"Ukraine strikes Russian bomber maker with hack attack."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and corespondens.  Accessed on 04 June 22025, 2213 UTC.

Content and Source provided by Email subscription via https://feedly.com.

https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fwww.theregister.co.uk%2Fsecurity%2Fheadlines.atom

Please check email link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

The Register – Security

96K followers31 articles per week

#security#tech

49

Most popular

Ukraine strikes Russian bomber-maker with hack attack

Ukrainian intelligence hacks Russian Tupolev

•

by Iain Thomson / 1h

Drones are not enough Following a daring drone attack on Russian airfields, Ukrainian military intelligence has reportedly also hacked the servers of Tupolev, the Kremlin's strategic bomber maker.…

Fake IT support calls hit 20 orgs, end in stolen Salesforce data and extortion, Google warns

7 TTPs

•

by Jessica Lyons / 7h

•

Vishing attacks target Salesforce customers

Victims include hospitality, retail and education sectors A group of financially motivated cyberscammers who specialize in Scattered-Spider-like fake IT support phone calls managed to trick employees at about 20 organizations into installing a modified version of Salesforce's Data Loader that allows the crims to steal sensitive data.…

Ransomware scum leak patient data after disrupting chemo treatments at Kettering

2 TTPs

•

by Jessica Lyons / 2h

•

Kettering Health suffers ransomware attack

Literally adding insult to injury Kettering Health patients who had chemotherapy sessions and pre-surgery appointments canceled due to a ransomware attack in May now have to deal with the painful prospect that their personal info may have been leaked online.…

Today

Crims stole 40,000 people's data from our network, admits publisher Lee Enterprises

Exfiltration (Enterprise TA0010)

•

by Connor Jones / 8h

Did somebody say ransomware? Not the newspaper group, not even to deny it Regional newspaper publisher Lee Enterprises says data belonging to around 40,000 people was stolen during an attack on its network earlier this year.…

Yesterday

UK CyberEM Command to spearhead new era of armed conflict

by Connor Jones / 13h

Government details latest initiative following announcement last week Revealing more details about the Cyber and Electromagnetic (CyberEM) military domain, the UK's Ministry of Defence (MoD) says "there are pockets of excellence" but improvements must be made to ensure the country's capability meets the needs of national defense.…

Ukraine war spurred infosec vet Mikko Hyppönen to pivot to drones

by Iain Thomson / 14h

Why? There's a war in Europe, Finland has a belligerent neighbor, and cyber is a settled field Interview Mikko Hyppönen has spent the last 34 years creating security software that defends against criminals and state-backed actors, but now he's moving onto drone warfare.…

‘Deliberate attack’ deletes shopping app’s AWS and GitHub resources

2 TTPs

•

by Simon Sharwood / 18h

•

KiranaPro suffers destructive cyberattack

CEO of India's KiranaPro, which brings convenience stores online, vows to name the perp The CEO of Indian grocery ordering app KiranaPro has claimed an attacker deleted its GitHub and AWS resources in a targeted and deliberate attack and vowed to name the perpetrator.…

Meta pauses mobile port tracking tech on Android after researchers cry foul

IoC > 1 URL

•

45by Thomas Claburn / 23h

•

Meta and Yandex de-anonymize Android users

Zuckercorp and Yandex used localhost loophole to tie browser data to app users, say boffins Security researchers say Meta and Yandex used native Android apps to listen on localhost ports, allowing them to link web browsing data to user identities and bypass typical privacy protections.…

You say Cozy Bear, I say Midnight Blizzard, Voodoo Bear, APT29 …

by Jessica Lyons / 23h

Microsoft, CrowdStrike, and pals promise clarity on cybercrew naming, deliver alias salad instead Opinion Microsoft and CrowdStrike made a lot of noise on Monday about teaming up with other threat-intel outfits to "bring clarity to threat-actor naming."…

Google quietly pushes emergency fix for Chrome 0-day as exploit runs wild

3 TTPs

•

by Jessica Lyons / 1d

TAG team spotted the V8 bug first, so you can bet nation-states weren’t far behind Google revealed Monday that it had quietly deployed a configuration change last week to block active exploitation of a Chrome zero-day.…

X's new 'encrypted' XChat feature seems no more secure than the failure that came before it

Musk launches XChat messaging service

•

by Brandon Vigliarolo / 1d

Musk's 'Bitcoin-style encryption' claim has experts scratching their heads Elon Musk's X social media platform is rolling out a new version of its direct messaging feature that the platform owner said had a "whole new architecture," but as with many a Muskian proclamation, there's reason to doubt what's been said. …

Crooks fleece The North Face accounts with recycled logins

7 TTPs

•

200+by Connor Jones / 1d

•

The North Face suffers data breach

Outdoorsy brand blames credential stuffing Joining the long queue of retailers dealing with cyber mishaps is outdoorsy fashion brand The North Face, which says crooks broke into some customer accounts using login creds pinched from breaches elsewhere.…

Microsoft patches the patch that put Windows 11 in a coma

by Richard Speed / 1d

Out-of-band is becoming the norm rather than the exception Microsoft is patching another patch that dumped some PCs into recovery mode with an unhelpful error code.…

Illicit crypto-miners pouncing on lazy DevOps configs that leave clouds vulnerable

by Jessica Lyons / 1d

To stop the JINX-0132 gang behind these attacks, pay attention to HashiCorp, Docker, and Gitea security settings Up to a quarter of all cloud users are at risk of having their computing resources stolen and used to illicitly mine for cryptocurrency, after crims cooked up a campaign that targets publicly accessible DevOps tools.…

Jun 2, 2025

Bling slinger Cartier tells customers to be wary of phishing attacks after intrusion

4 TTPs

•

by Connor Jones / 1d

•

Cartier data breach exposes client information

Nothing terribly valuable taken in data heist, though privacy a little tarnished Global jewelry giant Cartier is writing to customers to confirm their data was exposed to cybercriminals that broke into its systems.…

Ukrainians smuggle drones hidden in cabins on trucks to strike Russian airfields

Zelenskyy claims responsibility for attacks

•

by John E Dunn / 2d

A real-world Trojan Horse attack Ukraine claims it launched a cunning drone strike on Sunday against multiple Russian airbases, hitting over 40 military aircraft and inflicting an estimated $7 billion in damage, in an operation dubbed "Spiderweb."…

US community bank says thieves drained customer data through third party hole

3 TTPs

•

by Connor Jones / 2d

•

MainStreet Bancshares reports data breach

Disclosure at MainStreet Bancshares comes as American finance orgs beg for looser reporting requirements Community bank