CINXE.COM

CSO News • The Register

<!doctype html> <html lang="en"> <head> <meta content="text/html; charset=utf-8" http-equiv="Content-Type"> <meta name="Googlebot-News" content="noindex"> <title>CSO News • The Register</title> <meta name="robots" content="max-snippet:-1, max-image-preview:standard, max-video-preview:0"> <meta name="viewport" content="initial-scale=1.0, width=device-width"/> <meta name="description" content="Latest news for chief security officers"> <script> var RegZoot = { }; var RegCC = [ ]; var RegPageType = 'Earlier'; var RegTruePageType = 'www Section Earlier'; var RegStoriesCount = 60; </script> <link rel="canonical" href="https://www.theregister.com/security/cso/"> <script src="/Design/javascript/html5shiv.min.js"></script> <script> // IE8 only polyfilly for eventListener // source: https://developer.mozilla.org/en-US/docs/Web/API/EventTarget/addEventListener#Compatibility !function(){if(Event.prototype.preventDefault||(Event.prototype.preventDefault=function(){this.returnValue=!1}),Event.prototype.stopPropagation||(Event.prototype.stopPropagation=function(){this.cancelBubble=!0}),!Element.prototype.addEventListener){var e=[],t=function(t,n){var o=this,r=function(e){e.target=e.srcElement,e.currentTarget=o,void 0!==n.handleEvent?n.handleEvent(e):n.call(o,e)};if("DOMContentLoaded"==t){var a=function(e){"complete"==document.readyState&&r(e)};if(document.attachEvent("onreadystatechange",a),e.push({object:this,type:t,listener:n,wrapper:a}),"complete"==document.readyState){var p=new Event;p.srcElement=window,a(p)}}else this.attachEvent("on"+t,r),e.push({object:this,type:t,listener:n,wrapper:r})},n=function(t,n){for(var o=0;o<e.length;){var r=e[o];if(r.object==this&&r.type==t&&r.listener==n){"DOMContentLoaded"==t?this.detachEvent("onreadystatechange",r.wrapper):this.detachEvent("on"+t,r.wrapper),e.splice(o,1);break}++o}};Element.prototype.addEventListener=t,Element.prototype.removeEventListener=n,HTMLDocument&&(HTMLDocument.prototype.addEventListener=t,HTMLDocument.prototype.removeEventListener=n),Window&&(Window.prototype.addEventListener=t,Window.prototype.removeEventListener=n)}}(); document.attachEvent("onreadystatechange", function() { if (document.readyState === "complete") { // list of icons we want <= IE8 to replace with their png equivalents var svg_icons_png_equiv = [ // masthead icons (twitter + facebook are also shared for footer): 'reg_logo.svg', 'twitter.svg', 'facebook.svg', 'linkedin.svg', // navigation bar icons: 'vulture.svg', 'vulture_white.svg', 'search.svg', 'search_white.svg', // footer icons: 'sitpub_footer.svg', 'linkedin_white.svg', 'rss.svg', // lectures section icons: 'reglecture_logo.svg', // story template icons: 'reddit.svg', 'linkedin_alt.svg', 'linkedin.svg', 'calendar.svg', 'location.svg', 'rect_comment_bubble_white.svg', 'rect_comment_bubble_black.svg', 'envelope.svg', 'polls_unit_arrow.svg' ]; for (i = 0; i <= svg_icons_png_equiv.length - 1; i++) { var svg_icon = svg_icons_png_equiv[i]; var img_svg_icons = $('img[src$="' + svg_icon + '"]'); img_svg_icons.each(function() { $(this).attr('src', $(this).attr('src').replace('.svg','.png')); }); } var ad_params = { src: 'https://regmedia.co.uk/2018/06/15/gg2b_book.png', href: 'https://forms.theregister.com/gg2b/?td=iaomwtkie78' }; bird_alternative('ad_wp_top', ad_params); } }); </script> <link rel=stylesheet type="text/css" href="/css/e5c206ed408f082870465a2c478e657ff0db3937/scaffolding.css"> <link rel=stylesheet type="text/css" href="/css/e5c206ed408f082870465a2c478e657ff0db3937/design.css"> <style> #nav-security, #nav-security-cso { text-decoration: underline !important; } </style> <link rel=stylesheet type="text/css" href="/css/e5c206ed408f082870465a2c478e657ff0db3937/rows_basic.css"> <link rel=alternate type="application/atom+xml" href="/headlines.atom" title="The Register: whole site"> <link rel=alternate type="application/atom+xml" href="/security/cso/headlines.atom" title="The Register: CSO section"> <script> var RegCR = false; </script> <script src="/design_picker/14513432720673f1c1ee02761ba265b674b7bee1/javascript/_.js"></script> <script> RegGPT('reg_security/cso','0df13fad2ea597c71ae99fa84c3f976d','0df13fad2ea597c71ae99fa84c3f976d'); </script> <script async src="https://www.googletagmanager.com/gtag/js"></script> <link rel=search href="https://search.theregister.com/"> <link rel=search type="application/opensearchdescription+xml" title="El Reg Search" href="/Design/page/search.osd"> <link rel="icon" href="/design_picker/13249a2e80709c7ff2e57dd3d49801cd534f2094/graphics/favicons/favicon.ico" sizes="any"><!-- 32×32 --> <link rel="icon" href="/design_picker/13249a2e80709c7ff2e57dd3d49801cd534f2094/graphics/favicons/favicon.svg" type="image/svg+xml"> <link rel="apple-touch-icon" href="/design_picker/13249a2e80709c7ff2e57dd3d49801cd534f2094/graphics/favicons/apple-touch-icon.png"><!-- 180×180 --> <link rel="manifest" href="/design_picker/13249a2e80709c7ff2e57dd3d49801cd534f2094/graphics/favicons/site.webmanifest"> <meta name="msapplication-TileColor" content="#ff0000"> <meta name="msapplication-config" content="/design_picker/13249a2e80709c7ff2e57dd3d49801cd534f2094/graphics/favicons/browserconfig.xml"> <meta name="theme-color" content="#ff0000"> <script src="/Design/javascript/respond.min.js"></script> </head> <body class="fullwidth" data-pagetype='Earlier' data-iebrowser='7'> <div id="page"> <div data-oop="1" data-pos="top" data-raptor="kite" aria-hidden="true" class="adun"></div> <div id="masthead"> <div class="los_amigos"> <div class="left_nav"> <a id="mob_user_link" href="https://account.theregister.com/register/" aria-label="Your Account"> <img class="account_icon" width="16" height="16" src="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/std/user_icon_white_extents_16x16.png" srcset="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/std/user_icon_white_extents.svg" alt=""> <img class="filled_icon" width="16" height="16" src="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/std/user_icon_white_filled_extents_16x16.png" srcset="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/std/user_icon_filled_white_extents.svg" alt=""> <span id="mob_user_text"><span>Sign in / up</span></span> </a> </div> <div class="center_nav"> <a href="https://www.theregister.com/" id="logo"> <img src="/design_picker/fa16d26efb42e6ba1052f1d387470f643c5aa18d/graphics/std/reg_logo_no_strapline.png" srcset="/design_picker/fa16d26efb42e6ba1052f1d387470f643c5aa18d/graphics/std/reg_logo_no_strapline.svg" width="190" height="35" alt="The Register® — Biting the hand that feeds IT"> </a> </div> <div class="right_nav"> <a href="https://search.theregister.com/" class="nav_search topnav_elem" data-name="Search" aria-label="Search"> <img width="16" height="16" src="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/std/magnifying_glass_white_extents_16x16.png" srcset="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/std/magnifying_glass_white_extents.svg" alt=""> </a> <div id="site_nav_mobile"> <noscript><div id="site_nav_mobile_hiding_stamp"></div></noscript> <button id="mobile_menu_toggle" aria-label="Open menu" type="button"> <img width="16" height="16" src="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/icon/burger_menu_white_16x16.png" srcset="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/icon/burger_menu_white_extents.svg" alt=""> <img