 Jul 17:54" data-epoch="1721411647">19 Jul 2024</span> | <span class="comment light_bg_comments">75</span></div> </div> </a> </article> <article> <a href="/2024/07/18/sec_solarwinds_lawsuit/" class=story_link> <div class="article_text_elements"> <h4>Judge mostly drags SEC's lawsuit against SolarWinds into the recycling bin</h4> <div class=standfirst>Russia-invaded software biz 'grateful for the support we have received'</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="18 Jul 21:06" data-epoch="1721336809">18 Jul 2024</span> | <span class="comment light_bg_comments">3</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/07/15/kasperky_us_operations/" class=story_link> <div class="article_text_elements"> <h4>Kaspersky culls staff, closes doors in US amid Biden's ban</h4> <div class=standfirst>After all we've done for you, America, sniffs antivirus lab</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="15 Jul 21:32" data-epoch="1721079135">15 Jul 2024</span> | <span class="comment light_bg_comments">25</span></div> </div> </a> </article> <article> <a href="/2024/07/13/snowflake_kettle/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Three words to send a chill down your spine: Snowflake. Intrusion. Alert</h4> <div class=standfirst> <span class="label">Kettle</span> And can AI save us from the scourge of malware? In theory, why not, but in practice ... Color us skeptical</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="13 Jul 15:04" data-epoch="1720883052">13 Jul 2024</span> | <span class="comment light_bg_comments">7</span></div> </div> </a> </article> <article> <a href="/2024/07/12/cdk_ransom_payout/" class=story_link> <div class="article_text_elements"> <h4>Car dealer software slinger CDK Global said to have paid $25M ransom after cyberattack</h4> <div class=standfirst>15K dealerships take estimated $600M+ hit</div> <div class=time_comments> <span class="section_name">Malware Month</span><span class="time_stamp" title="12 Jul 23:53" data-epoch="1720828411">12 Jul 2024</span> | <span class="comment light_bg_comments">16</span></div> </div> </a> </article> <article> <a href="/2024/07/11/estate_ransomware_veeam_bug/" class=story_link> <div class="article_text_elements"> <h4>You had a year to patch this Veeam flaw – and now it's going to hurt some more</h4> <div class=standfirst>LockBit variant targets backup software - which you may remember is supposed to help you <i>recover</i> from ransomware</div> <div class=time_comments> <span class="section_name">Patches</span><span class="time_stamp" title="11 Jul 07:28" data-epoch="1720682893">11 Jul 2024</span> | <span class="comment light_bg_comments">4</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/07/10/vipersoftx_malware_dot_net/" class=story_link> <div class="article_text_elements"> <h4>ViperSoftX variant spotted abusing .NET runtime to disguise data theft</h4> <div class=standfirst>Freeware AutoIt also used to hide entire PowerShell environments in scripts</div> <div class=time_comments> <span class="section_name">Malware Month</span><span class="time_stamp" title="10 Jul 06:26" data-epoch="1720592771">10 Jul 2024</span> | <span class="comment light_bg_comments">3</span></div> </div> </a> </article> <article> <a href="/2024/07/10/radius_critical_vulnerability/" class=story_link> <div class="article_text_elements"> <h4>RADIUS networking protocol blasted into submission through MD5-based flaw</h4> <div class=standfirst>If someone can do a little MITM'ing and hash cracking, they can log in with no valid password needed</div> <div class=time_comments> <span class="section_name">Research</span><span class="time_stamp" title="10 Jul 03:15" data-epoch="1720581337">10 Jul 2024</span> | <span class="comment light_bg_comments">11</span></div> </div> </a> </article> <article> <a href="/2024/07/02/affirm_evolve_ransomware_breach/" class=story_link> <div class="article_text_elements"> <h4>Affirm fears customer info pilfered during ransomware raid at Evolve Bank</h4> <div class=standfirst>Number of partners acknowledging data theft continues to rise</div> <div class=time_comments> <span class="section_name">Malware Month</span><span class="time_stamp" title="02 Jul 13:16" data-epoch="1719926164">02 Jul 2024</span> | <span class="comment light_bg_comments">2</span></div> </div> </a> </article> <article> <a href="/2024/07/01/emergency_patches_available_for_juniper/" class=story_link> <div