News

And hints at new local data governance push

Indian Prime Minister Narendra Modi has called on the nation's technology industry to start designing products for the world, and for youth to create new digital defences.…

ESXi, Cloud Foundation, and desktop hypervisor users should get patching

VMware has revealed and repaired the flaws in its hypervisor discovered at China’s Tianfu Cup white hat hacking competition.…

Devs can make unauthorised changes, data integrity is a work in progress, security is not there yet ... and there's just nine months to go

In 2016 Australia’s online census crashed and burned after legitimate attempts to complete the survey were mistaken for a DDOS attack, the routers funneling traffic failed and disaster recovery plans did likewise.…

Proposed legislation calls for research to detect synthetic shams online

On Wednesday, proposed US legislation to fund defenses against realistic computer-generated media known as deepfakes was approved by the US Senate and the bill now awaits consideration in the US House of Representatives.…

Enhanced network security for AWS virtual private cloud – while Microsoft previews Azure Firewall Premium

AWS has announced Network Firewall, a new service drawing on the open-source Suricata project.…

Creaky old law holds back global competitiveness, says group

A majority of British infosec professionals worry about accidentally breaking the UK's antiquated Computer Misuse Act, according to an industry campaign group that hopes to reform the law.…

DKIM 'makes us all more vulnerable to extortion, blackmail,' argues Green

Matthew Green, associate professor of computer science at Johns Hopkins University in the US, wants Google and other email providers to make it possible for people to deny they've written old email messages.…

Campaign even targeted branch offices inside China and sought secrets of automotive and engineering companies

Broadcom’s security subsidiary Symantec has named a China-linked hacking gang known as “APT 10” and “Cicada” as the probable source of a year-long attack on Japanese interests around the world.…

Magecart variant has changed and you should be alert, warns RiskIQ

A new offshoot of the Grelos card-skimming malware - a common Magecart variant - is doing the rounds, according to infosec biz RiskIQ.…

The battle of the algorithms has begun

Sponsored  It was 2017 and a hacker had gained access to a digital system at an organization in India. At first it seemed like just a normal intrusion - the kind that happens thousands of times each day. But this one was different.…

Tech tackles two things: 'Aggregate statistics to improve an application, maintain the privacy of the people'

The Internet Security Research Group (ISRG) has a plan to allow companies to collect information about how people are using their products while protecting the privacy of those generating the data.…

Threatens plenty of Zoom sessions in the days ahead... just as well they've updated security in recent weeks

There's nothing quite like eating your own dog food, as Test and Trace chief Baroness Dido Harding has learned after being instructed to self-isolate by the NHS COVID-19 contact-tracing app overnight.…

Daniel Stenberg tells The Reg he's baffled by profile hack

The creator of cURL reassured The Reg on Tuesday that he's not a billionaire rocket man giving away Bitcoins, no matter what his Twitter account claimed.…

Terminated by presidential tweet that piled on the baseless election-rigging allegations CISA director sought to counter

President Donald Trump tonight fired the boss of the US government's Cybersecurity and Infrastructure Security Agency (CISA), the very organisation his administration formed with the aim of shoring up America's computer networks from hackers.…

In latest court bout, snooper biz seems to ask: Are you sure you want to open this can of worms?

Israeli spyware maker NSO Group has taken a leaf out of Hollywood in an attempt to avoid any legal repercussions from making and selling tools that hack WhatsApp users' phones.…

Intel, AMD, Qualcomm are all on board

Microsoft has joined hands with Intel, AMD, and Qualcomm to release a new security chip called Pluton, which Redmond reckons will delete "entire vectors of attack" from the infosec landscape.…

So make sure you've updated since July, fandroids

A crafty person could have slurped every single cookie from a Firefox-using Android device by tricking a user to look at a specially crafted HTML file.…

Mudge work to be done after high-profile Bitcoin scam earlier this year

Twitter has hired legendary hacker Peiter "Mudge" Zatko as head of security.…

Big Sur highlights shortcomings in OCSP comms, APIs

Analysis  Apple plans to revise the way it checks the trustworthiness of Mac applications when they're run – after server problems last week during the launch of macOS Big Sur prevented people's desktop apps from starting.…

Top speakers, new courses, all live online

Promo  If you work in cybersecurity you’ll know that come December, it’s time to kick back, take stock… and prepare for whatever devilish tricks the hacker community is planning to pull over Christmas and into 2021. And this year and next can be expected to be particularly challenging, with cyber criminals looking to take advantage of a chaotic 2020, whether it’s by targeting the security gaps opened up as your workforce has gone remote or ripping the headlines for enticing spear phishing material.…