width="16" height="16" src="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/icon/burger_menu_white_close_16x16.png" srcset="/design_picker/ae01b183a707a7db8cd5f2c947715ed56d335138/graphics/icon/burger_menu_white_close_extents.svg" alt=""> </button> </div> </div> </div> <div id="top_panel_wrapper"> <div id="top_panel"> <div class="block_section nav"> <div class="nav_col first_col"> <div class="nav_top_group"> <div class="nav_topics"> <div class="nav_head_bk"> <h2 class="main_head">Topics</h2> </div> <div> <nav> <div class="nav_elem"> <div class="cat_header"> <div id="nav-security"> <a href="#subnav-box-nav-security" data-toggle-for="subnav-box-nav-security" class="topnav_elem mob_only">Security</a> <h2 class="desk_only section_nav-security"> <a href="#subnav-box-nav-security" data-toggle-for="subnav-box-nav-security" class="topnav_elem desk_only">Security</a> </h2> </div> </div><div id="subnav-box-nav-security" class="subnav_box"><a href="https://www.theregister.com/security/" class="subnav_elem" id="nav-security-all"><span class="prefix_all">All </span>Security</a><a href="https://www.theregister.com/security/cyber_crime/" class="subnav_elem" id="nav-security-cyber_crime">Cyber-crime</a><a href="https://www.theregister.com/security/patches/" class="subnav_elem" id="nav-security-patches">Patches</a><a href="https://www.theregister.com/security/research/" class="subnav_elem" id="nav-security-research">Research</a><a href="https://www.theregister.com/security/cso/" class="subnav_elem" id="nav-security-cso">CSO</a> <noscript><a href="#masthead" class="subnav_elem close_box" aria-label="Top navigation">(X)</a></noscript> </div> </div><div class="nav_elem"> <div class="cat_header"> <div id="nav-off_prem"> <a href="#subnav-box-nav-off_prem" data-toggle-for="subnav-box-nav-off_prem" class="topnav_elem mob_only">Off-Prem</a> <h2 class="desk_only section_nav-off_prem"> <a href="#subnav-box-nav-off_prem" data-toggle-for="subnav-box-nav-off_prem" class="topnav_elem desk_only">Off-Prem</a> </h2> </div> </div><div id="subnav-box-nav-off_prem" class="subnav_box"><a href="https://www.theregister.com/off_prem/" class="subnav_elem" id="nav-off_prem-all"><span class="prefix_all">All </span>Off-Prem</a><a href="https://www.theregister.com/off_prem/edge_iot/" class="subnav_elem" id="nav-off_prem-edge_iot">Edge + IoT</a><a href="https://www.theregister.com/off_prem/channel/" class="subnav_elem" id="nav-off_prem-channel">Channel</a><a href="https://www.theregister.com/off_prem/paas_iaas/" class="subnav_elem" id="nav-off_prem-paas_iaas">PaaS + IaaS</a><a href="https://www.theregister.com/off_prem/saas/" class="subnav_elem" id="nav-off_prem-saas">SaaS</a> <noscript><a href="#masthead" class="subnav_elem close_box" aria-label="Top navigation">(X)</a></noscript> </div> </div><div class="nav_elem"> <div class="cat_header"> <div id="nav-on_prem"> <a href="#subnav-box-nav-on_prem" data-toggle-for="subnav-box-nav-on_prem" class="topnav_elem mob_only">On-Prem</a> <h2 class="desk_only section_nav-on_prem"> <a href="#subnav-box-nav-on_prem" data-toggle-for="subnav-box-nav-on_prem" class="topnav_elem desk_only">On-Prem</a> </h2> </div> </div><div id="subnav-box-nav-on_prem" class="subnav_box"><a href="https://www.theregister.com/on_prem/" class="subnav_elem" id="nav-on_prem-all"><span class="prefix_all">All </span>On-Prem</a><a href="https://www.theregister.com/on_prem/systems/" class="subnav_elem" id="nav-on_prem-systems">Systems</a><a href="https://www.theregister.com/on_prem/storage/" class="subnav_elem" id="nav-on_prem-storage">Storage</a><a href="https://www.theregister.com/on_prem/networks/" class="subnav_elem" id="nav-on_prem-networks">Networks</a><a href="https://www.theregister.com/on_prem/hpc/" class="subnav_elem" id="nav-on_prem-hpc">HPC</a><a href="https://www.theregister.com/on_prem/personal_tech/" class="subnav_elem" id="nav-on_prem-personal_tech">Personal Tech</a><a href="https://www.theregister.com/on_prem/cxo/" class="subnav_elem" id="nav-on_prem-cxo">CxO</a><a href="https://www.theregister.com/on_prem/public_sector/" class="subnav_elem" id="nav-on_prem-public_sector">Public Sector</a> <noscript><a href="#masthead" class="subnav_elem close_box" aria-label="Top navigation">(X)</a></noscript> </div> </div><div class="nav_elem"> <div class="cat_header"> <div id="nav-software"> <a href="#subnav-box-nav-software" data-toggle-for="subnav-box-nav-software" class="topnav_elem mob_only">Software</a> <h2 class="desk_only section_nav-software"> <a href="#subnav-box-nav-software" data-toggle-for="subnav-box-nav-software" class="topnav_elem desk_only">Software</a> </h2> </div> </div><div id="subnav-box-nav-software" class="subnav_box"><a href="https://www.theregister.com/software/" class="subnav_elem" id="nav-software-all"><span class="prefix_all">All </span>Software</a><a href="https://www.theregister.com/software/ai_ml/" class="subnav_elem" id="nav-software-ai_ml">AI + ML</a><a href="https://www.theregister.com/software/applications/" class="subnav_elem" id="nav-software-applications">Applications</a><a href="https://www.theregister.com/software/databases/" class="subnav_elem" id="nav-software-databases">Databases</a><a href="https://www.theregister.com/software/devops/" class="subnav_elem" id="nav-software-devops">DevOps</a><a href="https://www.theregister.com/software/oses/" class="subnav_elem" id="nav-software-oses">OSes</a><a href="https://www.theregister.com/software/virtualization/" class="subnav_elem" id="nav-software-virtualization">Virtualization</a> <noscript><a href="#masthead" class="subnav_elem close_box" aria-label="Top navigation">(X)</a></noscript> </div> </div><div class="nav_elem"> <div class="cat_header"> <div id="nav-offbeat"> <a href="#subnav-box-nav-offbeat" data-toggle-for="subnav-box-nav-offbeat" class="topnav_elem mob_only">Offbeat</a> <h2 class="desk_only section_nav-offbeat"> <a href="#subnav-box-nav-offbeat" data-toggle-for="subnav-box-nav-offbeat" class="topnav_elem desk_only">Offbeat</a> </h2> </div> </div><div id="subnav-box-nav-offbeat" class="subnav_box"><a href="https://www.theregister.com/offbeat/" class="subnav_elem" id="nav-offbeat-all"><span class="prefix_all">All </span>Offbeat</a><a href="https://www.theregister.com/Debates/" class="subnav_elem" id="nav-offbeat-debates">Debates</a><a href="https://www.theregister.com/offbeat/columnists/" class="subnav_elem" id="nav-offbeat-columnists">Columnists</a><a href="https://www.theregister.com/offbeat/science/" class="subnav_elem" id="nav-offbeat-science">Science</a><a href="https://www.theregister.com/offbeat/geeks_guide/" class="subnav_elem" id="nav-offbeat-geeks_guide">Geek's Guide</a><a href="https://www.theregister.com/offbeat/bofh/" class="subnav_elem" id="nav-offbeat-bofh">BOFH</a><a href="https://www.theregister.com/offbeat/legal/" class="subnav_elem" id="nav-offbeat-legal">Legal</a><a href="https://www.theregister.com/offbeat/bootnotes/" class="subnav_elem" id="nav-offbeat-bootnotes">Bootnotes</a><a href="https://www.theregister.com/offbeat/site_news/" class="subnav_elem" id="nav-offbeat-site_news">Site News</a><a href="https://www.theregister.com/offbeat/about_us/" class="subnav_elem" id="nav-offbeat-about_us">About Us</a> <noscript><a