Security News > 2021 > October

Microsoft has released Windows 11 worldwide, and it is now rolling it out via Windows Update on devices with compatible hardware and the latest updates. Windows 10 users can upgrade to Windows 11 for free now via Windows Update as long as their device has compatible hardware.

A hospital that continued to admit patients during a ransomware attack has been sued over claims that a baby died after doctors and nurses failed to spot there was a problem due to networks being shut down. Nicko Silar died after six months in intensive care after being born at Springhill Memorial Hospital with the umbilical cord wrapped around her neck, documents filed in the Alabama Circuit Court state [PDF].

As you probably know, October is Cybersecurity Awareness Month, which means it's a great opportunity to do three things: Stop. Those three words were chosen many years ago by the US public service as a short and simple motto for cybersecurity awareness.

The RaidForums hacking forum has gone through a turbulent week, with its website now forced through a mirror domain after a government filed a legal request with their registrar. According to the RaidForums admin known as 'Omnipotent,' NameSilo received a report from a certain government and proceeded to deactivate the website owner's account immediately.

Users worldwide are reporting that they are unable to access Facebook, Instagram, and WhatsApp, instead seeing errors that the sites can't be reached. When attempting to open any of the three sites, they are given DNS PROBE FINISHED NXDOMAIN errors and advised to check if there is a typo in the domain entered in the address bar.

Britain's National Cyber Force will be based in Lancashire, the government has said - though despite obvious clues neither the Ministry of Defence nor BAE Systems will confirm the force's planned new location. The Ministry of Defence also refused to say, citing spurious "Operational security" grounds.

More than 3,300 U.S. military service members, military dependents and civilians employed by the Department of Defense were compromised as part of a transnational cybercrime ring created to defraud them out of $1.5 million in military benefits from the DoD and the Department of Veterans Affairs. A former civilian medical records technician and administrator with the U.S. Army was at the center of the scheme, according to court documents filed in the U.S. District Court for the Western District of Texas.

Ukrainian police have reportedly arrested two members of a ransomware gang - and while some have fingered REvil, no firm details have been published by cops from multiple countries. A round of speculation was triggered when inter-EU law enforcement body Europol declared this morning that Ukrainian fuzz had arrested "Two prolific ransomware operators known for their extortionate demands," claimed to be up to €70m. One of the two suspects arrested on 28 September, according to the National Police of Ukraine, was a "Hacker".

Interesting story of test-takers in India using Bluetooth-connected flip-flops to communicate with accomplices while taking a test. What’s interesting is how this cheating was discovered. It’s not...

While investigating a misconfiguration flaw in Apache Airflow, researchers discovered many exposed instances over the web leaking sensitive information, including credentials, from well-known tech companies. Apache Airflow is a popular open-source workflow management platform for organizing and managing tasks.