Sensitive data on 61K+ patients accessed in Alabama hospital cyberattack Intruder pored over medical records, insurance details, Social Security numbers in some cases Cybersecurity Month03 Oct 2024 |
DOJ, Microsoft seize 107 domains used in Russia's Star Blizzard phishing attacks Winter is coming Cybersecurity Month03 Oct 2024 | 5
Average North American CISO pay now $565K, mainly thanks to one weird trick Best way to boost your package is to leave, or pretend to Cybersecurity Month03 Oct 2024 | 8
Two British-Nigerian men sentenced over multimillion-dollar business email scam Fraudsters targeted local government, colleges, and construction firms in Texas and North Carolina Cybersecurity Month03 Oct 2024 | 11
Ransomware crew infects 100+ orgs monthly with new MedusaLocker variant Exclusive Crooks 'like a sysadmin, with a malicious slant' Cybersecurity Month03 Oct 2024 |
700K+ DrayTek routers are sitting ducks on the internet, open to remote hijacking With 14 serious security flaws found, what a gift for spies and crooks Cybersecurity Month02 Oct 2024 | 17
Two simple give-me-control security bugs found in Optigo network switches used in critical manufacturing Poor use of PHP include() strikes again Cybersecurity Month02 Oct 2024 | 4
NIST's security flaw database still backlogged with 17K+ unprocessed bugs. Not great Logjam 'hurting infosec processes world over' one expert tells us as US body blows its own Sept deadline Cybersecurity Month02 Oct 2024 | 8
'Patch yesterday': Zimbra mail servers under siege through RCE vuln Attacks began the day after public disclosure Cybersecurity Month02 Oct 2024 | 3
Euro cops arrest 4 including suspected LockBit dev chilling on holiday And what looks like proof stolen data was never deleted even after ransom paid Cybersecurity Month01 Oct 2024 | 15
NCA unmasks man it suspects is both 'Evil Corp kingpin' and LockBit affiliate Aleksandr Ryzhenkov alleged to have extorted around $100M from victims, built 60 LockBit attacks Cybersecurity Month01 Oct 2024 |
Australian e-tailer digiDirect customers' info allegedly stolen and dumped online Full names, contact details, and company info – all the fixings for a phishing holiday Cybersecurity Month01 Oct 2024 |
Rackspace internal monitoring web servers hit by zero-day Exclusive Intruders accessed machines via tool bundled with ScienceLogic, 'limited' info taken, customers told not to worry Cybersecurity Month30 Sep 2024 | 11
Ransomware forces hospital to turn away ambulances Only level-one trauma unit in 400 miles crippled Cybersecurity Month30 Sep 2024 | 19
Red team hacker on how she 'breaks into buildings and pretends to be the bad guy' Interview Alethe Denis exposes tricks that made you fall for that return-to-office survey Cybersecurity Month29 Sep 2024 | 66
AT&T sues Broadcom for 'breaking' VMware support extension contract Telco giant slams silicon-and-software shop for trying to bully it into buying software it doesn't want or need, at huge prices Virtualization05 Sep 2024 | 29
Cloud computing hits the nuclear button amid energy crisis Analysis Other options considered too as the power draw on electricity grids continues unabated Cloud Infrastructure Month03 Sep 2024 | 13
Veeam debuts its Proxmox backup tool – and reveals outfit using it to quit VMware More help for Nutanix, too Software02 Sep 2024 | 24
Broadcom has brought VMware down to earth and that’s welcome VMware Explore But users aren’t optimistic it will land softly VMware Explore29 Aug 2024 | 32
Nvidia's growth slows to a mere 122 percent but it’s still topping expectations Still growing in China, ramping Hopper prods and predicting Blackwell billions soon Cloud Infrastructure Month29 Aug 2024 | 10
AI agent promotes itself to sysadmin, trashes boot sequence Fun experiment, but yeah, don't pipe an LLM raw into /bin/bash
The fix for BGP's weaknesses has big, scary, issues of its own, boffins find Bother, given the White House has bet big on RPKI – just like we all rely on immature internet infrastructure that usually works