href="#masthead" class="subnav_elem close_box" aria-label="Top navigation">(X)</a></noscript> </div> </div> </nav> </div> </div> </div> <div class="nav_bottom_group"> <div class="nav_bottom_section nav_special_features"> <div class="nav_head_bk"> <a href="#subnav-box-nav-special_features" data-toggle-for="subnav-box-nav-special_features" id="nav-special_features" class="topnav_elem mob_only">Special Features</a> <h2 class="main_head"> <span class="topnav_elem desk_only">Special Features</span> </h2> </div> <nav> <div class="nav_elem"> <div id="subnav-box-nav-special_features" class="subnav_box"> <a href="https://www.theregister.com/special_features">All Special Features</a> <a href="https://www.theregister.com/special_features/cybersecurity_month">Cybersecurity Month</a> <a href="https://www.theregister.com/special_features/vmware_explore">VMware Explore</a> <a href="https://www.theregister.com/special_features/blackhat_and_defcon">Blackhat and DEF CON</a> <a href="https://www.theregister.com/special_features/cloud_infrastructure_month">Cloud Infrastructure Month</a> <a href="https://www.theregister.com/special_features/malware_month">Malware Month</a> <a href="https://www.theregister.com/special_features/the_reg_in_space">The Reg in Space</a> <a href="https://www.theregister.com/special_features/spotlight_on_rsa">Spotlight on RSA</a> </div> </div> </nav> </div> <div class="nav_bottom_section nav_elem nav_vendor_voice"> <div class="nav_head_bk"> <h2 class="main_head"> <span class="topnav_elem desk_only">Vendor Voice</span> </h2> </div> <nav> <div class="nav_elem"> <div class="cat_header"> <div id="nav-tag-vendor-voice"> <a href="#subnav-box-nav-tag-vendor-voice" data-toggle-for="subnav-box-nav-tag-vendor-voice" class="topnav_elem mob_only">Vendor Voice</a> <h2 class="desk_only section_nav-tag-vendor-voice"> <a href="#subnav-box-nav-tag-vendor-voice" data-toggle-for="subnav-box-nav-tag-vendor-voice" class="topnav_elem desk_only">Vendor Voice</a> </h2> </div> </div> <div id="subnav-box-nav-tag-vendor-voice" class="subnav_box"> <a href="https://www.theregister.com/VendorVoice/" class="subnav_elem" id="nav-tag-vendor-voice-all"> <span class="prefix_all">All </span>Vendor Voice </a> <a href="https://www.theregister.com/VendorVoice/aws_here/" class="subnav_elem" id="nav-tag-vendor-voice-vv_aws_here"> HERE and AWS </a> <a href="https://www.theregister.com/VendorVoice/aws_vonage/" class="subnav_elem" id="nav-tag-vendor-voice-vv_aws_vonage"> Vonage </a> <a href="https://www.theregister.com/VendorVoice/aws_amdocs/" class="subnav_elem" id="nav-tag-vendor-voice-vv_aws_amdocs"> Amdocs </a> <a href="https://www.theregister.com/VendorVoice/aws_ge_vernova_manufacturing/" class="subnav_elem" id="nav-tag-vendor-voice-vv_aws_ge_vernova_manufacturing"> GE Vernova with AWS </a> <a href="https://www.theregister.com/VendorVoice/aws_ge_vernova/" class="subnav_elem" id="nav-tag-vendor-voice-vv_aws_ge_vernova"> GE Vernova with AWS </a> <a href="https://www.theregister.com/VendorVoice/siemens_aws/" class="subnav_elem" id="nav-tag-vendor-voice-vv_siemens_aws"> Siemens and AWS Gen AI </a> <a href="https://www.theregister.com/VendorVoice/siemens_aws_itot/" class="subnav_elem" id="nav-tag-vendor-voice-vv_siemens_aws_itot"> Siemens and AWS IT/OT </a> <a href="https://www.theregister.com/VendorVoice/aws_new_horizon_solutions/" class="subnav_elem" id="nav-tag-vendor-voice-vv_aws_new_horizon_solutions"> Amazon Web Services (AWS) New Horizon in Cloud Computing </a> <a href="https://www.theregister.com/VendorVoice/ddn/" class="subnav_elem" id="nav-tag-vendor-voice-vv_ddn"> DDN </a> <a href="https://www.theregister.com/VendorVoice/google_cloud_data_transformation/" class="subnav_elem" id="nav-tag-vendor-voice-vv_google_cloud_data_transformation"> Google Cloud Data Transformation </a> <a href="https://www.theregister.com/VendorVoice/google_gemini/" class="subnav_elem" id="nav-tag-vendor-voice-vv_google_gemini"> Google Gemini </a> <a href="https://www.theregister.com/VendorVoice/hpe_greenlake/" class="subnav_elem" id="nav-tag-vendor-voice-vv_hpe_greenlake"> Hewlett Packard Enterprise: Edge-to-Cloud Platform </a> <a href="https://www.theregister.com/VendorVoice/intelvpro/" class="subnav_elem" id="nav-tag-vendor-voice-vv_intelvpro"> Intel vPro </a> <a href="https://www.theregister.com/VendorVoice/vmware/" class="subnav_elem" id="nav-tag-vendor-voice-vv_vmware"> VMware </a> <noscript> <a href="#masthead" class="subnav_elem close_box" aria-label="Top navigation">(X)</a> </noscript> </div> </div> </nav> </div> <div class="nav_bottom_section nav_resources"> <div class="nav_head_bk"> <a href="#subnav-box-nav-resources" data-toggle-for="subnav-box-nav-resources" id="nav-resources" class="topnav_elem mob_only">Resources</a> <h2 class="main_head"> <span class="topnav_elem desk_only">Resources</span> </h2> </div> <nav id="top_nav"> <div class="nav_elem"> <div id="subnav-box-nav-resources" class="subnav_box"> <a href="https://whitepapers.theregister.com/">Whitepapers</a> <a href="https://whitepapers.theregister.com/events/list/">Webinars &amp; Events</a> <a href="https://account.theregister.com/edit/newsletter/">Newsletters</a> </div> </div> </nav> </div> </div> </div> </div> </div> </div> </div> <div aria-hidden="true" class="adun" data-pos="top" data-raptor="condor" data-xsm=",fluid,mpu," data-sm=",fluid,mpu," data-md=",fluid,mpu," data-xmd=",fluid,leaderboard," data-lg=",fluid,leaderboard," data-xlg=",superleaderboard,billboard,fluid,leaderboard," data-xxlg=",superleaderboard,billboard,brandwidth,fluid,leaderboard,"> <noscript> <a href="https://pubads.g.doubleclick.net/gampad/jump?co=1&amp;iu=/6978/reg_security/cso&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=2&amp;c=2Z0Ku6tFJjItPH3TcefCwgwAAANU&amp;t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0" target="_blank"> <img src="https://pubads.g.doubleclick.net/gampad/ad?co=1&amp;iu=/6978/reg_security/cso&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=2&amp;c=2Z0Ku6tFJjItPH3TcefCwgwAAANU&amp;t=ct%3Dns%26unitnum%3D2%26raptor%3Dcondor%26pos%3Dtop%26test%3D0" alt=""> </a> </noscript> </div> <div id=main-col class="image_lite"> <h2 id=site_sect class="dcl has_lateral_ornaments"><a href="/security/cso/">CSO</a></h2> <div class="headlines"> <div class="img_lite_srow img_lite_rt-1b"> <article> <a href="/2024/06/04/us_navy_ship_chief_demoted/" class=story_link> <div class="article_text_elements"> <h4>Command senior chief busted for secretly setting up Wi-Fi on US Navy combat ship</h4> <div class=standfirst>In the Navy, no, you cannot have an unauthorized WLAN. In the Navy, no, that's not a good plan</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="04 Jun 2024 20:04" data-epoch="1717531446">04 Jun 2024</span> | <span class="comment light_bg_comments">91</span></div> </div> </a> </article> <article> <a href="/2024/06/04/pentagon_doubling_down_on_microsoft/" class=story_link> <div class="article_text_elements"> <h4>Pentagon 'doubling down' on Microsoft despite 'massive hack,' senators complain</h4> <div class=standfirst>Meanwhile Mr Smith goes to Washington to testify before Congress</div> <div class=time_comments> <span class="section_name">Public Sector</span><span class="time_stamp" title="04 Jun 2024 18:42" data-epoch="1717526528">04 Jun 2024</span> | <span class="comment