The Register-Security.

"The one interview question that will protect you from North Korean fake workers."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 29 April 2025, 1416 UTC.

Content and Source:  Email subscription via https://feedly.com.

 https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fwww.theregister.co.uk%2Fsecurity%2Fheadlines.atom

Please check email link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

 The Register – Security

96K followers30 articles per week

#security#tech

32

Most popular

The one interview question that will protect you from North Korean fake workers

by Iain Thomson / 5h

FBI and others list how to spot NK infiltrators, but AI will make it harder RSAC Concerned a new recruit might be a North Korean stooge out to steal intellectual property and then hit an org with malware? There is an answer, for the moment at least.…

China is using AI to sharpen every link in its attack chain, FBI warns

by Jessica Lyons / 2h

Artificial intelligence is helping Beijing's goons break in faster and stay longer RSAC The biggest threat to US critical infrastructure, according to FBI Deputy Assistant Director Cynthia Kaiser, can be summed up in one word: "China."…

Infosec pros tell Trump to quit bullying Chris Krebs – it's undermining security

Experts defend Chris Krebs against Trump

•

by Connor Jones / 54min

Top voices warn that political retaliation puts democracy and national defense at risk The Electronic Frontier Foundation (EFF) and numerous infosec leaders are lobbying US President Donald Trump to drop his enduring investigation into Chris Krebs, claiming that targeting the former CISA boss amounts to bullying.…

Yesterday

Swiss boffins admit to secretly posting AI-penned posts to Reddit in the name of science

Unauthorized AI experiment on Reddit

•

by Simon Sharwood / 7h

They’re sorry/not sorry for testing if bots can change minds by pretending to be a trauma counselor or a victim of sexual abuse Researchers from the University of Zurich have admitted to secretly posting AI-generated material to popular Subreddit r/changemyview in the name of science.…

Open source text editor poisoned with malware to target Uyghur users

9 TTPs

•

by Simon Sharwood / 10h

•

Uyghur software used for malware

Who could possibly be behind this attack on an ethnic minority China despises? Researchers at Canada’s Citizen Lab have spotted a phishing campaign and supply chain attack directed at Uyghur people living outside China, and suggest it’s an example of Beijing’s attempts to target the ethnic minority group.…

Ex-Disney employee gets 3 years in the clink for goofy attacks on mousey menus

Disney employee sentenced for hacking

•

by Thomas Claburn / 13h

Florida man altered allergen info, DoSed former colleagues Former Disney employee Michael Scheuer was sentenced to 36 months in prison and fined almost $688,000 for screwing up a software application the entertainment giant used to cook up its restaurant menus.…

Cybersecurity CEO accused of running malware on hospital PC blabs about it on LinkedIn

CEO charged with hospital malware

•

by Brandon Vigliarolo / 14h

Sometimes, silence is the best option An Oklahoma City cybersecurity professional accused of installing spyware on a hospital PC confirmed on LinkedIn key details of the drama.…

How to survive as a CISO aka 'chief scapegoat officer'

by Iain Thomson / 16h

Whistleblowing, email is evidential mail, HR is not your friend, and more discussed by CxO panel RSAC Chief security officers should negotiate personal liability insurance and a golden parachute when they start a new job – in case things go sideways and management tries to scapegoat them for a network breach.…

Admission impossible: NSA, CISA brass absent from RSA Conf

by Jessica Lyons / 16h

Homeland Security boss Noem added as last-minute keynote, mind you RSAC There's a notable absence from this year's RSA Conference that kicked off today in San Francisco: The NSA's State of the Hack panel.…

The future of AI in cybersecurity in a word: Optimistic

by Rich Campagna / 19h

Think of artificial intelligence as your embedded ally Sponsored post AI is reshaping cybersecurity in real time, raising the stakes on both sides of the battlefield. For defenders, it brings speed, precision, and automation at scale, helping security teams detect threats earlier and respond faster than ever. But adversaries aren’t standing still. They’re using AI to sharpen their own tactics, ac

From 112K to 4M folks' data – HR biz attack goes from bad to mega bad

Impact (Enterprise TA0040)