Two years after entering the graphics card game, Intel has nothing to show for it Comment Chipzilla's AIB market share a rounding error compared to Nvidia, AMD
Bank of America app glitch zeroes out people's balances Updated Unidentified tech issues now resolved
700K+ DrayTek routers are sitting ducks on the internet, open to remote hijacking With 14 serious security flaws found, what a gift for spies and crooks
Microsoft hits go on Windows 11 24H2: Fresh features, bugs, and a whole lotta AI Complete with Copilot Vision – but sessions won't be stored, insists Redmond
Cisco is abandoning the LoRaWAN space, and there's no lifeboat for IoT customers Support stretches to end of 2029, no more maintenance beyond 2026
'Patch yesterday': Zimbra mail servers under siege through RCE vuln Attacks began the day after public disclosure
NIST's security flaw database still backlogged with 17K+ unprocessed bugs. Not great Logjam 'hurting infosec processes world over' one expert tells us as US body blows its own Sept deadline
Public clouds are 'dirty' about VMware's on-prem push, says Broadcom CEO Hock Tan VMware Explore Virtzilla's sales swing decisively to the Cloud Foundation bundle VMware Explore29 Aug 2024 | 8
Gartner warns Omnissa – formerly VMware's end-user compute biz – represents new risks Weak roadmap, tricky migration path, and Broadcom dependencies add up to uncertainty Virtualization28 Aug 2024 |
Google’s Irish bit barn plans denied over eco shortfall DCs on the Emerald Isle better be green, says Dublin council - unless your name is Microsoft Systems27 Aug 2024 | 13
Broadcom boss Hock Tan says public cloud gave IT departments PTSD VMware Explore While datacenter silos have left you ‘so screwed’ Off-Prem27 Aug 2024 | 18
VMware reveals how it will deliver Broadcom's unified hybrid cloud … sometime soon VMware Explore Claims just two management consoles will emerge VMware Explore27 Aug 2024 | 7
The elusive dream of cloud portability: Why migrating workloads isn't so simple Analysis Despite early promises, moving between providers remains a complex and costly endeavor Cloud Infrastructure Month27 Aug 2024 | 18
VMware prepping unified SDK for its core hybrid cloud products VMware Explore Also working to clean up inconsistent APIs and lack of SSO across vSphere, vSAN, NSX, SDDC Manager, vRealize and more Virtualization26 Aug 2024 | 1
The start of the great virtualization migration? How consolidating disparate cloud components with Nutanix can bring multiple benefits Sponsored Feature
Broadcom promised to reform VMware so it enables better hybrid clouds. Will it deliver? VMware Explore It needs to – Virtzilla's customers, allies, and enemies are all pondering off-ramps and trying to lure unhappy users VMware Explore26 Aug 2024 | 8
Open Compute Project seeks standard for concrete, with help from AWS, Google, Meta, and Microsoft There's a lot of CO2 in datacenters, and Big Tech has promised to get to net zero Cloud Infrastructure Month23 Aug 2024 | 10
LG Electronics aims to become a datacenter cooling player, with aircon and immersion tech 2030 vision also calls for its appliances and televisions to turn you into a subscription cash cow Cloud Infrastructure Month22 Aug 2024 | 4
UK competition regulator's cloud probe remedies have global implications Egress fees? Ticked. Spend discounts? Not yet. Software licensing? Might need to shape up, Microsoft Cloud Infrastructure Month21 Aug 2024 | 2
Alibaba and Tencent clouds see demand for CPUs level off, GPUs accelerate Lenovo also cashes in on AI demand, without being able to turn it into profit Off-Prem20 Aug 2024 |
A hybrid multicloud world can still be seamless Nutanix shows how to rule from the center Sponsored Feature
B2B ISP Fastnet staggers back to feet after VMware incident Company continues to investigate root cause VMware Explore19 Aug 2024 | 8
If the world had a hyperscale datacenter capital, it would be... Northern Virginia If you guessed Beijing, sorry – but it is number 2, according to Synergy Research figures Cloud Infrastructure Month15 Aug 2024 | 10