light_bg_comments">5</span></div> </div> </a> </article> <article> <a href="/2024/06/04/snowflake_report_pulled/" class=story_link> <div class="article_text_elements"> <h4>Hudson Rock yanks report fingering Snowflake employee creds snafu for mega-leak</h4> <div class=standfirst> <span class="label">Analysis</span>&nbsp;Cloud storage giant lawyers up against infosec house</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="04 Jun 2024 02:25" data-epoch="1717467907">04 Jun 2024</span> | <span class="comment light_bg_comments">18</span></div> </div> </a> </article> <article> <a href="/2024/06/03/nist_cve_backlog/" class=story_link> <div class="article_text_elements"> <h4>NIST turns to IT consultants to clear National Vulnerability Database backlog</h4> <div class=standfirst>Aims to get CVE logjam cleared by the end of FY 24</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="03 Jun 2024 21:46" data-epoch="1717451167">03 Jun 2024</span> | <span class="comment light_bg_comments">5</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/05/31/ron_wyden_letter_unitedhealth/" class=story_link> <div class="article_text_elements"> <h4>US senator claims UnitedHealth's CEO, board appointed 'unqualified' CISO</h4> <div class=standfirst>Similar cases have resulted in serious sanctions, and they were on a far smaller scale</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="31 May 2024 21:29" data-epoch="1717190947">31 May 2024</span> | <span class="comment light_bg_comments">26</span></div> </div> </a> </article> <article> <a href="/2024/05/30/openai_stops_five_ineffective_ai/" class=story_link> <div class="article_text_elements"> <h4>OpenAI is very smug after thwarting five ineffective AI covert influence ops</h4> <div class=standfirst>That said, use of generative ML to sway public opinion may not always be weak sauce</div> <div class=time_comments> <span class="section_name">AI + ML</span><span class="time_stamp" title="30 May 2024 23:29" data-epoch="1717111753">30 May 2024</span> | <span class="comment light_bg_comments">11</span></div> </div> </a> </article> <article> <a href="/2024/05/30/kyndryl_accused_of_discriminating/" class=story_link> <div class="article_text_elements"> <h4>IBM spin-off Kyndryl accused of discriminating on basis of age, race, disability</h4> <div class=standfirst> <span class="label">Exclusive</span>&nbsp;Five current and former employees file formal charges with US employment watchdog</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="30 May 2024 11:14" data-epoch="1717067649">30 May 2024</span> | <span class="comment light_bg_comments">18</span></div> </div> </a> </article> <article> <a href="/2024/05/28/savrx_data_theft/" class=story_link> <div class="article_text_elements"> <h4>2.8M US folks learn their personal info was swiped months ago in Sav-Rx IT heist</h4> <div class=standfirst>Theft happened in October, only now are details coming to light</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="28 May 2024 22:20" data-epoch="1716934813">28 May 2024</span> | <span class="comment light_bg_comments">8</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/05/27/government_agencies_slowly_getting_onboard/" class=story_link> <div class="article_text_elements"> <h4>How's Uncle Sam getting on with Biden's AI exec order? Pretty good, we're told</h4> <div class=standfirst> <span class="label">Interview</span>&nbsp;Former Pentagon deputy CIO Rob Carey tells us guardrails should steer Feds away from bad ML</div> <div class=time_comments> <span class="section_name">Public Sector</span><span class="time_stamp" title="27 May 2024 16:56" data-epoch="1716828967">27 May 2024</span> | <span class="comment light_bg_comments">7</span></div> </div> </a> </article> <article> <a href="/2024/05/24/apache_flink_flaw_cisa/" class=story_link> <div class="article_text_elements"> <h4>Three-year-old Apache Flink flaw under active attack</h4> <div class=standfirst>We know IT admins have busy schedules but c'mon</div> <div class=time_comments> <span class="section_name">Patches</span><span class="time_stamp" title="24 May 2024 00:59" data-epoch="1716512352">24 May 2024</span> | <span class="comment light_bg_comments">11</span></div> </div> </a> </article> <article> <a href="/2024/05/23/cisco_survey_2024/" class=story_link> <div class="article_text_elements"> <h4>70% of CISOs worry their org is at risk of a material cyber attack</h4> <div class=standfirst>Wait, why do you want this job again?</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="23 May 2024 13:30" data-epoch="1716471007">23 May 2024</span> | <span class="comment light_bg_comments">7</span></div> </div> </a> </article> <article> <a href="/2024/05/22/change_healthcare_hippa/" class=story_link> <div class="article_text_elements"> <h4>Go after UnitedHealth, not us, 100+ medical groups urge Uncle Sam</h4> <div class=standfirst>Why should we get its paperwork?</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="22 May 2024 22:05" data-epoch="1716415514">22 May 2024</span> | <span class="comment light_bg_comments">8</span></div> </div> </a> </article> </div> <div class="srow rt-2c"> <div class="bird ad-falcon"> <div class="bird_wrapper"> <div class="ad_inner_wrap"> <div aria-hidden="true" class="adun" data-pos="top" data-raptor="falcon" data-xsm=",fluid,mpu," data-sm=",fluid,mpu," data-md=",fluid,mpu," data-xmd=",fluid,leaderboard,mpu," data-lg=",fluid,leaderboard,mpu," data-xlg=",fluid,billboard,superleaderboard,leaderboard,mpu," data-xxlg=",fluid,billboard,superleaderboard,brandwidth,brandimpact,leaderboard,mpu,"> <noscript> <a href="https://pubads.g.doubleclick.net/gampad/jump?co=1&amp;iu=/6978/reg_security/cso&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=4&amp;c=44Z0Ku6tFJjItPH3TcefCwgwAAANU&amp;t=ct%3Dns%26unitnum%3D4%26raptor%3Dfalcon%26pos%3Dmid%26test%3D0" target="_blank"> <img src="https://pubads.g.doubleclick.net/gampad/ad?co=1&amp;iu=/6978/reg_security/cso&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=4&amp;c=44Z0Ku6tFJjItPH3TcefCwgwAAANU&amp;t=ct%3Dns%26unitnum%3D426raptor%3Dfalcon%26pos%3Dmid%26test%3D0" alt=""> </a> </noscript> </div> </div> </div> </div> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/05/22/sec_cybersecurity_disclosure_clarification/" class=story_link> <div class="article_text_elements"> <h4>Confused by the SEC's IT security breach reporting rules? Read this</h4> <div class=standfirst>'Clarification' weighs in on material vs voluntary disclosures</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="22 May 2024 16:30" data-epoch="1716395413">22 May 2024</span> | <span class="comment light_bg_comments">2</span></div> </div> </a> </article> <article> <a href="/2024/05/14/telegram_ceo_calls_out_rival/" class=story_link> <div class="article_text_elements"> <h4>Telegram CEO calls out rival Signal, claiming it has ties to US government</h4> <div class=standfirst>Drama between two of the leading secure messaging services</div> <div class=time_comments> <span class="section_name">Applications</span><span class="time_stamp" title="14 May 2024 14:30" data-epoch="1715697013">14 May 2024</span> | <span class="comment light_bg_comments">25</span></div> </div> </a> </article> <article> <a href="/2024/05/13/ai_xforce_red_penetration/" class=story_link> <div