News

Two-seat jet crashed in France

A Belgian F-16 fighter jet pilot has been rescued from a power line after getting into difficulties and ejecting from his stricken aircraft.…

Whatever you do, don't pay the ransom

Analysis  WannaCry – the file-scrambling ransomware that infamously locked up Britain's NHS and a bunch of other organisations worldwide in May 2017 – is still a live-ish threat to this day, infosec researchers reckon.…

Symantec says Tortoiseshell crew ransacked suppliers

Miscreants are hacking into Saudi Arabian IT providers in an attempt to compromise their real targets: said providers' customers, according to Symantec.…

Both sides have different interpretations of the rules

The infosec duo cuffed during an IT penetration test that went south last week are out of jail, though not necessarily out of the woods.…

Blueprints for mobile apps, databases exposed in public GitHub repos

Exclusive  Scotiabank leaked online a trove of its internal source code, as well as some of its private login keys to backend systems, The Register can reveal.…

Semmle's flaw-finding queries can be shared and used on multiple projects

On Wednesday, Microsoft's GitHub said it has acquired Semmle, a San Francisco-based software analysis platform for finding vulnerabilities in code. No price was disclosed.…

GCHQ offshoot says be on your guard

Cybercrims are still likely to affect universities and other educational institutions online with ransomware, reckons GCHQ offshoot the National Cyber Security Centre.…

Government gave them the deets, so not a hacking charge

The head of Novaestrat, the data analytics company at the centre of the huge leak revealed on Monday involving personal information about more than 20 million Ecuadorian citizens, has been taken into custody.…

New report after 12 forces across England and Wales trialled technology

MPs across parties have called for an immediate "stop" to live facial recognition surveillance by the police and in public places.…

Pair of bug reports show how VM escapes put servers at risk

A pair of newly disclosed security flaws could allow malicious virtual machine guests to break out of their hypervisor's walled gardens and execute malicious code on the host box.…

Brit airport to extend facial recog after easyJet trial

Gatwick Airport will extend its use of facial recognition to match passengers to their passports at departure gates before they board planes.…

Tired: SQLi. Expired: Format string exploits. Hired: Anyone who can port code from C/C++

On Tuesday, the Common Weakness Enumeration (CWE) team from MITRE, a non-profit focused on information security for government, industry and academia, published its list of the CWE Top 25 Most Dangerous Software Errors.…

Uncle Sam tries to plug leaker's pay, ends up plugging leaker's book

The US government today sued former CIA employee and NSA sysadmin contractor Edward Snowden to deny him payment from his newly published book, Permanent Record.…

Whole pile of US data just sitting there with no security

Around 24 million medical patients' data is floating around on the internet, freely available for all to pore over – thanks to that good old common factor, terribly insecure servers.…

You want root shell access? No problem

A new report has suggested that 12 out of 13 network devices, such as routers and network-attached storage appliances, are vulnerable to hacks that enable "root-privileged access without any authentication".…

Security engineer actually reads privacy policy to his horror

Hewlett-Packard Inc's printers don't just slurp the contents of your wallet at a frightening rate. They also guzzle a surprising amount of data on you and whatever you're printing.…

Government cares what you think. Honest

A UK Home Office consultation on new, intrusive police powers was so incompetently written that you could both "strongly agree" and "strongly disagree" at the same time when answering its questions.…

Update now to stop webpages snooping on recently used credentials

LastPass has fixed a security bug that potentially allowed malicious websites to obtain the username and passphrase inserted by the password manager on the previously visited site.…

And Julian Assange is among them - but how old are these?

Records on more than 20 million individuals in Ecuador have leaked from an unsecured database in Miami, Florida, containing a mix of official citizen registration data and personal & banking details.…

So much for the public deterrence value of attribution

Australian spooks concluded that China was to blame for a series of hacks on its parliament and leading political parties – but kept it quiet for fear of angering the Middle Kingdom, according to reports.…