class="article_text_elements"> <h4>Juniper Networks flings out emergency patches for perfect 10 router vuln</h4> <div class=standfirst>Get 'em while they're hot</div> <div class=time_comments> <span class="section_name">Patches</span><span class="time_stamp" title="01 Jul 11:32" data-epoch="1719833533">01 Jul 2024</span> | <span class="comment light_bg_comments">6</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/07/01/cisa_big_tech_security/" class=story_link> <div class="article_text_elements"> <h4>CISA director: US is 'not afraid' to shout about Big Tech's security failings</h4> <div class=standfirst>Jen Easterly hopes CSRB's Microsoft report won't impede future private sector collaboration</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="01 Jul 09:35" data-epoch="1719826507">01 Jul 2024</span> | <span class="comment light_bg_comments">12</span></div> </div> </a> </article> <article> <a href="/2024/06/28/teamviewer_russia/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>TeamViewer says Russia broke into its corp IT network</h4> <div class=standfirst> <span class="label">Updated</span> Same APT29 crew that hit Microsoft and SolarWinds. How close were we to a mega backdoor situation?</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="28 Jun 19:00" data-epoch="1719601244">28 Jun 2024</span> | <span class="comment light_bg_comments">25</span></div> </div> </a> </article> <article> <a href="/2024/06/28/polyfillio_cloudflare_malware/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Polyfill.io owner punches back at 'malicious defamation' amid domain shutdown</h4> <div class=standfirst> <span class="label">Updated</span> No supply-chain attacks to see over here!</div> <div class=time_comments> <span class="section_name">Research</span><span class="time_stamp" title="28 Jun 03:45" data-epoch="1719546346">28 Jun 2024</span> | <span class="comment light_bg_comments">28</span></div> </div> </a> </article> <article> <a href="/2024/06/28/teamviewer_network_breach/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>TeamViewer can't bring itself to say someone broke into its network – but it happened</h4> <div class=standfirst> <span class="label">Updated</span> Claims customer data, prod environment not affected as NCC sounds alarm</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="28 Jun 00:37" data-epoch="1719535061">28 Jun 2024</span> | <span class="comment light_bg_comments">25</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/06/26/geisinger_nuance_microsoft_worker/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Microsoft blamed for million-plus patient record theft at US hospital giant</h4> <div class=standfirst> <span class="label">Updated</span> Probe: Worker at speech-recog outfit Nuance wasn't locked out after firing</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="26 Jun 00:44" data-epoch="1719362646">26 Jun 2024</span> | <span class="comment light_bg_comments">20</span></div> </div> </a> </article> <article> <a href="/2024/06/25/polyfillio_china_crisis/" class=story_link> <div class="article_text_elements"> <h4>If you're using Polyfill.io code on your site – like 100,000+ are – remove it immediately</h4> <div class=standfirst>Scripts turn sus after mysterious CDN swallows domain</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="25 Jun 23:48" data-epoch="1719359293">25 Jun 2024</span> | <span class="comment light_bg_comments">61</span></div> </div> </a> </article> <article> <a href="/2024/06/25/neiman_marcus_snowflake_victim/" class=story_link> <div class="article_text_elements"> <h4>Fiend touts stolen Neiman Marcus customer info for $150K</h4> <div class=standfirst>Flash clobber chain fashionably late to Snowflake fiasco party</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="25 Jun 20:27" data-epoch="1719347233">25 Jun 2024</span> | <span class="comment light_bg_comments">3</span></div> </div> </a> </article> <article> <a href="/2024/06/24/rce_ollama_wiz/" class=story_link> <div class="article_text_elements"> <h4>Ollama drama as 'easy-to-exploit' critical flaw found in open source AI server</h4> <div class=standfirst>About a thousand vulnerable instances still exposed online, we're told</div> <div class=time_comments> <span class="section_name">Patches</span><span class="time_stamp" title="24 Jun 20:34" data-epoch="1719261248">24 Jun 2024</span> | <span class="comment