class="article_text_elements"> <h4>AI red-teaming tools helped X-Force break into a major tech manufacturer 'in 8 hours'</h4> <div class=standfirst> <span class="label">RSAC</span>&nbsp;Hint: It's the 'the largest' maker of a key computer component</div> <div class=time_comments> <span class="section_name">Spotlight on RSA</span><span class="time_stamp" title="13 May 2024 14:00" data-epoch="1715608810">13 May 2024</span> | <span class="comment light_bg_comments">7</span></div> </div> </a> </article> <article> <a href="/2024/05/12/ransomware_negotiator_payments/" class=story_link> <div class="article_text_elements"> <h4>Ransomware negotiator weighs in on the extortion payment debate with El Reg</h4> <div class=standfirst> <span class="label">Interview</span>&nbsp;As gang tactics get nastier while attacks hit all-time highs</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="12 May 2024 20:03" data-epoch="1715544194">12 May 2024</span> | <span class="comment light_bg_comments">43</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/05/11/critical_infrastructure_security_claroty/" class=story_link> <div class="article_text_elements"> <h4>Critical infrastructure security will stay poor until everyone pulls together</h4> <div class=standfirst> <span class="label">Interview</span>&nbsp;Claroty CEO Yaniv Vardi tells us what's needed to defend vital networks</div> <div class=time_comments> <span class="section_name">Public Sector</span><span class="time_stamp" title="11 May 2024 17:15" data-epoch="1715447708">11 May 2024</span> | <span class="comment light_bg_comments">12</span></div> </div> </a> </article> <article> <a href="/2024/05/09/exwhite_house_election_threat_hunter/" class=story_link> <div class="article_text_elements"> <h4>Ex-White House election threat hunter weighs in on what to expect in November</h4> <div class=standfirst> <span class="label">Interview</span>&nbsp;Spoiler alert: We're gonna talk about AI</div> <div class=time_comments> <span class="section_name">Public Sector</span><span class="time_stamp" title="09 May 2024 21:03" data-epoch="1715288582">09 May 2024</span> | <span class="comment light_bg_comments">36</span></div> </div> </a> </article> <article> <a href="/2024/05/08/mikko_ransomware_decade/" class=story_link> <div class="article_text_elements"> <h4>Ten years since the first corp ransomware, Mikko Hyppönen sees no end in sight</h4> <div class=standfirst> <span class="label">Interview</span>&nbsp;On the plus side, infosec's a good bet for a long, stable career</div> <div class=time_comments> <span class="section_name">Malware Month</span><span class="time_stamp" title="08 May 2024 07:31" data-epoch="1715153475">08 May 2024</span> | <span class="comment light_bg_comments">24</span></div> </div> </a> </article> <article> <a href="/2024/05/08/rsa_conference_svp_interview/" class=story_link> <div class="article_text_elements"> <h4>From infosec to skunks, RSA Conference SVP spills the tea</h4> <div class=standfirst> <span class="label">Interview</span>&nbsp;Keynotes, physical security, playlists … the buck stops with Linda Gray Martin</div> <div class=time_comments> <span class="section_name">Spotlight on RSA</span><span class="time_stamp" title="08 May 2024 04:03" data-epoch="1715140986">08 May 2024</span> | <span class="comment light_bg_no_comments"></span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/05/08/unitedhealths_egregious_negligence/" class=story_link> <div class="article_text_elements"> <h4>UnitedHealth's 'egregious negligence' led to Change Healthcare ransomware infection</h4> <div class=standfirst> <span class="label">Interview</span>&nbsp;'I'm blown away by the fact that they weren't using MFA'</div> <div class=time_comments> <span class="section_name">Spotlight on RSA</span><span class="time_stamp" title="08 May 2024 02:58" data-epoch="1715137092">08 May 2024</span> | <span class="comment light_bg_comments">25</span></div> </div> </a> </article> <article> <a href="/2024/05/06/cisa_alert_dt_bugs/" class=story_link> <div class="article_text_elements"> <h4>CISA says 'no more' to decades-old directory traversal bugs</h4> <div class=standfirst>Recent attacks on healthcare thrust infosec agency into alert mode</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="06 May 2024 13:37" data-epoch="1715002627">06 May 2024</span> | <span class="comment light_bg_comments">13</span></div> </div> </a> </article> <article> <a href="/2024/05/03/it_might_take_a_decade/" class=story_link> <div class="article_text_elements"> <h4>It may take decade to shore up software supply chain security, says infosec CEO</h4> <div class=standfirst> <span class="label">interview</span>&nbsp;Sure, we're waking to the risk, but we gotta get outta bed, warns Endor Labs founder Varun Badhwar</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="03 May 2024 17:30" data-epoch="1714757415">03 May 2024</span> | <span class="comment light_bg_comments">27</span></div> </div> </a> </article> <article> <a href="/2024/05/01/qanta_app_glitch/" class=story_link> <div class="article_text_elements"> <h4>Qantas app glitch sees boarding passes fly to other accounts</h4> <div class=standfirst>Issue now resolved and isn't thought to be the work of criminals</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="01 May 2024 15:03" data-epoch="1714575789">01 May 2024</span> | <span class="comment light_bg_comments">8</span></div> </div> </a> </article> </div> <div class="srow rt-2c"> <div class="bird ad-eagle"> <div class="bird_wrapper"> <div class="ad_inner_wrap"> <div aria-hidden="true" class="adun" data-pos="mid" data-raptor="eagle" data-xsm=",mpu,dmpu," data-sm=",mpu,dmpu," data-md=",mpu,dmpu," data-xmd=",mpu,dmpu," data-lg=",mpu,dmpu," data-xlg=",mpu,dmpu," data-xxlg=",mpu,dmpu,"> <noscript> <a href="https://pubads.g.doubleclick.net/gampad/jump?co=1&amp;iu=/6978/reg_security/cso&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=3&amp;c=33Z0Ku6tFJjItPH3TcefCwgwAAANU&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0" target="_blank"> <img src="https://pubads.g.doubleclick.net/gampad/ad?co=1&amp;iu=/6978/reg_security/cso&amp;sz=300x50%7C300x100%7C300x250%7C300x251%7C300x252%7C300x600%7C300x601&amp;tile=3&amp;c=33Z0Ku6tFJjItPH3TcefCwgwAAANU&amp;t=ct%3Dns%26unitnum%3D3%26raptor%3Deagle%26pos%3Dmid%26test%3D0" alt=""> </a> </noscript> </div> </div> </div> </div> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/04/30/unitedhealth_ceo_ransom/" class=story_link> <div class="article_text_elements"> <h4>UnitedHealth CEO: 'Decision to pay ransom was mine'</h4> <div class=standfirst> <span class="label">Updated</span>&nbsp;Congress to hear how Citrix MFA snafu led to massive data theft, $870M+ loss</div> <div class=time_comments> <span class="section_name">Malware Month</span><span class="time_stamp" title="30 Apr 2024 19:51" data-epoch="1714506670">30 Apr 2024</span> | <span class="comment light_bg_comments">28</span></div> </div> </a> </article> <article> <a href="/2024/04/29/canada_london_drugs/" class=story_link> <div class="article_text_elements"> <h4>London Drugs closes all of its pharmacies following 'cybersecurity incident'</h4> <div class=standfirst> <span class="label">Updated</span>&nbsp;Canadian stores shuttered 'until further notice'</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="29 Apr 2024 18:21" data-epoch="1714414895">29 Apr 2024</span> | <span class="comment light_bg_comments">20</span></div> </div> </a> </article> <article> <a href="/2024/04/29/uk_lays_password_legislation/" class=story_link> <div class="article_text_elements"> <h4>UK lays down fresh legislation banning crummy default device passwords</h4> <div class=standfirst>New laws mean vendors need to make clear how long you'll get updates too</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="29 Apr 2024 11:45" data-epoch="1714391109">29 Apr 2024</span> | <span class="comment light_bg_comments">77</span></div> </div> </a> </article> <article> <a href="/2024/04/26/kaiser_patient_data/" class=story_link> <div class="article_text_elements"> <h4>Kaiser Permanente handed over 13.4M people's data to Microsoft, Google, others</h4> <div class=standfirst>Ouch!