A very busy ~ this week in security ~ is now out:
• U.S. charges Russian GRU hackers over Ukraine hacks
• London transit authority hit by cyberattack
• Ransomware roundup: Seattle's libraries, Halliburton
• Spyware makers are thwarting sanctions
• That very difficult YubiKey side-channel attack
• Why the White House wants to fix BGP
• Plus: a brand new cyber cat, and more.
Sign up/RSS: https://this.weekinsecurity.com
Read online: https://mailchi.mp/weekinsecurity/this-week-in-security-september-8-2024-edition
Support/donate: https://ko-fi.com/thisweekinsecurity
This, btw, concludes Wired's coverage of hacker con season, in which everyone debuts their new hacking tricks at Black Hat/Defcon/Usenix. Our many, many stories can be read here:
https://www.wired.com/category/security/
Hopefully we helped get broken stuff fixed and made new friends along the way.
A new edition of ~ this week in security ~ just hit inboxes:
• Ransomware gangs target ESXi bug
• U.K. slaps Electoral Commission over voter rolls breach
• DDoS hits Azure, and a bug only made it worse
• Hacker gets free CSC laundry for life
• Dating apps bugs leaked near-precise locations
• Some depressing data breaches (sorry)
• A very cute cyber-cat, and more.
Sign up/RSS: https://this.weekinsecurity.com
Read online: https://mailchi.mp/weekinsecurity/this-week-in-security-august-4-2024-edition
Support/donate: https://ko-fi.com/thisweekinsecurity
Microsoft now says the CrowdStrike crash hit 8.5 million Windows machines. https://blogs.microsoft.com/blog/2024/07/20/helping-our-customers-through-the-crowdstrike-outage/
I think that's the biggest disruption of computers ever. (Though maybe not the worst, given NotPetya and WannaCry did more lasting damage to hundreds of thousands of machines.)
On July 18, CrowdStrike, an independent cybersecurity company, released a software update that began impacting IT systems globally. Although this was not a Microsoft incident, given it impacts our ecosystem, we want to provide an update on the steps we’ve taken with CrowdStrike and others to remediate and support our customers. Since this event began,...
Cancer patient forced to make terrible decision after Qilin attack on London hospitals. #ransomware
https://www.theregister.com/2024/07/05/qilin_impacts_patient/
Yesterday was pub day for the UK edition of Tracers in the Dark, with a new title: Lords of Crypto Crime.
To all the UK and Aussie folks bugging me about this for the last 18 months, thank you for your patience and hope you enjoy!
https://www.amazon.co.uk/Lords-Crypto-Crime-Invisible-Kingpins-ebook/dp/B0CC8XHV3P
National Crime Agency leads international operation to degrade illegal versions of Cobalt Strike
Hackers con parents into ‘paying extra’ to secure place at Fettes College.
https://www.telegraph.co.uk/news/2024/07/02/hackers-private-school-place-fettes-college-scotland/