light_bg_comments">9</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/06/21/change_healthcare_patients/" class=story_link> <div class="article_text_elements"> <h4>Change Healthcare finally spills the tea on what medical data was stolen by cyber-crew</h4> <div class=standfirst>'Substantial proportion' of America to get a little note from next month</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="21 Jun 21:33" data-epoch="1719005589">21 Jun 2024</span> | <span class="comment light_bg_comments">9</span></div> </div> </a> </article> <article> <a href="/2024/06/21/kaspersky_sanctions_ceo/" class=story_link> <div class="article_text_elements"> <h4>Uncle Sam sanctions Kaspersky's top bosses – but not Mr K himself</h4> <div class=standfirst>Here's America's list of the supposedly dirty dozen</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="21 Jun 20:23" data-epoch="1719001388">21 Jun 2024</span> | <span class="comment light_bg_comments">17</span></div> </div> </a> </article> <article> <a href="/2024/06/20/radiology_information_loss/" class=story_link> <div class="article_text_elements"> <h4>Crooks get their hands on 500K+ radiology patients' records in cyber-attack</h4> <div class=standfirst>Two ransomware gangs bragged of massive theft of personal info and medical files</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="20 Jun 21:43" data-epoch="1718919786">20 Jun 2024</span> | <span class="comment light_bg_comments">4</span></div> </div> </a> </article> <article> <a href="/2024/06/20/us_bans_kaspersky_software/" class=story_link> <div class="article_text_elements"> <h4>Biden bans Kaspersky: No more sales, updates in US</h4> <div class=standfirst>Blockade begins July 20 on national security grounds as antivirus slinger vows to fight back</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="20 Jun 21:07" data-epoch="1718917651">20 Jun 2024</span> | <span class="comment light_bg_comments">111</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/06/19/powershell_fix_malware/" class=story_link> <div class="article_text_elements"> <h4>That PowerShell 'fix' for your root cert 'problem' is a malware loader in disguise</h4> <div class=standfirst>Control-C, Control-V, Enter ... Hell</div> <div class=time_comments> <span class="section_name">Research</span><span class="time_stamp" title="19 Jun 07:27" data-epoch="1718782048">19 Jun 2024</span> | <span class="comment light_bg_comments">18</span></div> </div> </a> </article> <article> <a href="/2024/06/18/amd_intelbroker_breachforums/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Dark-web kingpin puts 'stolen' internal AMD databases, source code up for sale</h4> <div class=standfirst> <span class="label">Updated</span> Chip designer really gonna need to channel some Zen right now</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="18 Jun 23:01" data-epoch="1718751699">18 Jun 2024</span> | <span class="comment light_bg_no_comments"></span></div> </div> </a> </article> <article> <a href="/2024/06/17/guidehouse_nma_fined/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Shoddy infosec costs PwC spinoff and NMA $11.3M in settlement with Uncle Sam</h4> <div class=standfirst> <span class="label">Updated</span> Pen-testing tools didn't work – and personal info of folks hit by pandemic started appearing in search engines</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="17 Jun 23:47" data-epoch="1718668034">17 Jun 2024</span> | <span class="comment light_bg_comments">2</span></div> </div> </a> </article> <article> <a href="/2024/06/17/aws_mfa_roll_out/" class=story_link> <div class="article_text_elements"> <h4>AWS is pushing ahead with MFA for privileged accounts. What that means for you ...</h4> <div class=standfirst>The clock is ticking – why not try a passkey?</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="17 Jun 11:18" data-epoch="1718623110">17 Jun 2024</span> | <span class="comment light_bg_comments">17</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/06/15/microsoft_brad_smith_congress/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Microsoft answered Congress' questions on security. Now the White House needs to act</h4> <div class=standfirst> <span class="label">Feature</span> Business as usual needs a real change</div> <div class=time_comments> <span class="section_name">Public Sector</span><span class="time_stamp" title="15 Jun 01:20" data-epoch="1718414413">15 Jun 2024</span> | <span class="comment