"Critical Wazuh bug explointed in growing Mirai botnet infection."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 10 June 2025, 1627 UTC.

Content and Source:  Email subscription via https://feedly.com.

 https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fwww.theregister.co.uk%2Fsecurity%2Fheadlines.atom

Please check email link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

The Register – Security

97K followers33 articles per week

#security#tech

78

Today

Critical Wazuh bug exploited in growing Mirai botnet infection

6 TTPs

•

by Connor Jones / 27min

The open-source XDR/SIEM provider’s servers are in other botnets’ crosshairs too Cybercriminals are trying to spread multiple Mirai variants by exploiting a critical Wazuh vulnerability, researchers say – the first reported active attacks since the code execution bug was disclosed.…

Winning the war on ransomware with AI: Four real-world use cases

by Jon Kuhn, SVP product management / 1h

AI is your secret weapon against ransomware crooks. Here's how to use it Partner Content Cybercriminals are evolving, and so are the tools to stop them. As AI becomes more accessible, attackers are sharpening their tactics. But here's the good news: defenders are, too. AI is no longer a buzzword; it's a frontline weapon in the fight against ransomware.…

Trump guts digital ID rules, claims they help 'illegal aliens' commit fraud

by Jessica Lyons / 3h

Also axes secure software mandates - optional is the new secure, apparently President Donald Trump late Friday signed a cybersecurity-focused executive order that, in the White House's words, "amends problematic elements of Obama and Biden-era Executive Orders."…

Cloud brute-force attack cracks Google users' phone numbers in minutes

Google fixes phone number vulnerability

•

by Iain Thomson / 4h

Chocolate Factory fixes issue, pays only $5K A researcher has exposed a flaw in Google's authentication systems, opening it to a brute-force attack that left users' mobile numbers up for grabs.…

M&S online ordering system operational 46 days after cyber shutdown

Grocery shortages due to cyber attacks

•

by Connor Jones / 5h

A milestone in cyberattack recovery – but deliveries will take a while and normal service not yet back UK retailer Marks & Spencer has reinstated online orders for some customers, marking a major milestone in its recovery from a cyberattack in April.…

Peep show: 40K IoT cameras worldwide stream secrets to anyone with a browser

by Connor Jones / 6h

Majority of exposures located in the US, including datacenters, healthcare facilities, factories, and more Security researchers managed to access the live feeds of 40,000 internet-connected cameras worldwide and they may have only scratched the surface of what's possible.…

Yesterday

Apple tries to contain itself with lightweight Linux VMs for macOS

Apple launches Swift containerization framework

•

by Thomas Claburn / 9h

Swift-based containerization framework aims to improve performance and security Apple on Monday unveiled an open source containerization framework for creating and running Linux container images on the Mac.…

Let them eat junk food: Major organic supplier to Whole Foods, Walmart, hit by cyberattack

Impact (Enterprise TA0040)

•

23by Jessica Lyons / 23h

•

United Natural Foods cyberattack disrupts

United Natural Foods shut down some of its systems on June 5 after spotting network intruders North American grocery wholesaler United Natural Foods told regulators that a cyber incident temporarily disrupted operations, including its ability to fulfill customer orders.…

Blocking stolen phones from the cloud can be done, should be done, won't be done

London phone theft epidemic alarming

•

by Rupert Goodwins / 1d

Big tech can't be bothered to fight crime. It can barely be bothered even to say so Opinion A lot of our tech world is nightmarish, but sometimes this is literally true.…

Chinese spy crew appears to be preparing for conflict by backdooring 75+ critical orgs

4 TTPs

•

28by Jessica Lyons / 1d

•

GLIB-2-0

SentinelOne discovered the campaign when they tried to hit the security vendor's own servers An IT services company, a European media group, and a South Asian government entity are among the more than 75 companies where China-linked groups have planted malware to access strategic networks should a conflict break out.…

Jun 8, 2025

Are technologists a threat to doing business securely?

by Jane Frankland / 1d

Why an obsession with technology prevents us from reducing human-initiated cybersecurity breaches Partner content Cybersecurity leaders are fighting an invisible war, not just with threat actors but within their own organizations. It's a conflict I've spent a lot of time reflecting on, especially as I think about why certain leaders within organizations make the decisions they do.…