</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="26 Apr 2024 18:14" data-epoch="1714155252">26 Apr 2024</span> | <span class="comment light_bg_comments">8</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/04/24/management_company_settles_for_184m/" class=story_link> <div class="article_text_elements"> <h4>Management company settles for $18.4M after nuclear weapons plant staff fudged their timesheets</h4> <div class=standfirst>The firm 'fessed up to staff misconduct and avoided criminal liability</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="24 Apr 2024 15:00" data-epoch="1713970809">24 Apr 2024</span> | <span class="comment light_bg_comments">10</span></div> </div> </a> </article> <article> <a href="/2024/04/18/ransomware_octapharma_plasma/" class=story_link> <div class="article_text_elements"> <h4>Ransomware feared as IT 'issues' force Octapharma Plasma to close 150+ centers</h4> <div class=standfirst> <span class="label">Updated</span>&nbsp;Source blames BlackSuit infection – as separately ISP Frontier confirms cyberattack</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="18 Apr 2024 22:27" data-epoch="1713479229">18 Apr 2024</span> | <span class="comment light_bg_comments">9</span></div> </div> </a> </article> <article> <a href="/2024/04/17/russia_sandworm_cyberattacks_water/" class=story_link> <div class="article_text_elements"> <h4>Kremlin's Sandworm blamed for cyberattacks on US, European water utilities</h4> <div class=standfirst>Water tank overflowed during one system malfunction, says Mandiant</div> <div class=time_comments> <span class="section_name">Research</span><span class="time_stamp" title="17 Apr 2024 19:56" data-epoch="1713383765">17 Apr 2024</span> | <span class="comment light_bg_comments">10</span></div> </div> </a> </article> <article> <a href="/2024/04/16/mgm_ftc_lawsuit/" class=story_link> <div class="article_text_elements"> <h4>MGM says FTC can't possibly probe its ransomware downfall – watchdog chief Lina Khan was a guest at the time</h4> <div class=standfirst>What a twist!</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="16 Apr 2024 20:32" data-epoch="1713299526">16 Apr 2024</span> | <span class="comment light_bg_comments">19</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/04/10/x_fixes_url_blunder/" class=story_link> <div class="article_text_elements"> <h4>X fixes URL blunder that could enable convincing social media phishing campaigns</h4> <div class=standfirst>Poorly implemented rule allowed miscreants to deceive users with trusted URLs</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="10 Apr 2024 10:37" data-epoch="1712745434">10 Apr 2024</span> | <span class="comment light_bg_comments">27</span></div> </div> </a> </article> <article> <a href="/2024/04/03/city_of_hope_data_theft/" class=story_link> <div class="article_text_elements"> <h4>Nearly 1M medical records feared stolen from City of Hope cancer centers</h4> <div class=standfirst>Is there no cure for this cyber-plague?</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="03 Apr 2024 23:33" data-epoch="1712187189">03 Apr 2024</span> | <span class="comment light_bg_comments">7</span></div> </div> </a> </article> <article> <a href="/2024/04/01/xz_backdoor_open_source/" class=story_link> <div class="article_text_elements"> <h4>Malicious xz backdoor reveals fragility of open source</h4> <div class=standfirst> <span class="label">Analysis</span>&nbsp;This time, we got lucky. It mostly affected bleeding-edge distros. But that's not a defense strategy</div> <div class=time_comments> <span class="section_name">Devops</span><span class="time_stamp" title="01 Apr 2024 21:16" data-epoch="1712006166">01 Apr 2024</span> | <span class="comment light_bg_comments">98</span></div> </div> </a> </article> <article> <a href="/2024/03/29/malicious_backdoor_xz/" class=story_link> <div class="article_text_elements"> <h4>Malicious SSH backdoor sneaks into xz, Linux world's data compression library</h4> <div class=standfirst>STOP USAGE OF FEDORA RAWHIDE, says Red Hat while Debian Unstable and others also affected</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="29 Mar 2024 21:58" data-epoch="1711749516">29 Mar 2024</span> | <span class="comment light_bg_comments">123</span></div> </div> </a> </article> </div> <div class="srow rt-2c"> <div class="bird ad-hawk"> <div class="bird_wrapper"> <div class="ad_inner_wrap"> <div aria-hidden="true" class="adun" data-pos="top" data-raptor="hawk" data-xsm=",fluid,mpu," data-sm=",fluid,mpu," data-md=",fluid,mpu," data-md=",fluid,leaderboard,mpu," data-lg=",fluid,leaderboard,mpu," data-xlg=",fluid,billboard,superleaderboard,leaderboard,mpu," data-xxlg=",fluid,billboard,superleaderboard,brandwidth,brandimpact,leaderboard,mpu,"></div> </div> </div> </div> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/03/28/germany_microsoft_exchange_patch/" class=story_link> <div class="article_text_elements"> <h4>These 17,000 unpatched Microsoft Exchange servers are a ticking time bomb</h4> <div class=standfirst>One might say this is a wurst case scenario</div> <div class=time_comments> <span class="section_name">Patches</span><span class="time_stamp" title="28 Mar 2024 07:45" data-epoch="1711611906">28 Mar 2024</span> | <span class="comment light_bg_comments">44</span></div> </div> </a> </article> <article> <a href="/2024/03/27/ray_ai_framework_bug/" class=story_link> <div class="article_text_elements"> <h4>'Thousands' of businesses at mercy of miscreants thanks to unpatched Ray AI flaw</h4> <div class=standfirst>Anyscale claims issue is 'long-standing design decision' – as users are raided by intruders</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="27 Mar 2024 20:40" data-epoch="1711572007">27 Mar 2024</span> | <span class="comment light_bg_comments">14</span></div> </div> </a> </article> <article> <a href="/2024/03/26/software_risk_scores/" class=story_link> <div class="article_text_elements"> <h4>Row breaks out over true severity of two DNSSEC flaws</h4> <div class=standfirst> <span class="label">Updated</span>&nbsp;Some of us would be happy being rated 7.5 out of 10, just sayin'</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="26 Mar 2024 08:24" data-epoch="1711441453">26 Mar 2024</span> | <span class="comment light_bg_comments">11</span></div> </div> </a> </article> <article> <a href="/2024/03/18/google_firebase_cloud_security/" class=story_link> <div