NATO summit communiqué compares repeat cyberattacks to armed attacks – and stops short of saying 'one-in, all-in' rule will always apply

The Register - Tue, 15/06/2021 - 07:00
China lashed for ignoring norms, retorts that Western clique isn't playing fair

A communiqué issued at the conclusion of the NATO summit has called for China to observe the laws of cyberspace, and set out new standards by which members of the alliance will consider cyberattacks.…

Categories: News

G7 nations call out Russia for harbouring ransomware crims ahead of Biden-Putin powwow

The Register - Mon, 14/06/2021 - 22:29
Hopes raised in West of an extradition or law enforcement agreement to stem the tide

The G7 summit of western countries has called upon Russia to "identify, disrupt, and hold to account those within its borders who conduct ransomware attacks, abuse virtual currency to launder ransoms, and other cybercrimes."…

Categories: News

Ex-NSA leaker Reality Winner released from prison early for 'exemplary' behavior

The Register - Mon, 14/06/2021 - 21:36
Will be transferred to a halfway house, attorney continues to fight for presidential pardon

Reality Winner, the former NSA intelligence contractor who leaked evidence of Russian interference in a US Presidential election to the press, has been released from prison.…

Categories: News

Norton dodges UK courts after telling Brit watchdog it will be nicer to consumers

The Register - Mon, 14/06/2021 - 15:56
Admits nothing but promises amendments to auto-renewal, refund policies

The UK's Competition and Markets Authority (CMA) has inked a deal with Norton where it will refund customers whose antivirus software subscription was automatically renewed.…

Categories: News

We've been shown time and again that strong encryption puts crims behind bars, so why do politicos hate it?

The Register - Mon, 14/06/2021 - 10:16
If we trust it, crooks will too – meaning Plod can get their kiloscrote nab

Column  Back in October, a call by spy agencies to weaken end-to-end encryption "because of the children" provoked a bit of analysis on how many times UK Home Secretaries had banged the same drum. All of them, it turned out. All of the time.…

Categories: News

The AN0M fake secure chat app may have been too clever for its own good

The Register - Mon, 14/06/2021 - 06:03
Crims now know what not to trust, and how to stymie future infiltrations

Comment  In April 1943, Japanese admiral Isoroku Yamamoto was killed when the US Air Force shot down the plane carrying him to Balalae Airfield in the Solomon Islands.…

Categories: News

UK tells UN that nation-states should retaliate against cyber badness with no warning

The Register - Fri, 11/06/2021 - 17:44
Even nuclear missile attacks came with a 4-minute heads-up

Comment  Britain has told the UN that international cyber law should allow zero-notice digital punishment directed at countries that attack others' infrastructure.…

Categories: News

EA Games looted by intruders: Publisher says 'no player data accessed' after reported theft of FIFA 21, Frostbite source

The Register - Fri, 11/06/2021 - 13:25
'Surprise stealing mechanics' made short work of network perimeter security

EA Games, publisher of Battlefield, The Sims and FIFA, has admitted to a "recent incident of intrusion into our network" in which attackers reportedly stole game source code and software development kits.…

Categories: News

Seven-year-old make-me-root bug in Linux service polkit patched

The Register - Fri, 11/06/2021 - 07:28
Error handling? Nah, let's just unlock everything and be done with it

A seven-year-old privilege escalation vulnerability that's been lurking in several Linux distributions was patched last week in a coordinated disclosure.…

Categories: News

China arrests over 1000 for using cryptocurrency to help launder proceeds of phone scams

The Register - Fri, 11/06/2021 - 06:58
As local search engines stop providing results on crypto-keywords

China’s crackdown on cryptocurrencies has reached a new crescendo, with the nation’s Ministry of Public Security on Wednesday proclaiming it has arrested over 1000 people and shut down 170 gangs that provided crypto-linked money-laundering services.…

Categories: News

Student Loans Company splashes out on 20,000 cybersecurity training courses – for just 3,300 employees

The Register - Thu, 10/06/2021 - 11:45
FoI request details £76,800 in training fees, most of which went to staff security-specific departments

The Student Loans Company (SLC) spent £76,800 on cybersecurity training over its previous two fiscal years – including a sudden and unsurprising interest in security in a work-from-home environment.…

Categories: News

South Korea’s data watchdog barks warnings at Microsoft and five local firms

The Register - Thu, 10/06/2021 - 07:28
Fines, fines, everywhere there's fines

Microsoft and five other companies have received fines totaling US$75K from South Korea's Personal Information Protection Commission (PIPC), for running afoul of local data protection laws.…

Categories: News

Ransomware-skewered meat producer JBS confesses to paying $11m for its freedom

The Register - Thu, 10/06/2021 - 06:57
Company also says large and well-funded IT department sorted recovery swiftly

JBS Foods, one of the world’s largest meat producers, has revealed it handed over “the equivalent of $11 million” to resolve a ransomware infection that disrupted operations in Australia, the USA, and Canada.…

Categories: News

ALPACA gnaws through TLS protection to snarf cookies and steal data

The Register - Thu, 10/06/2021 - 01:07
Boffins find flaw in web security that enables certificate confusion

Academics from three German universities have found a vulnerability in the Transport Layer Security (TLS) protocol that under limited circumstances allows the theft of session cookies and enables cross-site scripting attacks.…

Categories: News

Huawei flings open the doors of its third privacy and security transparency centre

The Register - Thu, 10/06/2021 - 00:03
The first based in China

Huawei has opened another cyber security centre and, despite facing a crisis of trust in the West, has chosen to do so for the first time in its Chinese heartland.…

Categories: News

Risk and reward: Nefilim ransomware gang mainly targets fewer, richer companies and that strategy is paying off, warns Trend Micro

The Register - Wed, 09/06/2021 - 21:17
Criminal operators emerged from woodwork just as COVID hit the West

The Nefilim ransomware gang might not be the best known or most prolific online extortion crew but their penchant for attacking small numbers of $1bn+ turnover firms is paying off, according tot he latest research.…

Categories: News

PrivacyMic looks to keep your home smart without Google, Alexa, Siri and pals listening in

The Register - Wed, 09/06/2021 - 19:03
Raspberry Pi-powered prototype proves 95% accurate, 100% private, claim boffins

Researchers at the University of Michigan have proposed a way to have your privacy cake and eat your home automation too. They've found a means of using a voice-activated smart speaker system without it having to listen to everything you say – and no, it's not "pressing a button."…

Categories: News

'I put the interests of the country first': Colonial Pipeline CEO on why oil biz paid off ransomware crooks

The Register - Wed, 09/06/2021 - 17:28
Mandiant investigation says crims gained access through legacy VPN

The boss of Colonial Pipeline has appeared before a Senate Committee to explain the events which led to US East Coast fuel supplies running dry last month and some $5m being handed over in ransom.…

Categories: News

Mysterious Gelsemium APT was behind February compromise of NoxPlayer, says ESET

The Register - Wed, 09/06/2021 - 16:43
Malicious crew targets ME and Asia but also tries evading Chinese AV suites

ESET has published details of an advanced persistent threat (APT) crew that appears to have deployed recent supply chain attack methods against targets including "electronics manufacturers," although it didn't specify which.…

Categories: News

Intel's latest patch set plugs some serious holes in CPU, Bluetooth, server, and – ironically – security lines

The Register - Wed, 09/06/2021 - 13:15
Reports through Chipzilla's bug bounty scheme growing, but still in the minority

Intel has pushed out a raft of security advisories for June, bringing its total discovered "potential vulnerabilities" for the year to date to 132, only a quarter of which were reported by external contributors and the company's bug bounty programme.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News