China's asteroid-and-comet hunter probe unfurls a 'solar wing'

by Simon Sharwood / 1d

Plus: Hitachi turns graybeards into AI agents, Tiananmen anniversary censorship, AWS in Taiwan, and more! Asia in brief China's space agency has revealed its Tianwen 2 probe has unfurled a "solar wing."…

US infrastructure could crumble under cyberattack, ex-NSA advisor warns

5 TTPs

•

21by Brandon Vigliarolo / 1d

PLUS: Doxxers jailed; Botnets bounce back; CISA questioned over app-vetting program closure; And more Infosec in Brief If a cyberattack hit critical infrastructure in the US, it would likely crumble, former deputy national security adviser and NSA cybersecurity director Anne Neuberger said last week.…

Enterprises are getting stuck in AI pilot hell, say Chatterbox Labs execs

by Thomas Claburn / 2d

Security, not model performance, is what's stalling adoption Interview Before AI becomes commonplace in enterprises, corporate leaders have to commit to an ongoing security testing regime tuned to the nuances of AI models.…

Jun 6, 2025

ChatGPT used for evil: Fake IT worker resumes, misinfo, and cyber-op assist

3 TTPs

•

by Jessica Lyons / 3d

OpenAI boots accounts linked to 10 malicious campaigns Fake IT workers possibly linked to North Korea, Beijing-backed cyber operatives, and Russian malware slingers are among the baddies using ChatGPT for evil, according to OpenAI's latest threat report.…

Fresh strain of pro-Russian wiper flushes Ukrainian critical infrastructure

6 TTPs

•

by Connor Jones / 4d

•

PathWiper malware targets Ukraine infrastructure

Destructive malware has been a hallmark of Putin's multi-modal war A new strain of wiper malware targeting Ukrainian infrastructure is being linked to pro-Russian hackers, in the latest sign of Moscow's evolving cyber tactics.…

Uncle Sam moves to seize $7.7M laundered by North Korean IT worker ring

DOJ seizes 7.7M$ crypto North Korea

•

by Connor Jones / 4d

The cash has been frozen for more than two years The US is looking to finally capture the $7.74 million it froze over two years ago after indicting alleged money launderers it claims are behind North Korean IT worker schemes.…

Your ransomware nightmare just came true – now what?

by Iain Thomson / 4d

Don't negotiate unless you must, and if so, drag it out as long as you can Feature So, the worst has happened. Computer screens all over your org are flashing up a warning that you've been infected by ransomware, or you've got a message that someone's been stealing information from your server.…

Jun 5, 2025

Uncle Sam puts $10M bounty on RedLine dev and Russia-backed cronies

US offers 10M$ for RedLine tips

•

by Jessica Lyons / 4d

Any info on Maxim Rudometov and his associates? There's $$$ in it for you The US government is offering up to $10 million for information on foreign government-backed threat actors linked to the RedLine malware, including its suspected developer, Maxim Alexandrovich Rudometov.…

AT&T not sure if new customer data dump is déjà vu

Impact (Enterprise TA0040)

•

by Jessica Lyons / 4d

•

Hackers leak 86 million AT&T records

Re-selling info from an earlier breach? Probably. But which one? AT&T is investigating claims that millions of its customers' data are listed for sale on a cybercrime forum in what appears to be a re-release from an earlier hack.…

Cellebrite buys Corellium to help cops bust phone encryption

Cellebrite acquires Corellium for $200M

•

by Iain Thomson / 4d

Trump-pardoned hacker Chris Wade will join the company as CTO Cellebrite has announced a $170 million deal to buy Corellium, bringing together two companies that have made names for themselves by helping law enforcement break into encrypted devices.…

Trump’s cyber czar pick grilled over CISA cuts: ‘If we have a cyber 9/11, you’re the guy’

CISA faces leadership and workforce challenges

•

by Jessica Lyons / 4d

Plus: Plankey's confirmation process 'temporarily delayed' Sean Cairncross, President Donald Trump's nominee to serve as national cyber director, doubled down on taking offensive cyber actions against foreign adversaries during a Senate homeland security committee nomination hearing on Thursday, and refused to condemn the president's proposed cuts to the main US cyber defense agency.…