class="article_text_elements"> <h4>Don't be like these 900+ websites and expose millions of passwords via Firebase</h4> <div class=standfirst>Warning: Poorly configured Google Cloud databases spill billing info, plaintext credentials</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="18 Mar 2024 21:29" data-epoch="1710797353">18 Mar 2024</span> | <span class="comment light_bg_comments">11</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/03/12/meta_vp_infrastructure_allegations/" class=story_link> <div class="article_text_elements"> <h4>Meta sues ex infra VP for allegedly stealing top-secret datacenter blueprints</h4> <div class=standfirst>Exec accused of using own work PC to swipe confidential AI and staffing docs for stealth cloud startup</div> <div class=time_comments> <span class="section_name">PaaS + IaaS</span><span class="time_stamp" title="12 Mar 2024 22:39" data-epoch="1710283152">12 Mar 2024</span> | <span class="comment light_bg_comments">4</span></div> </div> </a> </article> <article> <a href="/2024/03/08/magnet_goblin_ivanti/" class=story_link> <div class="article_text_elements"> <h4>Cybercrime crew Magnet Goblin bursts onto the scene exploiting Ivanti holes</h4> <div class=standfirst>Plus: CISA pulls plug on couple of systems feared compromised</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="08 Mar 2024 22:55" data-epoch="1709938525">08 Mar 2024</span> | <span class="comment light_bg_comments">2</span></div> </div> </a> </article> <article> <a href="/2024/03/08/securing_opensource_software_whose_job/" class=story_link> <div class="article_text_elements"> <h4>Securing open source software: Whose job is it, anyway?</h4> <div class=standfirst>CISA announces more help, and calls on app makers to step up</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="08 Mar 2024 01:02" data-epoch="1709859730">08 Mar 2024</span> | <span class="comment light_bg_comments">21</span></div> </div> </a> </article> <article> <a href="/2024/03/07/doj_google_ai_theft_indictment/" class=story_link> <div class="article_text_elements"> <h4>Chinese chap charged with stealing Google’s AI datacenter secrets</h4> <div class=standfirst>Moonlighted for PRC companies after side-stepping Big G's security, allegedly</div> <div class=time_comments> <span class="section_name">On-Prem</span><span class="time_stamp" title="07 Mar 2024 00:37" data-epoch="1709771843">07 Mar 2024</span> | <span class="comment light_bg_comments">13</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/03/06/fbi_ransomware_cybercrime_costs/" class=story_link> <div class="article_text_elements"> <h4>FBI: Critical infrastructure suffers spike in ransomware attacks</h4> <div class=standfirst>Jump in overall cybercrime reports, $60M-plus reportedly lost to extortionists alone, Feds reckon</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="06 Mar 2024 20:49" data-epoch="1709758171">06 Mar 2024</span> | <span class="comment light_bg_comments">4</span></div> </div> </a> </article> <article> <a href="/2024/03/05/ip_address_xposure_now_a/" class=story_link> <div class="article_text_elements"> <h4>IP address X-posure now a feature on Musk's social media thing</h4> <div class=standfirst>Just a little FYI</div> <div class=time_comments> <span class="section_name">Personal Tech</span><span class="time_stamp" title="05 Mar 2024 16:18" data-epoch="1709655484">05 Mar 2024</span> | <span class="comment light_bg_comments">33</span></div> </div> </a> </article> <article> <a href="/2024/02/27/sandvine_us_entity_list/" class=story_link> <div class="article_text_elements"> <h4>Sandvine put on America's export no-fly list after Egypt used network tech for spying</h4> <div class=standfirst>Canadian network box maker floats in denial</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="27 Feb 2024 20:22" data-epoch="1709065358">27 Feb 2024</span> | <span class="comment light_bg_comments">11</span></div> </div> </a> </article> <article> <a href="/2024/02/25/security_not_different/" class=story_link> <div class="article_text_elements"> <h4>Security is hard because it has to be right all the time? Yeah, like everything else</h4> <div class=standfirst> <span class="label">Systems Approach</span>&nbsp;It takes only one bottleneck or single point of failure to ruin your week</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="25 Feb 2024 16:09" data-epoch="1708877352">25 Feb 2024</span> | <span class="comment light_bg_comments">28</span></div> </div> </a> </article> </div> <div class="srow rt-2c"> <div class="bird ad-buzzard"> <div class="bird_wrapper"> <div class="ad_inner_wrap"> <div aria-hidden="true" class="adun" data-pos="btm" data-raptor="buzzard" data-xsm=",fluid,mpu,dmpu," data-sm=",fluid,mpu,dmpu," data-md=",fluid,mpu,dmpu," data-xmd=",fluid,leaderboard,mpu," data-lg=",fluid,mpu,leaderboard," data-xlg=",fluid,billboard,superleaderboard,mpu,leaderboard," data-xxlg=",fluid,billboard,superleaderboard,brandwidth,brandimpact,mpu,leaderboard,"></div> </div> </div> </div> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/02/17/google_ai_magika/" class=story_link> <div class="article_text_elements"> <h4>Google open sources file-identifying Magika AI for malware hunters and others</h4> <div class=standfirst>Cool, but it's 2024 – needs more hype, hand wringing, and flashy staged demos to be proper ML</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="17 Feb 2024 02:10" data-epoch="1708135811">17 Feb 2024</span> | <span class="comment light_bg_comments">10</span></div> </div> </a> </article> <article> <a href="/2024/02/16/quest_diagnostics_california_settlement/" class=story_link> <div class="article_text_elements"> <h4>Quest Diagnostics pays $5M after mixing patient medical data with hazardous waste</h4> <div class=standfirst>Will cough up less than two days of annual profit in settlement – and California calls this a win</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="16 Feb 2024 01:20" data-epoch="1708046413">16 Feb 2024</span> | <span class="comment light_bg_comments">12</span></div> </div> </a> </article> <article> <a href="/2024/02/08/us_tech_industry_changes/" class=story_link> <div class="article_text_elements"> <h4>IT suppliers hacked off with Uncle Sam's demands in aftermath of cyberattacks</h4> <div class=standfirst>Plan says to hand over keys to networks – and report intrusions within eight hours of discovery</div> <div class=time_comments> <span class="section_name">Public Sector</span><span class="time_stamp" title="08 Feb 2024 00:06" data-epoch="1707350760">08 Feb 2024</span> | <span class="comment light_bg_comments">36</span></div> </div> </a> </article> <article> <a href="/2024/02/07/kaspersky_infosec_cso/" class=story_link> <div class="article_text_elements"> <h4>Half of polled infosec pros say their degree was less than useful for real-world work</h4> <div class=standfirst>The other half paid attention in class?