•

by Connor Jones / 1d

•

VeriSource data breach affects 4 million

It took a 1 year+ probe, plenty of client calls for VeriSource to understand just how much of a yikes it has on its hands Houston-based VeriSource Services' long-running probe into a February 2024 digital break-in shows the data of 4 million people – not just a few hundred thousand as it first claimed - was accessed by an "unknown actor".…

Back online after 'catastrophic' attack, 4chan says it's too broke for good IT

4 TTPs

•

23by Connor Jones / 1d

•

4chan returns after hacking incident

Image board hints that rumors of a poorly maintained back end may be true Clearweb cesspit 4chan is back up and running, but says the damage caused by a cyberattack earlier this month was "catastrophic."…

Apr 27, 2025

Microsoft pitches pay-to-patch reboot reduction subscription for Windows Server 2025

by Simon Sharwood / 1d

Redmond reckons $1.50/core/month hotpatch service is worth it to avoid eight Patch Tuesday scrambles each year Microsoft has announced its preview of hotpatching for on-prem Windows Server 2025 will become a paid subscription service in July.…

Samsung admits Galaxy devices can leak passwords through clipboard wormhole

12 TTPs

•

31by Brandon Vigliarolo / 1d

•

Samsung clipboard leaks passwords

PLUS: Microsoft fixes messes China used to attack it; Mitre adds ESXi advice; Employee-tracking screenshots leak; and more! Infosec in brief Samsung has warned that some of its Galaxy devices store passwords in plaintext.…

Apr 25, 2025

Signalgate lessons learned: If creating a culture of security is the goal, America is screwed

by Jessica Lyons / 3d

Infosec is a team sport … unless you're in the White House Opinion Just when it seems they couldn't be that careless, US officials tasked with defending the nation go and do something else that puts American critical infrastructure, national security, and troops' lives in danger.…

Amid CVE funding fumble, 'we were mushrooms, kept in the dark,' says board member

CVE funding crisis averted

•

by Jessica Lyons / 3d

What next for US-bankrolled vulnerability tracker? It's edging closer to a more independent, global future Kent Landfield, a founding member of the Common Vulnerabilities and Exposures (CVE) program and member of the board, learned through social media that the system he helped create was just hours away from losing funding.…

More Ivanti attacks may be on horizon, say experts who are seeing 9x surge in endpoint scans

by Connor Jones / 3d

GreyNoise says it is the kind of activity that typically precedes new vulnerability disclosures Ivanti VPN users should stay alert as IP scanning for the vendor's Connect Secure and Pulse Secure systems surged by 800 percent last week, according to threat intel biz GreyNoise.…

Oh, cool. Microsoft melts bug that froze Server 2025 Remote Desktop sessions

Microsoft releases emergency container updates

•

by Iain Thomson / 3d

Where have we heard this before? Feb security update needs its own fix More than one month after complaints starting flying, Microsoft has fixed a Windows bug that caused some Remote Desktop sessions to freeze.…

M&S stops online orders as 'cyber incident' issues worsen

3 TTPs

•

by Connor Jones / 3d

•

M&S manages cyber incident

One step forward and one step back as earlier hopes of progress dashed by latest update Marks & Spencer has paused online orders for customers via its website and app as the UK retailer continues to wrestle with an ongoing "cyber incident."…

Emergency patch for potential SAP zero-day that could grant full system control

5 TTPs

•

by Connor Jones / 3d

German software giant paywalls details, but experts piece together the clues SAP's latest out-of-band patch is for a perfect 10/10 bug in NetWeaver that experts suspect could have already been exploited as a zero-day.…

Apr 24, 2025

Claims assistance firm fined for cold-calling people who put themselves on opt-out list

by Dan Robinson / 4d

Third-party data supplier also in hot water with Brit regulator over consent issues Britain's data privacy watchdog has slapped a fine of £90k ($120k) on a business that targeted people with intrusive marketing phone calls, despite them being registered with the official "Do Not Call" opt-out service.…

Darcula adds AI to its DIY phishing kits to help would-be vampires bleed victims dry