light_bg_comments">45</span></div> </div> </a> </article> <article> <a href="/2024/06/14/meta_eu_privacy/" class=story_link> <div class="article_text_elements"> <h4>Meta won't train AI on Euro posts after all, as watchdogs put their paws down</h4> <div class=standfirst>Facebook parent calls step forward for privacy a 'step backwards'</div> <div class=time_comments> <span class="section_name">AI + ML</span><span class="time_stamp" title="14 Jun 20:46" data-epoch="1718397972">14 Jun 2024</span> | <span class="comment light_bg_comments">41</span></div> </div> </a> </article> <article> <a href="/2024/06/14/brad_smith_microsoft_hearing/" class=story_link> <div class="article_text_elements"> <h4>Microsoft bigwig says the Feds catching Chinese spies in Exchange Online is the cloud working as intended</h4> <div class=standfirst>'It's not our job to find the culprits – That's what we're paying you for' lawmaker scolds Brad Smith</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="14 Jun 00:40" data-epoch="1718325607">14 Jun 2024</span> | <span class="comment light_bg_comments">57</span></div> </div> </a> </article> <article> <a href="/2024/06/13/oracle_online_ads/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Oracle Ads have had it: $2B operation shuts down after dwindling to $300M</h4> <div class=standfirst> <span class="label">Analysis</span> In this slightly more private era, your data ain't as profitable as it once was</div> <div class=time_comments> <span class="section_name">Personal Tech</span><span class="time_stamp" title="13 Jun 19:55" data-epoch="1718308512">13 Jun 2024</span> | <span class="comment light_bg_comments">25</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/06/12/black_basta_ransomware_windows/" class=story_link> <div class="article_text_elements"> <h4>Ransomware crew may have exploited Windows make-me-admin bug as a zero-day</h4> <div class=standfirst>Symantec suggests Black Basta crew beat Microsoft to the patch</div> <div class=time_comments> <span class="section_name">Malware Month</span><span class="time_stamp" title="12 Jun 22:10" data-epoch="1718230213">12 Jun 2024</span> | <span class="comment light_bg_comments">2</span></div> </div> </a> </article> <article> <a href="/2024/06/12/white_house_report/" class=story_link> <div class="article_text_elements"> <h4>White House report dishes deets on all 11 major government breaches from 2023</h4> <div class=standfirst>The MOVEit breach and ransomware weren’t kind to the Feds last year</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="12 Jun 16:15" data-epoch="1718208911">12 Jun 2024</span> | <span class="comment light_bg_comments">1</span></div> </div> </a> </article> <article> <a href="/2024/06/12/june_patch_tuesday/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Let's kick off our summer with a pwn-me-by-Wi-Fi bug in Microsoft Windows</h4> <div class=standfirst> <span class="label">Patch Tuesday</span> Redmond splats dozens of bugs as does Adobe while Arm drivers and PHP under active attack</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="12 Jun 00:29" data-epoch="1718152150">12 Jun 2024</span> | <span class="comment light_bg_comments">7</span></div> </div> </a> </article> <article> <a href="/2024/06/09/akira_the_next_big_thing/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Akira: Perhaps the next big thing in ransomware, says Tidal threat intelligence chief</h4> <div class=standfirst> <span class="label">Interview</span> Scott Small tells us gang's 'intent and capability' should get the attention of CSOs</div> <div class=time_comments> <span class="section_name">Malware Month</span><span class="time_stamp" title="09 Jun 12:10" data-epoch="1717935011">09 Jun 2024</span> | <span class="comment light_bg_comments">3</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/06/08/uber_cso_joe_sullivan/" class=story_link> <div class="article_text_elements has_trailer_top"> <h4>Uber ex-CSO Joe Sullivan: We need security leaders running to work, not giving up</h4> <div class=standfirst> <span class="label">Interview</span> Lessons learned from the infosec chief convicted and punished for covering up theft of data from taxi app maker</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="08 Jun 14:40" data-epoch="1717857607">08 Jun 2024</span> | <span class="comment light_bg_comments">33</span></div> </div> </a> </article> <article> <a href="/2024/06/07/fcc_bgp_proposal/" class=story_link> <div