Wondering how to tell the world you've been hacked? Here's a handy guide from infosec academics

The Register - Thu, 24/09/2020 - 17:46
Unis of Kent and Warwick figure out better way of admitting terrible thing

Infosec boffins at the University of Kent have developed a "comprehensive playbook" for companies who, having suffered a data breach, want to know how to shrug off the public consequences and pretend everything's fine.…

Categories: News

UK ICO fines biz profiteering from COVID-19 crisis by sending unsolicited marketing texts to Joe Public

The Register - Thu, 24/09/2020 - 14:00
Digital Growth Experts Ltd hit send on 16k+ messages. The fine? £3.70 per text

Digital Growth Experts Ltd (DGEL) is nursing a £60,000 smackdown doled out by the UK’s data watchdog after it sent out thousands of nuisance marketing text messages about hand sanitisers during the coronavirus outbreak.…

Categories: News

Four ex-eBay staffers to plead guilty after cyberstalking critics of online tat bazaar's management

The Register - Thu, 24/09/2020 - 00:04
Accused senior management insist they weren't involved

Four of the seven former eBay employees charged with cyberstalking a couple critical of the web auction house are scheduled to plead guilty next month.…

Categories: News

Doppelpaymer ransomware crew fingered over attack on German hospital that allegedly caused death of a patient

The Register - Wed, 23/09/2020 - 17:26
Same mob promised not to target healthcare facilities

The Doppelpaymer ransomware gang were behind the cyber-attack on a German hospital that allegedly led to one patient's death, according to local sources.…

Categories: News

Microsoft leaks 6.5TB in Bing search data via unsecured Elastic server. *Insert 'Wow... that much?' joke here*

The Register - Wed, 23/09/2020 - 14:51
Not personal info, but there are worries over deanonymisation. Remember that AOL research database?

Microsoft exposed a 6.5TB Elastic server to the world, including search terms, location coordinates, device ID data, and a partial list of which URLs were visited, earlier this month.…

Categories: News

Proposed US fix for Boeing 737 Max software woes does not address Ethiopian crash scenario, UK pilot union warns

The Register - Wed, 23/09/2020 - 11:02
MCAS saga still hasn't ended as reps warn of trim wheel problem

The British Airline Pilots' Association (BALPA) has told American aviation regulators that the Boeing 737 Max needs better fixes for its infamous MCAS software, warning that a plane crash which killed 149 people could happen again.…

Categories: News

Your latest security headache? Ed from accounting using his kid as an unpaid helpdesk

The Register - Wed, 23/09/2020 - 07:12
Techie teens, not IT support, tasked with helping work-from-home parents sort out vid calls, Word and Excel files, antivirus – survey report

Parents are turning to their kids for tech support rather than the company IT department while working from home, we're told.…

Categories: News

FBI boasts of dark-web drug bust: 179 collared around the world, $6.5m in cash and 500kg of narcotics seized

The Register - Wed, 23/09/2020 - 06:08
Operation DisrupTor will 'significantly disrupt the online opioid trade'

A nine-month international operation spearheaded by the FBI has led to the arrest of 179 people across the world for selling drugs on the dark web.…

Categories: News

As you're scrambling to patch the scary ZeroLogon hole in Windows Server, don't forget Samba – it's also affected

The Register - Tue, 22/09/2020 - 22:49
Domain controllers at risk of hijacking, depending on version and configuration

Administrators running Samba as their domain controllers should update their installations as the open-source software suffers from the same ZeroLogon hole as Microsoft's Windows Server.…

Categories: News

It's been a vintage year for bug bounty hunters, says HackerOne as it boasts of $40m+ passing through its treasure chests

The Register - Tue, 22/09/2020 - 22:06
Big money, says CEO, but what would it cost not to find and fix these vulns?

