No More Ransom project five-years in The project was launched in 2016 as a public-private partnership between European law enforcement and security industry leaders McAfee, and Kaspersky. Five years into the project, it now boasts 170 members, and claims to…
NSO Group says to blame its customers In response to criticism for its Pegasus spyware being found on a number of high profile world leaders’ devices, NSO Group reiterated that its software is only made available to military, law enforcement…
Israel creates task force to look into NSO spyware Reuter’s sources say Israel has created a senior inter-ministerial team to look into allegations that spyware sold by NSO Group has been abused on a global scale. We’ve covered the impacts…
China issues new zero-day rules New rules issued by the Cyberspace Administration of China state that no one in the country “may ‘collect, sell or publish information on network product security vulnerabilities.” China’s 2017 national intelligence law already requires all…
Ransomwhere site hopes to provide transparency Jack Cable, a security architect with the Krebs Stamos Group, noticed that nobody was collecting public data despite the bitcoin ledger being publicly viewable, so he launched a crowdsourced ransom payments tracking website called…
Russian APT targets Republican National Committee Bloomberg’s sources say the threat actors were part of APT 29 or Cozy Bear, previously tied to the SolarWinds supply chain attack and the Democratic National Committee breach in 2016. In response to the…
REvil confirms Kaseya attack The operators of the REvil ransomware gang confirmed that they were responsible for the recent supply chain attack against Kaseya, although code references had already made their responsibility clear. While individual attacks against MSPs and other…
Secrecy orders abound in Microsoft’s government data requests Microsoft’s customer security head Tom Burt disclosed that one-third of all government data requests the company receives are issued with secrecy clauses that prevents Microsoft from disclosing it to the subject of…
Windows 11 CPU confusion continues Last week, Microsoft said CPUs with Trusted Platform Module 1.2 would be supported except on new OEM builds where it would need TPM 2.0. However in a blog post yesterday, the company added more uncertainty.…
Dell bug puts 30 million PCs at risk Security researchers at Eclypsium disclosed four major security vulnerabilities in the BIOSConnect feature of Dell SupportAssist, opening the door to remote code execution within the BIOS. BIOSConnect is a utility that allows…