GitHub rolls back database change after breaking itself Git blame an infrastructure update Cloud Infrastructure Month14 Aug 2024 | 14
Icelandic group demos private cloud powered by renewables Sited in Reykjavík, datacenter running on geothermals and hydropower Cloud Infrastructure Month14 Aug 2024 | 8
Another GPU cloud emerges. This time, upstart Foundry Biz set sights beyond just another rent-an-accelerator cluster provider Systems13 Aug 2024 | 1
DEF CON badge disagreement gets physical as firmware dev removed from event stage DEF CON Is it not a strange fate that we should suffer so much fear and doubt for so small a thing? Black Hat and DEF CON13 Aug 2024 | 38
DEF CON Franklin project enlists hackers to harden critical infrastructure Def Con Voting village reports have been so successful, says Jeff Moss, that the whole of DEF CON will now be included Black Hat and DEF CON12 Aug 2024 | 2
Data survival or commercial disaster? How to strengthen your protection against ransomware attacks Sponsored Feature
What a glimpse inside the Black Hat NOC reveals about infosec pros' security habits Black Hat Basic Auth among web traffic? Possible flaw in a well-known commercial VPN product? 'Security has to watch its own things' Black Hat and DEF CON12 Aug 2024 | 3
CrowdStrike president cheered after accepting 'Epic Fail' Pwnie award DEF CON Michael Sentonas hopes trophy will remind staff that failure is unacceptable Offbeat12 Aug 2024 | 53
Alibaba Cloud claims K8s service meshes can require more resources than the apps they run SIGCOMM 2024 Built its own replacement – Canal Mesh – that it says leaves Google's Istio and Ambient eating dust Cloud Infrastructure Month12 Aug 2024 | 9
How to ingeniously and wirelessly inject malware onto someone's nearby Windows PC via Google's Quick Share DEF CON Or rather could, until the web giant was tipped off Black Hat and DEF CON10 Aug 2024 | 16
Secure Web Gateways are anything but as infosec hounds spot dozens of bypasses DEF CON 'Vendors cannot fix' this architectural failure, SquareX founder tells us Black Hat and DEF CON09 Aug 2024 | 20
Software innovation just isn't what it used to be, and Moxie Marlinspike blames Agile black hat Layers of abstraction and speedy development have left engineers unable to understand what lies beneath Black Hat and DEF CON09 Aug 2024 | 66
Ransomware groups are better at web app security than you, says researcher Black Hat Could we please start taking this seriously? Black Hat and DEF CON08 Aug 2024 | 10
Lawyers say US cybersecurity law too ambiguous to protect AI security researchers black hat Been injecting prompts to test the safety of large language models? Better call Saul Black Hat and DEF CON08 Aug 2024 | 1
If you give Copilot the reins, don't be surprised when it spills your secrets Black Hat 'All of the defaults are insecure' Zenity CTO claims Black Hat and DEF CON08 Aug 2024 | 18
Cloud growth puts hyperscalers on track to take up 60% of datacenter capacity by 2029 Enterprises used to spend more on own kit than cloud infra services... now it's the other way around Cloud Infrastructure Month08 Aug 2024 |
ICANN reserves .internal for private use at the DNS level Vint Cerf revealed Google already uses the string, as do plenty of others Cloud Infrastructure Month08 Aug 2024 | 67
Your victim's Windows PC fully patched? Just force undo its updates and exploit away Black Hat This guy showed the world how – with the right level of access Black Hat and DEF CON08 Aug 2024 | 8
Cloud storage lockers from Microsoft and Google used to store and spread state-sponsored malware Black Hat Why run your own evil infrastructure when Big Tech offers robust tools hosted at trusted URLs? Black Hat and DEF CON08 Aug 2024 | 2
Devices with insecure SSH services are everywhere, say infosec duo Black Hat 'Serendipitous' discovery may have you second guessing your appliances Black Hat and DEF CON07 Aug 2024 | 10
