Connor Jones

Manchester, United Kingdom

Cybersecurity Reporter at The Register

Cybersecurity Reporter @TheRegister. Ex-@ITPro. Send tips. I love tips. Be generous with them in my DMs (no PRs) or ask for Signal

Featured in: Favicon

itpro.com

nature.com Favicon

alphr.com

wegotthiscovered.com Favicon

einnews.com Favicon

areomagazine.com Favicon

cloudpro.co.uk Favicon

channelpro.co.uk Favicon

commentcentral.co.uk Favicon

theregister.com + 7 more

Articles

MainStreet reports third-party breach of bank customer data

5 days ago | theregister.com | Connor Jones

Community bank MainStreet Bancshares says thieves stole data belonging to some of its customers during an attack on a third-party provider. Showing how vendors along the supply chain are often the weak link, the holding company that primarily oversees MainStreet Bank told America's Securities and Exchange Commission (SEC) about the snafu on Friday, saying it was made aware of a break-in at the provider back in March.
FBI arrests DoD IT worker, claim he tried to leak intel

1 week ago | theregister.com | Connor Jones

A Defense Intelligence Agency (DIA) IT specialist is scheduled to appear in court today after being caught by the FBI trying to surreptitiously drop top secret information to a foreign government in a public park. Nathan Vilas Laatsch, 28, of Alexandria, Virginia, was the subject of an FBI investigation after law enforcers claim they received a tip that Laatsch had advertised his willingness to transmit intelligence to a "friendly foreign government" back in March.
Fred Hutch to pay $50M+ in 2023 data raid settlement

1 week ago | theregister.com | Connor Jones

A Seattle cancer facility has agreed to fork out around $52.5 million as part of a class action settlement linked to a Thanksgiving 2023 cyberattack where criminals directly threatened cancer patients with swat attacks. The Fred Hutchinson Cancer Center (Fred Hutch) disclosed its November 2023 attack a month later, after it confirmed that criminals had made off with personal and sensitive data, including health insurance information, patients' treatments, diagnoses, lab results, and more.
8,000+ Asus routers popped in 'advanced' mystery botnet plot

1 week ago | theregister.com | Connor Jones

Thousands of Asus routers are currently ensnared by a new botnet that is trying to disable Trend Micro security features before exploiting vulnerabilities for backdoor access. Threat monitoring company GreyNoise discovered the botnet, which it dubbed AyySSHush, back in March and pointed interested onlookers to a Censys search which shows more than 8,000 infected hosts at the time of writing.
Billions of session cookies for sale sparks security warning

1 week ago | theregister.com | Connor Jones

A VPN vendor says billions of stolen cookies currently on sale either on dark web or Telegram-based marketplaces remain active and exploitable. More than 93.7 billion of them are currently available for criminals to buy online and of those, between 7-9 percent are active, on average, according to NordVPN's breakdown of stolen cookies by country.
Attack on LexisNexis Risk Solutions exposes data on 300k +

1 week ago | theregister.com | Connor Jones

LexisNexis Risk Solutions (LNRS) is the latest big-name organization to disclose a serious cyberattack leading to data theft, with the number of affected individuals pegged at 364,333. A notification letter being dispatched to affected individuals says that an "unauthorized party" gained access to a third-party software development platform on December 25, 2024, and made off with LNRS data.
Russia sentences programmer to 14 years for treason

1 week ago | theregister.com | Connor Jones

A Russian programmer will face the next 14 years in a "strict-regime" (high-security) penal colony after a regional court ruled he leaked sensitive data to Ukraine.
Adidas confirms data swiped from customer service provider

1 week ago | theregister.com | Connor Jones

Adidas is warning customers some of their data was stolen after an "unauthorized" person lifted it from a "third-party customer service provider." The sportswear giant said the affected data "mainly consists of contact information relating to consumers who had contacted our customer service help desk in the past." It did not reveal any time frame beyond the phrase "in the past." The Register asked the German sportswear brand for a list of the exact data points involved and for an idea of how...
MathWorks’ ransomware disruptions rages on into second week

1 week ago | theregister.com | Connor Jones

Software biz MathWorks is cleaning up a ransomware attack more than a week after it took down MATLAB, its flagship product used by more than five million people worldwide. Yesterday MathWorks finally confirmed users' suspicions that ransomware was behind the days-long outage. Its status page first indicated there were issues with "multiple applications" on May 18.
SaaS companies in firing line following Commvault attack

2 weeks ago | theregister.com | Connor Jones

The Cybersecurity and Infrastructure Security Agency (CISA) is warning that SaaS companies are under fire from criminals on the prowl for cloud apps with weak security. Apps with default configurations and elevated permissions are the aim of these attacks, although the US agency did not attribute the activity to a specific group in a message issued this week.