BidenCash busted as Feds nuke stolen credit card bazaar

BidenCash dark web marketplace seized

•

by Connor Jones / 4d

Dark web crime platform raked in $17M+ over three years of operation Uncle Sam has seized 145 domains tied to BidenCash, the notorious dark web market that trafficked in more than 15 million stolen credit cards.…

More than a hundred backdoored malware repos traced to single GitHub user

Malicious GitHub campaign spreads backdoors

•

by Connor Jones / 5d

Someone went to great lengths to prey on the next generation of cybercrooks Sophos thinks a single person or group called "ischhfd83" is behind more than a hundred backdoored malware variants targeting novice cybercriminals and video game cheaters looking to get their hands on malicious code.…

HMRC: Crooks broke into 100k accounts, stole £43M from British taxpayer in late 2024

2 TTPs

•

by Connor Jones / 5d

•

HMRC faces phishing attack

It’s definitely not a cyberattack though! Really! The UK's tax collections agency says cyberbaddies defrauded it of £47 million ($63 million) late last year, but insists the criminal case was not a cyberattack.…

Jun 4, 2025

AI kept 15-year-old zombie vuln alive, but its time is drawing near

3 TTPs

•

by Thomas Claburn / 5d

Researchers have come up with a fix for a path traversal bug first spotted in 2010 A security bug that surfaced fifteen years ago in a public post on GitHub has survived developers' attempts on its life.…

China accuses Taiwan of running five feeble APT gangs, with US help

by Simon Sharwood / 5d

The authors who claimed America hacked itself to discredit Beijing are back with another report China’s National Computer Virus Emergency Response Center on Thursday published a report in which it claims Taiwan targeted it with a years-long cyber offensive, backed by the USA, but which was so feeble Beijing complains compared it to an ant trying to shake a tree .…

IBM Cloud login breaks for second time this week and Big Blue isn't saying why

by Simon Sharwood / 5d

To make matters worse, IBM's security software has a critical vuln caused by an exposed password IBM isn’t having its best week after the company experienced another cloudy outage and a critical-rated vulnerability.…

Play ransomware crims exploit SimpleHelp flaw in double-extortion schemes

11 TTPs

•

by Jessica Lyons / 5d

Recompiled binaries and phone threats used to boost the pressure Groups linked with the Play ransomware have exploited more than 900 organizations, the FBI said Wednesday, and have developed a number of new techniques in their double-extortion campaigns - including exploiting a security flaw in remote-access tool SimpleHelp if orgs haven't patched it.…

Ukraine strikes Russian bomber-maker with hack attack

Ukrainian intelligence hacks Russian Tupolev

•

88by Iain Thomson / 5d

Drones are not enough Following a daring drone attack on Russian airfields, Ukrainian military intelligence has reportedly also hacked the servers of Tupolev, the Kremlin's strategic bomber maker.…

Ransomware scum leak patient data after disrupting chemo treatments at Kettering

2 TTPs

•

by Jessica Lyons / 5d

•

Kettering Health suffers ransomware attack

Literally adding insult to injury Kettering Health patients who had chemotherapy sessions and pre-surgery appointments canceled due to a ransomware attack in May now have to deal with the painful prospect that their personal info may have been leaked online.…

Fake IT support calls hit 20 orgs, end in stolen Salesforce data and extortion, Google warns

7 TTPs

•

by Jessica Lyons / 6d

•

Vishing attacks target Salesforce customers

Victims include hospitality, retail and education sectors A group of financially motivated cyberscammers who specialize in Scattered-Spider-like fake IT support phone calls managed to trick employees at about 20 organizations into installing a modified version of Salesforce's Data Loader that allows the crims to steal sensitive data.…

Crims stole 40,000 people's data from our network, admits publisher Lee Enterprises

Exfiltration (Enterprise TA0010)

•

by Connor Jones / 6d

Did somebody say ransomware? Not the newspaper group, not even to deny it Regional newspaper publisher Lee Enterprises says data belonging to around 40,000 people was stolen during an attack on its network earlier this year.…