</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="07 Feb 2024 20:31" data-epoch="1707337876">07 Feb 2024</span> | <span class="comment light_bg_comments">18</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/02/06/dutch_defense_china_cyberattack/" class=story_link> <div class="article_text_elements"> <h4>Chinese Coathanger malware hung out to dry by Dutch defense department</h4> <div class=standfirst>Attack happened in 2023 using a bespoke backdoor, confirming year-old suspicions</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="06 Feb 2024 17:15" data-epoch="1707239707">06 Feb 2024</span> | <span class="comment light_bg_comments">13</span></div> </div> </a> </article> <article> <a href="/2024/02/02/ftc_blackbaud_settlement/" class=story_link> <div class="article_text_elements"> <h4>Blackbaud settles with FTC after that IT breach exposed millions of people's info</h4> <div class=standfirst>Cloud software slinger admits no guilt, promises better basic security hygiene</div> <div class=time_comments> <span class="section_name">Cyber-crime</span><span class="time_stamp" title="02 Feb 2024 21:12" data-epoch="1706908340">02 Feb 2024</span> | <span class="comment light_bg_comments">6</span></div> </div> </a> </article> <article> <a href="/2024/02/02/cloudflare_okta_atlassian/" class=story_link> <div class="article_text_elements"> <h4>Cloudflare sheds more light on Thanksgiving security breach in which tokens, source code accessed by suspected spies</h4> <div class=standfirst>Atlassian systen compromised via October Okta intrusion</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="02 Feb 2024 01:12" data-epoch="1706836366">02 Feb 2024</span> | <span class="comment light_bg_comments">14</span></div> </div> </a> </article> <article> <a href="/2024/02/01/deepfake_threat_biometrics/" class=story_link> <div class="article_text_elements"> <h4>Rise of deepfake threats means biometric security measures won't be enough</h4> <div class=standfirst>Defenses need a rethink in face of increasing sophistication</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="01 Feb 2024 18:45" data-epoch="1706813108">01 Feb 2024</span> | <span class="comment light_bg_comments">18</span></div> </div> </a> </article> </div> <div class="img_lite_srow img_lite_rt-1a"> <article> <a href="/2024/01/29/solarwinds_sec_lawsuit/" class=story_link> <div class="article_text_elements"> <h4>SolarWinds slams SEC lawsuit against it as 'unprecedented' victim blaming</h4> <div class=standfirst>18,000 customers, including the Pentagon and Microsoft, may have other thoughts</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="29 Jan 2024 20:52" data-epoch="1706561548">29 Jan 2024</span> | <span class="comment light_bg_comments">16</span></div> </div> </a> </article> <article> <a href="/2024/01/27/microsoft_cozy_bear_mfa/" class=story_link> <div class="article_text_elements"> <h4>Microsoft sheds some light on Russian email heist – and how to learn from Redmond's mistakes</h4> <div class=standfirst>Step one, actually turn on MFA</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="27 Jan 2024 00:32" data-epoch="1706315564">27 Jan 2024</span> | <span class="comment light_bg_comments">17</span></div> </div> </a> </article> <article> <a href="/2024/01/26/security_courses_requirements/" class=story_link> <div class="article_text_elements"> <h4>Wait, security courses aren't a requirement to graduate with a computer science degree?</h4> <div class=standfirst> <span class="label">Comment</span>&nbsp;And software makers seem to be OK with this, apparently</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="26 Jan 2024 21:28" data-epoch="1706304487">26 Jan 2024</span> | <span class="comment light_bg_comments">64</span></div> </div> </a> </article> <article> <a href="/2024/01/24/microsoft_latest_breach_cozy_bear/" class=story_link> <div class="article_text_elements"> <h4>What Microsoft's latest email breach says about this IT security heavyweight</h4> <div class=standfirst> <span class="label">Comment</span>&nbsp;Senator Wyden tells The Reg this latest infosec lapse is 'inexcusable'</div> <div class=time_comments> <span class="section_name">CSO</span><span class="time_stamp" title="24 Jan 2024 11:02" data-epoch="1706094145">24 Jan 2024</span> | <span class="comment light_bg_comments">45</span></div> </div> </a> </article> </div> <a class="reg_btn_primary wide" data-unit-type="more_stories_link" href="/security/cso/earlier/2/">MORE STORIES</a> </div> </div> <div id=boot> <div aria-hidden="true" class="adun" data-pos="btm" data-raptor="owl" data-xsm=",fluid,mpu,dmpu," data-sm=",fluid,mpu,dmpu," data-md=",fluid,mpu,dmpu," data-xmd=",fluid,leaderboard,mpu," data-lg=",fluid,mpu,leaderboard," data-xlg=",fluid,billboard,superleaderboard,mpu,leaderboard," data-xxlg=",fluid,billboard,superleaderboard,brandwidth,brandimpact,mpu,leaderboard,"></div> </div> <div id=footer> <div class="footer_slogan"> <div class="footer_wrapper"> <p>The Register <img class="vulture_icon" src="/design_picker/d518b499f8a6e2c65d4d8c49aca8299d54b03012/graphics/icon/vulture_white.png" alt="icon"> Biting the hand that feeds IT</p> </div> </div> <div class="footer_wrapper"> <div class=foot_wrapper> <div class="left_block"> <div class="foot_list"> <h4>About Us<img loading="lazy" width="7" height="11" alt="" src="/design_picker/d2e337b97204af4aa34dda04c4e5d56d954b216f/graphics/icon/footer_mob_nav_arrow_black.svg" class="expand_arrow"></h4> <ul> <li><a href="https://www.theregister.com/Profile/contact/">Contact us</a></li> <li><a target=_blank rel=noopener href="https://www.theregister.com/AdvertiseWithUs/">Advertise with us</a></li> <li><a href="https://www.theregister.com/Profile/about_the_register/">Who we are</a></li> </ul> </div> <div class="foot_list more_us"> <h4>Our Websites<img loading="lazy" width="7" height="11" alt="" src="/design_picker/d2e337b97204af4aa34dda04c4e5d56d954b216f/graphics/icon/footer_mob_nav_arrow_black.svg" class="expand_arrow"></h4> <ul> <li><a href="https://www.nextplatform.com/">The Next Platform</a></li> <li><a href="https://devclass.com/">DevClass</a></li> <li><a href="https://blocksandfiles.com/">Blocks and Files</a></li> </ul> </div> <div class="foot_list privacy"> <h4>Your Privacy<img loading="lazy" width="7" height="11" alt="" src="/design_picker/d2e337b97204af4aa34dda04c4e5d56d954b216f/graphics/icon/footer_mob_nav_arrow_black.svg" class="expand_arrow"></h4> <ul> <li><a href="https://www.theregister.com/Profile/cookies/">Cookies Policy</a></li> <li><a href="https://www.theregister.com/Profile/privacy/">Privacy Policy</a></li> <li><a href="https://www.theregister.com/Profile/terms_and_conditions_of_use/">Ts &amp; Cs</a></li> </ul> </div> </div> <div class="right_block"> <div class="foot_list"> <a href="https://situationpublishing.com/" id="sitpub_logo"> <img loading="lazy" width="250" alt="Situation Publishing" src="/design_picker/d2e337b97204af4aa34dda04c4e5d56d954b216f/graphics/std/sitpublogo_2022.png"> </a> <p> Copyright. All rights reserved © 1998–2024 </p> </div> </div> <noscript><img width="1" height="1" src="/Design/graphics/std/transparent_pixel.png" alt="no-js"></noscript> </div> </div> </div> <div id=end_scripts> <script> if (typeof(ElReg.Ga.sendPageView) === 'function') { ElReg.Ga.sendPageView('reg_security/cso','0df13fad2ea597c71ae99fa84c3f976d','0df13fad2ea597c71ae99fa84c3f976d'); } </script> <script> $(function() { RegUtils.set_bucket_group(830) }); </script> </div> <!--[if IE]> <p id=unsupported_browser>The Register does not support such an old IE version. Please upgrade your browser. <img src="https://go.theregister.com/k/abb_oldie> </p> <![endif]--></div> </body> </html>

Pages: 1 2 3 4 5 6 7 8 9 10