AWS 'Bucket Monopoly' attacks could allow complete account takeover Black Hat Vulnerable services fixed by the cloud biz but open source projects still at risk Black Hat and DEF CON07 Aug 2024 | 2
Faulty instructions in Alibaba's T-Head C910 RISC-V CPUs blow away all security Black Hat Let's get physical, physical ... I don't wanna hear your MMU talk Black Hat and DEF CON07 Aug 2024 | 48
Supermicro CEO teases service to build or upgrade datacenters in six months Doubles annual revenue, but warns repeating that will be hard while waiting until March for Nvidia Blackwell Cloud Infrastructure Month07 Aug 2024 | 2
Japan's Fugaku supercomputer released in virtual version that runs in AWS Graviton processors get the job of helping RIKEN achieve HPC world domination HPC07 Aug 2024 | 6
SAP Core AI bugs allowed access to internal network servers, say researchers Black Hat Wiz infoseccers able to promote themselves from humble customer to full-blown admin Black Hat and DEF CON06 Aug 2024 |
Simplifying AI deployment for secure workloads How Nutanix uses GenAI versatility in its GPT-in-a-Box development package Sponsored Feature
Need to move 1.2 exabytes across the world every day? Just Effingo Sigcomm 2024 That’s what Google calls its massively parallel data copy service operating on dozens of clusters Cloud Infrastructure Month06 Aug 2024 | 25
Nvidia's subscription software empire is taking shape Comment $4,500 per GPU per year adds up pretty quick – even faster when you pay by the hour Cloud Infrastructure Month06 Aug 2024 | 23
What AI bubble? Groq rakes in $640M to grow inference cloud In the gold rush, be the one handing out the shovels Cloud Infrastructure Month05 Aug 2024 | 3
Enterprise spend on cloud up sharply as world biz splashes $80B in Q2 Plus: Oracle nudges to top of second tier providers Cloud Infrastructure Month05 Aug 2024 |
Tencent Cloud's home-grown traffic-tamer halves WAN latency Sigcomm 2024 MegaTE can arrange things so each endpoint gets just the network it needs Cloud Infrastructure Month05 Aug 2024 | 3
Lights, camera, AI! Real-time deepfakes coming to DEF CON DEF CON Red teamer finds they're easy to make, which is welcome to produce fodder for detection bots Black Hat and DEF CON04 Aug 2024 | 15
AI boom is reshaping the face of cloud infrastructure Analysis Capex skyrockets as providers prioritize new shiny over traditional server upgrades Cloud Infrastructure Month04 Aug 2024 | 2
Breaking the economy of trust: How busts affect malware gangs Feature It's hard to track down individuals, so why not disrupt the underground market itself? Malware Month02 Aug 2024 | 6
Fortune 50 biz coughed up record-breaking $75M ransom to halt leak of stolen data They say crime doesn't pay. They're right – it's the victims doing the paying Cyber-crime02 Aug 2024 | 12
Amazon: Our cloud growth just sped up. Did you know we are also quite a big retailer? Reveals Kuiper broadband sats to fly later this year and solid Q2 sales Cloud Infrastructure Month02 Aug 2024 | 9
A fresh approach for container management Watch this interview with Nutanix’s Tobi Knaup for tips on managing Kubernetes clusters across on- and off-premises environments Sponsored Post
Five months after takedown, LockBit is a shadow of its former self Feature An unprecedented period for an unparalleled force in cybercrime Malware Month31 Jul 2024 | 19
'Error' in Microsoft's DDoS defenses amplified 8-hour Azure outage A playbook full of strategies and someone fumbles the implementation CSO31 Jul 2024 | 18
'LockBit of phishing' EvilProxy used in more than a million attacks every month Insight Leaves a trail of ransomware infections, data theft, business email compromise in its wake Malware Month30 Jul 2024 | 7
Ransomware gangs are loving this dumb but deadly make-me-admin ESXi vulnerability Get those patches applied – all the big dogs are abusing it VMware Explore30 Jul 2024 | 18