4 TTPs

•

by Jessica Lyons / 4d

•

Darcula integrates GenAI into phishing

Because coding phishing sites from scratch is a real pain in the neck Darcula, a cybercrime outfit that offers a phishing-as-a-service kit to other criminals, this week added AI capabilities to its kit that help would-be vampires spin up phishing sites in multiple languages more efficiently.…

SSNs and more on 5.5M+ patients feared stolen from Yale Health

3 TTPs

•

by Jessica Lyons / 4d

•

Yale New Haven Health data breach

At least it wasn't Harvard Yale New Haven Health has notified more than 5.5 million people that their private details were likely stolen by miscreants who broke into the healthcare system's network last month.…

Microsoft mystery folder fix might need a fix of its own

Privilege Escalation (Enterprise TA0004)

•

by Richard Speed / 4d

•

CVE-2025-21204

This one weird trick can stop Windows updates dead in their tracks Turns out Microsoft's latest patch job might need a patch of its own, again. This time, the culprit is a mysterious inetpub folder quietly deployed by Redmond, now hijacked by a security researcher to break Windows updates.…

Assassin's Creed maker faces GDPR complaint for forcing single-player gamers online

Ubisoft accused of illegal data collection

•

by Brandon Vigliarolo / 4d

Collecting data from solo players is a Far Cry from being necessary, says noyb For anyone who's ever been frustrated by the need to go online to play a single-player video game, the European privacy specialists at noyb have heard you, and they've filed a complaint against Ubisoft in Austria dealing specifically with the issue. …

M&S takes systems offline as 'cyber incident' lingers

M&S manages cyber incident

•

29by Connor Jones / 5d

Customers told to expect further delays as contactless payments still down UK high street retailer Marks & Spencer says contactless payments are still down following its "cyber incident" and order delays are likely to continue.…

Apr 23, 2025

Your vendor may be the weakest link: Percentage of third-party breaches doubled in a year

by Connor Jones / 5d

Cybercriminals are targeting software shops, accountants, lawyers The percentage of confirmed data breaches involving third-party relationships doubled last year as cybercriminals increasingly exploited weak links in supply chains and partner ecosystems.…

Booby-trapped Alpine Quest Android app geolocates Russian soldiers

Malicious app targets Russian soldiers

•

by Iain Thomson / 5d

Back of the nyet! Russian soldiers are being targeted with an Android app specially altered to pinpoint their location and scan their phones for files, with the ability to exfiltrate sensitive documents if instructed.…

Ransomware scum and other crims bilked victims out of a 'staggering' $16.6B last year, says FBI

Ransomware complaints rise 9% FBI

•

by Jessica Lyons / 5d

Biggest threat to America's critical infrastructure? Ransomware Digital scammers and extortionists bilked businesses and individuals in the US out of a "staggering" $16.6 billion last year, according to the FBI — the highest losses recorded since bureau’s Internet Crime Complaint Center (IC3) started tracking them 25 years ago.…

Blue Shield says it shared health info on up to 4.7M patients with Google Ads

Blue Shield shares health data breach

•

by Jessica Lyons / 5d

Tech giants don't need smartphone mics to target adverts – your insurer just gives your data away, anyway US health insurance giant Blue Shield of California handed sensitive health information belonging to as many as 4.7 million members to Google's advertising empire, likely without these individuals' knowledge or consent.…

Ripple NPM supply chain attack hunts for private keys

7 TTPs

•

by Connor Jones / 5d

•

CVE-2025-32965

A mystery thief and a critical CVE involved in crypto cash grab Many versions of the Ripple ledger (XRPL) official NPM package are compromised with malware injected to steal cryptocurrency.…

We’re calling it now: Agentic AI will win RSAC buzzword Bingo

by Jessica Lyons / 5d

All aboard the hype train RSAC The security industry loves its buzzwords, and this is always on full display at the annual RSA Conference event in San Francisco. Don't believe us? Take a lap on the expo floor, and you'll be bombarded with enough acronyms and over-the-top claims to send you straight to the nearest bar, which will likely serve specialty cocktails with names like The Great CASB and

End of feed