Author Archives: John Leyden

‘I’m blown away by the fact that they weren’t using MFA’ Interview  The cybersecurity practices that led up to the stunning Change Healthcare ransomware infection indicate “egregious negligence” on the part of parent company UnitedHealth, according to … Continue reading UnitedHealth’s ‘egregious negligence’ led to Change Healthcare ransomware infection→

Or at least it might well be if these trial programs work out, with some civil lib oversight etc etc etc RSAC  AI is a double-edged sword in that the government can see ways in which the tech can protect and also be used to attack Americans, says US Ho… Continue reading America’s War on Drugs and Crime will be AI powered, says Homeland Security boss→

Avoid traffic-redirecting snoops who have TunnelVision A newly discovered vulnerability undermines countless VPN clients in that their traffic can be quietly routed away from their encrypted tunnels and intercepted by snoops on the network.… Continue reading Watch out for rogue DHCP servers decloaking your VPN connections→

In the first year alone, that’s saved us all a lot of money and woe Interview  As ransomware gangs step up their attacks against healthcare, schools, and other US critical infrastructure, CISA is ramping up a program to help these organizations fix fla… Continue reading CISA’s early-warning system helped critical orgs close 852 ransomware holes→

Nothing like folks in Beijing lecturing us on the Constitution TikTok and its China-based parent ByteDance sued the US government today to prevent the forced sale or shutdown of the video-sharing giant.… Continue reading TikTok sues America to undo divest-or-die law→

Dmitry Yuryevich Khoroshev’s $10M question is answered at last Updated  Police have finally named who they firmly believe is the kingpin of the LockBit ransomware ring: Dmitry Yuryevich Khoroshev.… Continue reading Cops finally unmask ‘LockBit kingpin’ after two-month tease→

More work to do as most deadlines are missed and worst bugs still take months to fix The deadlines associated with CISA’s Known Exploited Vulnerabilities (KEV) catalog only apply to federal agencies, but fresh research shows they’re having a positive i… Continue reading The truth about KEV: CISA’s vuln deadlines good influence on private-sector patching→

Thousands of ID cards plus CCTV snaps of suspects found online Exclusive  A UK-based physical security business let its guard down, exposing nearly 1.3 million documents via a public-facing database, according to an infosec researcher.… Continue reading Brit security guard biz exposes 1.2M files via unprotected database→

Extortionists turning to ‘psychological attacks’, Mandiant CTO says RSAC  Ransomware infections have morphed into “a psychological attack against the victim organization,” as criminals use increasingly personal and aggressive tactics to force victims t… Continue reading Ransomware crooks now SIM swap executives’ kids to pressure their parents→

And the iOS titan doesn’t seem that bothered with data leaking out Last week, Apple began requiring iOS developers justify the use of a specific set of APIs that could be used for device fingerprinting. Yet the iGiant doesn’t appear to be making much e… Continue reading Google, Meta, Spotify break Apple’s device fingerprinting rules – new claim→