Miscreants started scanning for Exchange Hafnium vulns five minutes after Microsoft told world about zero-days

The Register - Wed, 19/05/2021 - 14:02
Being slow to patch just means you'll get pwned faster

Attackers began scanning for vulnerabilities just five minutes after Microsoft announced there were four zero-days in Exchange Server, according to Palo Alto Networks.…

Categories: News

Uptime funk: Microsoft has lifted availability of Azure Key Vault to 99.99%

The Register - Wed, 19/05/2021 - 11:01
But beware the SLA: Just how much would an outage actually cost you?

Microsoft has added another 9 to its availability guarantee for Azure Key Vault, taking the service to 99.99 per cent availability.…

Categories: News

Australian Police hiring digital evidence retrieval specialists. You need to be a very good boy and have paws to get the gig

The Register - Wed, 19/05/2021 - 08:58
Hounds can sniff out SIM cards that a human might miss

Australia's Federal Police (AFP) yesterday announced an expansion in its ability to seek digital evidence will be very good boys with four paws, wagging tails, and the ability to sniff out tech equipment with their highly sensitive noses.…

Categories: News

The Microsoft Authenticator extension in the Chrome store wasn't actually made by Microsoft. Oops, Google

The Register - Wed, 19/05/2021 - 08:02
Guess they'll let anyone in here

The trustworthiness of Google's Chrome Store was again called into question after an extension billing itself as Microsoft Authenticator was published by the software souk without the simplest of checks.…

Categories: News

New Zealand hospitals infected by ransomware, cancel some surgeries

The Register - Wed, 19/05/2021 - 05:59
Intrusion believed to have entered through email

New Zealand’s Waikato District Health Board (DHB) has been hit with a strain of ransomware that took down most IT services Tuesday morning and drastically reduced services at six of its affiliate hospitals.…

Categories: News

Us? Pwn SolarWinds? With our reputation? Russian spy chief makes laughable denial of supply chain attack

The Register - Tue, 18/05/2021 - 18:42
Hint: He doesn't care if you personally think it's rubbish, and here's why

A Russian spymaster has denied that his agency carried out the infamous SolarWinds supply chain attack in a public relations move worthy of the Internet Research Agency.…

Categories: News

Business-intelligence-company-turned-Bitcoin-addict MicroStrategy grabs another $10m crypto-coin fix

The Register - Tue, 18/05/2021 - 18:01
Who's recommending investment? The man who already has a $1bn stake

Wikipedia says MicroStrategy is a company that provides business intelligence (BI), mobile software, and cloud-based services, but that wouldn't be the first outdated information on the crowdsourced knowledge repository.…

Categories: News

The UK loves cybersecurity so much, it's going to regulate managed service providers' infosec practices in law

The Register - Tue, 18/05/2021 - 16:03
And you're invited to speak your brains on Computer Misuse Act changes

+Comment  The British government has vowed to create a legally binding cybersecurity framework for managed service providers (MSPs) – and if you want to tell gov.UK what you think, you've only got a few weeks to act.…

Categories: News

1Password unsheathes Rusty key, hopes to unlock Linux Desktop world

The Register - Tue, 18/05/2021 - 14:30
Tries to tempt penguins with Ring Crypto

1Password has unveiled a full-featured desktop app for Linux, written in Rust and using the ring crypto library for end-to-end encryption.…

Categories: News

Latest phones are great at thwarting Wi-Fi tracking. Other devices, not so much – study

The Register - Tue, 18/05/2021 - 08:29
Boffins find increasing MAC address randomization protection with mobiles

In 2017, US Naval Academy researchers found that MAC address randomization in mobile devices was largely worthless as a privacy defense. Three years later, the same research group took another look and found that while there's been meaningful improvement, many phones still fail to effectively prevent MAC address-based tracking.…

Categories: News

Eufycam Wi-Fi security cameras streamed video feeds from other people's homes

The Register - Mon, 17/05/2021 - 20:58
Plus: Biden's order on security, US govt acquiring data on citizens, and more

In brief  Unlucky owners of Eufycam security cameras were horrified earlier today when they opened their app for the equipment and saw video streams from strangers' homes instead of their own.…

Categories: News

Axa insurance offshoots pwned as Ireland reveals second ransomware hit

The Register - Mon, 17/05/2021 - 16:37
Dept of Health unsuccessfully targeted in same attack against hospitals

Roundup  The murky world of ransomware criminals is all aflutter after it was revealed that Ireland's health services were hit by a second attack hot on the heels of one that took out its hospitals, while ransomware insurance refusenik Axa was itself hit with ransomware after its French branch vowed to stop buying off criminals on behalf of its customers.…

Categories: News

We'd love to report on the outcome of the CREST exam cheatsheet probe, but UK infosec body won't publish it

The Register - Mon, 17/05/2021 - 11:47
Why? It might reveal whistleblowers' names...

British infosec accreditation body CREST has declared that it will not be publishing its full report into last year's exam-cheating scandal after all, triggering anger from the cybersecurity community.…

Categories: News

Mammoth grab of GP patient data in the UK set to benefit private-sector market access as rules remain unchanged

The Register - Mon, 17/05/2021 - 10:18
No policy shakeup to deal with snatch of info from primary physicians

Evidence from NHS Digital's website suggests that patient data held by GPs in England will be available to private-sector companies to help them understand market opportunities in the UK's health service.…

Categories: News

Apple sent my data to the FBI, says boss of controversial research paper trove Sci-Hub

The Register - Mon, 17/05/2021 - 08:57
Former Sun boss Scott McNealy offers interesting response

Alexandra Elbakyan, the creator of controversial research trove Sci-Hub, has claimed that Apple informed her it has handed over information about her account to the FBI.…

Categories: News

Singapore bolsters Bluetooth contact-tracing as new COVID wave sends students and workers home again

The Register - Mon, 17/05/2021 - 07:02
TraceTogether app becomes primary tracking tool and compulsory in many settings

Singapore has made its Bluetooth-powered "TraceTogether" contact-tracing app its preferred means of recording movements in public spaces across the island.…

Categories: News

China signals dissatisfaction with gig economy impact on ride-share drivers

The Register - Mon, 17/05/2021 - 02:00
Also puts brakes on data collection by carmakers

China has signalled that ride-sharing companies and laid out regulations that will stop cars from collecting unnecessary data.…

Categories: News

Free SANS Cyber Security Summits: Sign up now, learn online, keep your network safe

The Register - Fri, 14/05/2021 - 16:30
Sometimes you need to lift yourself out of the cybersec trenches and look up to the summit

Promo  Keeping your organization safe from cybercriminals and other ne’er do wells requires constant honing and refining of your own skills and knowledge.…

Categories: News

Tor users, beware: 'Scheme flooding' technique may be used to deanonymize you

The Register - Fri, 14/05/2021 - 14:32
By probing for installed apps with custom URL schemes, it's possible to build a 32-bit unique fingerprint

FingerprintJS, maker of a browser-fingerprinting library for fraud prevention, on Thursday said it has identified a more dubious fingerprinting technique capable of generating a consistent identifier across different desktop browsers, including the Tor Browser.…

Categories: News

Hospitals cancel outpatient appointments as Irish health service struck by ransomware

The Register - Fri, 14/05/2021 - 12:45
Russia-based criminals pick soft target in hope of easy gains

Ireland's nationalised health service has shut down its IT systems following a "human-operated" Conti ransomware attack, causing a Dublin hospital to cancel outpatient appointments.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News