Revamped UK cybersecurity bill couldn't come soon enough, but details are patchy Analysis Long overdue updates include expanded mandatory security incident reporting Malware Month30 Jul 2024 | 28
Desktop hypervisors are not dead: Oracle preps major VirtualBox update Solaris support persists and support for Armed Macs improves VMware Explore30 Jul 2024 | 29
Omnissa, VMware's old end-user biz, emerges with promise of 'AI-infused autonomous workspace' We think this means easier-to-administer virtual desktops with extra shiny VMware Explore26 Jul 2024 | 3
Beware of fake CrowdStrike domains pumping out Lumma infostealing malware PSA: Only accept updates via official channels ... ironically enough Malware Month25 Jul 2024 | 3
Patch management still seemingly abysmal because no one wants the job Comment Are your security and ops teams fighting to pass the buck? Malware Month25 Jul 2024 | 29
VMware sends vSphere 7 into extra time by extending support for six months A nice surprise, but some other vAdmins have an August 1 deadline to sort out subscriptions VMware Explore24 Jul 2024 | 9
FrostyGoop malware shut off heat to 600 Ukraine apartment buildings First nasty to exploit Modbus to screw with operational tech devices Malware Month23 Jul 2024 | 11
Google, Oracle, Microsoft make their case for VMware migrations – HPE on the outer? New instance types and discounts galore, and Broadcom all smiles as its preferred licensing finds more friends VMware Explore22 Jul 2024 | 6
Ransomware continues to pile on costs for critical infrastructure victims Millions more spent without any improvement in recovery times Malware Month17 Jul 2024 | 5
London council accuses watchdog of 'exaggerating' danger of 2020 raid on residents' data You escaped a big fat fine! Take the win and run, won’t you? Malware Month17 Jul 2024 | 26
Iran's MuddyWater phishes Israeli orgs with custom BugSleep backdoor India, Turkey, also being targeted by campaign that relies on corporate email compromise Malware Month17 Jul 2024 | 11
Cyber-crime super-crew Scattered Spider falls in love with RansomHub and Qilin Extortionists left hanging after rivals crawled into the woodwork Malware Month16 Jul 2024 |
Rite Aid admits 2.2 million people’s data stolen by criminals RansomHub allegedly strikes again as its star continues to rise in the cybercrime scene Malware Month16 Jul 2024 | 6
DarkGate, the Swiss Army knife of malware, sees boom after rival Qbot crushed Meet the new boss, same as the old boss Malware Month16 Jul 2024 |
Car dealer software slinger CDK Global said to have paid $25M ransom after cyberattack 15K dealerships take estimated $600M+ hit Malware Month12 Jul 2024 | 16
IcedID henchman gets nine years in clanger for abusing malware to drain bank accounts The slippery Ukrainian national must also pay a hefty $74 million on top of the jail time Malware Month12 Jul 2024 | 7
China's APT41 crew adds a stealthy malware loader and fresh backdoor to its toolbox Meet DodgeBox, son of StealthVector Malware Month12 Jul 2024 |
Japanese space agency spotted zero-day attacks while cleaning up raid on M365 Multiple malware assault saw personal data accessed, rocket science remained safe Security11 Jul 2024 | 12
Malware that is 'not ransomware' wormed its way through Fujitsu Japan's systems IT giant says data exfiltration was extremely difficult to detect Malware Month10 Jul 2024 | 8
Ransomware crews investing in custom data stealing malware BlackByte, LockBit among the criminals using bespoke tools Malware Month10 Jul 2024 |
ViperSoftX variant spotted abusing .NET runtime to disguise data theft Freeware AutoIt also used to hide entire PowerShell environments in scripts Malware Month10 Jul 2024 | 3
Houthi rebels are operating their own GuardZoo spyware Interview Fairly 'low budget', unsophisticated malware, say researchers, but it can collect the same data as Pegasus Malware Month09 Jul 2024 |
Eldorado ransomware-as-a-service gang targets Linux, Windows systems US orgs bear the brunt of attacks by probably-Russian crew Malware Month09 Jul 2024 | 21