Bounty-hunting hackers are uncovering new vulnerabilities every two minutes on average, according to bug bounty platform HackerOne.…

Categories: News

UK Parliament's human rights committee pushes for better protections of coronavirus contact-tracing data in law

The Register - Tue, 22/09/2020 - 09:30
Decentralised app rolling out soon, but manual process remains problematic

In the absence of a working contact tracing app, the UK government has been forced to rely on manual data collection and human-powered tracing to identify potential cases of exposure to the Covid-19 virus. But, as Parliament’s cross-party Joint Committee on Human Rights claims in a new report, this is just as problematic as the original centralized app, particularly when it comes to user privacy…

Categories: News

This year’s biggest security flaws – coming soon to a screen near you

The Register - Tue, 22/09/2020 - 08:30
Join us on September 29 – and get ready for 2020’s OWASP Top 10

Webcast  OK, it’s only updated every three years or so, which means it’s not quite the same as breathlessly clustering around the radio to see whether Blur or Oasis have grabbed the top spot or whether Rhiannon’s Umbrella is still number one, or whether team Taylor will see off Perry.…

Categories: News

'I don’t want to see another computer for the rest of my life'... Brit Dark Overlord cyber-extortionist thrown in an American clink for five years

The Register - Tue, 22/09/2020 - 06:37
Scumbag sobs in court as judge orders him to cough up $1.5m

The front man for the notorious Dark Overlord hacker gang, which threatened to leak stolen confidential information unless paid off, has been sentenced to five years behind bars in America.…

Categories: News

Contractor convicted of pinching supercomputer cycles to mine cryptocurrency

The Register - Tue, 22/09/2020 - 05:23
Court sends him into lockdown that’s not a whole lot nastier than some used to control a certain virus

An IT contractor has been found guilty of pinching his employer’s supercomputer to mine cryptocurrency.…

Categories: News

MP promises to grill over revelations that Uber handed '2,000 pieces' of user data to London cops a year

The Register - Mon, 21/09/2020 - 15:00
Where are the search warrants for this? asks ex-Brexit Secretary

Conservative backbencher David Davis has vowed to ask questions in Parliament over Uber's seemingly unregulated sharing of data with police and transport regulators as it battled to save its London taxi licence.…

Categories: News

Russians charged for $16.8m crypto-coin heist, but traders warned their cash is only as safe as their security is tight

The Register - Mon, 21/09/2020 - 13:33
Plus: Lazarus Group joins the big league, ex-Aussie PM doxxed, new flaw found in Bluetooth, and more

In brief  A pair from Russia have been indicted for stealing nearly $17m worth of cryptocurrency.…

Categories: News

Tesla wins defamation counterclaim against Gigafactory whistleblower

The Register - Mon, 21/09/2020 - 12:00
Tripp's off the hook for Tesla's supposed $167.37m market cap damages, though

Tesla has successfully torpedoed a countersuit brought against it by a former employee accused of stealing confidential internal info from the luxury electric carmaker.…

Categories: News

WFH is the new religion – but blind faith isn’t enough to keep your infrastructure secure

The Register - Mon, 21/09/2020 - 10:00
Tune in online this week and we'll show you ten things you can do better right now

Webcast  If working from home is the new orthodoxy, isn’t it time we started laying down some rules about how to do this securely?…

Categories: News

US Cybersecurity agency issues super-rare Emergency Directive to patch Windows Server flaw ASAP

The Register - Mon, 21/09/2020 - 06:56
Government sysadmins given weekend to fix ZeroLogon elevation of privilege bug, rest of us given stern warning

The US Cybersecurity and Infrastructure Security Agency (CISA) has taken the unusual step of issuing an emergency directive that gives US government agencies a four-day deadline to implement a Windows Server patch.…

Categories: News staff took bribes, manipulated marketplace and leaked data including search algorithms

The Register - Mon, 21/09/2020 - 03:13
Scheme saw banned merchants restored, rivals’ stores binned, and cash sent around town in an Uber

The United States Department of Justice has indicted six people over a scheme that allegedly used bribery and fraud to benefit third-party merchants that traded on’s marketplace, and which saw corrupt Amazon insiders leak terabytes of data including some search algorithms.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News