class="article_text_elements"> <h4>FCC takes some action against notorious BGP</h4> <div class=standfirst>How's your RPKI-based security plan coming along? Feds want to know</div> <div class=time_comments> <span class="section_name">Networks</span><span class="time_stamp" title="07 Jun 22:29" data-epoch="1717799347">07 Jun 2024</span> | <span class="comment light_bg_comments">9</span></div> </div> </a> </article> <article> <a href="/2024/06/06/microsoft_research_recall/" class=story_link> <div class="article_text_elements"> <h4>Microsoft Research chief scientist has no issue with Windows Recall</h4> <div class=standfirst>As tool emerges to probe OS feature's SQLite-based store of user activities</div> <div class=time_comments> <span class="section_name">OSes</span><span class="time_stamp" title="06 Jun 07:26" data-epoch="1717658768">06 Jun 2024</span> | <span class="comment light_bg_comments">114</span></div> </div> </a> </article> <article> <a href="/2024/06/05/tenable_azure_flaw/" class=story_link> <div class="article_text_elements"> <h4>Microsoft paid Tenable a bug bounty for an Azure flaw it says doesn't need a fix, just better documentation</h4> <div class=standfirst>Let customers interfere with other tenants? That's our cloud working by design, Redmond seems to say</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="05 Jun 06:44" data-epoch="1717569854">05 Jun 2024</span> | <span class="comment light_bg_comments">9</span></div> </div> </a> </article> </div> <a href="/security/cso/earlier/1/" class="reg_btn_primary wide" data-unit-type="more_stories_link">MORE STORIES</a> </div> </div> <div id=footer> <div class="footer_slogan"> <div class="footer_wrapper"> <p>The Register <img class="vulture_icon" src="/design_picker/d518b499f8a6e2c65d4d8c49aca8299d54b03012/graphics/icon/vulture_white.png" alt="icon"> Biting the hand that feeds IT</p> </div> </div> <div class="footer_wrapper"> <div class=foot_wrapper> <div class="left_block"> <div class="foot_list"> <h4>About Us<img loading="lazy" width="7" height="11" alt="" src="/design_picker/d2e337b97204af4aa34dda04c4e5d56d954b216f/graphics/icon/footer_mob_nav_arrow_black.svg" class="expand_arrow"></h4> <ul> <li><a href="https://www.theregister.com/Profile/contact/">Contact us</a></li> <li><a target=_blank rel=noopener href="https://www.theregister.com/AdvertiseWithUs/">Advertise with us</a></li> <li><a href="https://www.theregister.com/Profile/about_the_register/">Who we are</a></li> </ul> </div> <div class="foot_list more_us"> <h4>Our Websites<img loading="lazy" width="7" height="11" alt="" src="/design_picker/d2e337b97204af4aa34dda04c4e5d56d954b216f/graphics/icon/footer_mob_nav_arrow_black.svg" class="expand_arrow"></h4> <ul> <li><a href="https://www.nextplatform.com/">The Next Platform</a></li> <li><a href="https://devclass.com/">DevClass</a></li> <li><a href="https://blocksandfiles.com/">Blocks and Files</a></li> </ul> </div> <div class="foot_list privacy"> <h4>Your Privacy<img loading="lazy" width="7" height="11" alt="" src="/design_picker/d2e337b97204af4aa34dda04c4e5d56d954b216f/graphics/icon/footer_mob_nav_arrow_black.svg" class="expand_arrow"></h4> <ul> <li><a href="https://www.theregister.com/Profile/cookies/">Cookies Policy</a></li> <li><a href="https://www.theregister.com/Profile/privacy/">Privacy Policy</a></li> <li><a href="https://www.theregister.com/Profile/terms_and_conditions_of_use/">Ts &amp; Cs</a></li> </ul> </div> </div> <div class="right_block"> <div class="foot_list"> <a href="https://situationpublishing.com/" id="sitpub_logo"> <img loading="lazy" width="250" alt="Situation Publishing" src="/design_picker/d2e337b97204af4aa34dda04c4e5d56d954b216f/graphics/std/sitpublogo_2022.png"> </a> <p> Copyright. All rights reserved © 1998–2024 </p> </div> </div> <noscript><img width="1" height="1" src="/Design/graphics/std/transparent_pixel.png" alt="no-js"></noscript> </div> </div> </div> <div id=end_scripts> <script> if (typeof(ElReg.Ga.sendPageView) === 'function') { ElReg.Ga.sendPageView('reg_security/cso','0df13fad2ea597c71ae99fa84c3f976d','0df13fad2ea597c71ae99fa84c3f976d'); } </script> <script> $(function() { RegUtils.set_bucket_group(851) }); </script> </div> <!--[if IE]> <p id=unsupported_browser>The Register does not support such an old IE version. Please upgrade your browser. <img src="https://go.theregister.com/k/abb_oldie> </p> <![endif]--></div> </body> </html>