Information Security News - The Reddit of Infosec

Smart devices: using them safely in your home

<div>Many everyday items are now connected to the internet: we explain how to use them safely.</div>

Are you hungry? A two-part blog about risk appetites

<div>Risk appetites; what are they, what’s their purpose, how do organisations go about defining them?</div>

'WannaCry' ransomware: guidance updates

<div>Jon L provides an update on the NCSC's guidance on the 'WannaCry' ransomware.</div>

Please stop saying 'it depends'!

<div>Why I'm trying desperately to stop saying 'it depends' when it comes to simple cyber security questions...</div>

Brightening the outlook for security in the cloud

<div>The NCSC's Cloud Security Research Lead suggests some approaches to help you get confidence in cloud services.</div>

NCSC IT: Installing software updates without breaking things

<div>Andy P explains how the NCSC rolls out software updates without delays.</div>

Cyber Threat Report: UK Legal Sector

<div>An updated report from the NCSC explaining how UK law firms - of all sizes - can protect themselves from common cyber threats.</div>

Using TLS to protect data

<div>Recommended profiles to securely configure TLS for the most common versions and scenarios, with additional guidance for managing older versions.</div>

Setting up 2-Step Verification (2SV)

<div>How setting up 2SV can help protect your online accounts, even if your password is stolen.</div>

Serving up some server advice

<div>Highlighting guidance which will help you secure your servers</div>

U.S. CISA adds Google Chromium Mojo flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Google Chromium Mojo flaw to its Known Exploited Vulnerabilities catalog.The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a Google Chromium Mojo sandbox escape vulnerability, tracked as CVE-2025-2783, to its Known Exploited Vulnerabilities (KEV) catalog.This week Google has released out-of-band fixes to address a high-severity security vulnerability, tracked as CVE-2025-2783, in Chrome browser for W

Sophos ranked #1 overall for Firewall, MDR, and EDR in the G2 Spring 2025 Reports

Also ranked the top solution across 53 global reports.

GPU Device Plugins | Unveiling Risks in Kubernetes Workloads

GPU device plugins in Kubernetes have become indispensable for artificial intelligence (AI) and machine learning (ML) workloads. They enable seamless integration of graphics processing unit (GPU) resources, accelerating computationally heavy tasks such as model training, real-time inference, and big-data processing.As organizations scale their AI and ML operations, these plugins simplify resource management while maximizing GPU utilization. However, this growing dependency on GPU-enabled environ

Three bypasses of Ubuntu's unprivileged user namespace restrictions

Posted by Qualys Security Advisory via Fulldisclosure on Mar 27Qualys Security AdvisoryThree bypasses of Ubuntu's unprivileged user namespace restrictions========================================================================Contents========================================================================SummaryBypass via aa-execBypass via busyboxBypass via LD_PRELOADAcknowledgmentsTimeline (advisory sent to the Ubuntu Security Team on January 15, 2025)...

Hegseth Brings DOD's Message to Troops on Guam

Defense Secretary Pete Hegseth addressed hundreds of troops and a group of World War II veterans about the Defense Department's core tenets at Andersen Air Force Base, Guam.

Money Laundering 101, and why Joe is worried

Welcome to this week’s edition of the Threat Source newsletter. Howdy friends! One of things I learned early on in cyber security is that crime does, in fact, pay. It can pay very well, actually. If it didn’t, we wouldn’t have ransomware cartels raking in obscene amounts of money year after year. Ransomware victims pay ransoms with cryptocurrency — typically Bitcoin. A criminal who has their ill-gotten BTC gains then needs to introduce it into a banking system th

Splunk Patches Dozens of Vulnerabilities

<p>Splunk patches high-severity remote code execution and information disclosure flaws in Splunk Enterprise and Secure Gateway App.</p><p>The post <a href="https://www.securityweek.com/splunk-patches-dozens-of-vulnerabilities/">Splunk Patches Dozens of Vulnerabilities</a> appeared first on <a href="https://www.securityweek.com">SecurityWeek</a>.</p>

DOD Support to the Southern Border in Photos, March 27, 2025

U.S. service members continue to support efforts carrying out President Donald J. Trump's executive orders on protecting the territorial integrity of the United States.

Blacklock Ransomware Infrastructure Breached, Revealing Planned Attacks

Resecurity, a prominent cybersecurity firm, has successfully exploited a vulnerability in the Data Leak Site (DLS) of Blacklock Ransomware, gaining unprecedented access to the group’s infrastructure. This breach, occurring during the winter of 2024-2025, allowed researchers to collect substantial intelligence about the ransomware group’s activities and planned attacks. Exploitation of Local File Include Vulnerability The […]The post Blacklock Ransomware Infrastructure Breached,

Classiscam Operators Use Automated Malicious Sites to Steal Financial Data

Classiscam, an automated scam-as-a-service operation, has been identified as a significant threat in Central Asia, leveraging sophisticated techniques to defraud users of online marketplaces and e-commerce platforms. This fraudulent scheme, highlighted in the High-Tech Crime Trends Report 2025, utilizes Telegram bots to generate fake websites that mimic legitimate services, effectively deceiving victims into sharing their […]The post Classiscam Operators Use Automated Malicious Sites to St

Cyber Security News