Scumbags can program vulnerable MedTronic insulin pumps over the air to murder diabetics – insecure kit recalled

The Register - Fri, 28/06/2019 - 22:35
Not a particularly sweet ending to the week

Health implant maker MedTronic is recalling some of its insulin pumps following the discovery of security vulnerabilities in the equipment that can be exploited over the air to hijack them.…

Categories: News

Iran's blame-it-on-Bitcoin 'leccy shortage probably isn't a US hack cover story... yet

The Register - Fri, 28/06/2019 - 19:45
But just imagine Stuxnet: Consumer Edition

Comment  Iran claims that recent surges in electricity demand, leading to blackouts and brownouts, were caused by too many cryptocurrency miners’ power-hungry machines being hooked up to the national grid – though all may not be as it seems.…

Categories: News

While we were raging about Putin's meddling and Kremlin hackers, Five Eyes were pwning Yandex, Russia's Google

The Register - Thu, 27/06/2019 - 22:39
... Are ... are we the baddies?

Hackers from the Five Eyes intelligence agencies have been accused of breaking into systems at Yandex, dubbed Russia's Google.…

Categories: News

2001: Linux is cancer, says Microsoft. 2019: Hey friends, ah, can we join the official linux-distros mailing list, plz?

The Register - Thu, 27/06/2019 - 20:13
Windows giant cheered on by Linux Foundation as it seeks membership of private security-focused message board

Microsoft's transformation into a fully paid-up member of the Linux love-train continued this week as the Windows giant sought to join the exclusive club that is the official linux-distros mailing list.…

Categories: News

UK's MoD is helping itself to cops' fingerprint database 'unlawfully', rules biometrics chief

The Register - Thu, 27/06/2019 - 14:40
Paul Wiles: 'Clear and publicly accepted rules' needed for common data platform

The Ministry of Defence has been searching the police national fingerprint database without a “clearly defined lawful basis,” the UK's biometrics commissioner has said.…

Categories: News

Your server remote login isn't root:password, right? Cool. You can keep your data. Oh sh... your IoT gear, though?

The Register - Thu, 27/06/2019 - 07:58
Not-quite-Iranian file-wiping malware emerges as Tehran blamed for rise in cyber-attacks

Not content to be the focus of the geopolitical news cycle, Iran now also finds itself in the middle of two major developments in the security world.…

Categories: News

Hey China, while you're in all our servers, can you fix these support tickets? IBM, HPE, Tata CS, Fujitsu, NTT and their customers pwned

The Register - Wed, 26/06/2019 - 23:20
Oh no Xi didn't! Fresh details emerge on mega-hack

Fresh details have emerged revealing just how deeply Chinese government hackers plundered HPE, IBM, DXC, Fujitsu, Tata, and others, stealing corporate secrets and rifling through their customers' networks.…

Categories: News

Decoding America's spies: What does the NSA's cryptic memo really mean? Citizens illegally spied on again

The Register - Wed, 26/06/2019 - 22:22
Too much data slurped in October, months after snoops vowed not to do that

Analysis  The NSA illegally gathered a trove of American citizens' phone and text message records just four months after it promised it had taken steps to literally not do that again.…

Categories: News

Epyc crypto flaw? AMD emits firmware fix for server processors after Googler smashes RAM encryption algorithms

The Register - Wed, 26/06/2019 - 21:16
SEV code cracked to leak secret keys

Microchip slinger AMD has issued a firmware patch to fix the encryption in its Secure Encrypted Virtualization technology (SEV), used to defend the memory of Linux KVM virtual machines running on its Epyc processors.…

Categories: News

It could be Rotterdam or anywhere, Wiltshire or in Bath: Euro cops cuff 6 for cybersquatting, allegedly nicking €24m in Bitcoin

The Register - Wed, 26/06/2019 - 16:30
5 men, 1 woman nabbed

European cops have cuffed six people for typosquatting – in this case spoofing a well known cryptocurrency exchange – and allegedly making off with €24m worth of Bitcoin tokens.…

Categories: News

Wipro wasn't a one-off: Same hacking crew targeted scores of firms, big and small – researchers

The Register - Wed, 26/06/2019 - 13:30
Thanks in large part to a counter-phishing product. Doh!

The criminals behind the Wipro phishing attack from earlier this year also targeted Western Union, Expedia, Rackspace and a whole host of other big companies, according to threat intel outfit RiskIQ.…

Categories: News

Stop us if you've heard this one: US government staff wildly oblivious to basic computer, info security safeguards

The Register - Wed, 26/06/2019 - 02:31
Now for deep-diving Congress hearings... LMAO JK JK they will do nothing

A US Senate probe has once again outlined the woeful state of computer and information security within Uncle Sam's civil service.…

Categories: News

McAfee sues ship-jumping sales staff over trade secret theft allegations

The Register - Tue, 25/06/2019 - 15:13
Complaint claims rival Tanium's hires took deal data with them

McAfee is suing former senior salespeople whom it alleges stole company trade secrets when they moved to a rival security vendor.…

Categories: News

Open-heart nerdery: Boffins suggest identifying and logging in people using ECGs

The Register - Tue, 25/06/2019 - 12:57
Heartbeat rhythms could be the next biometric authentication method

Biometric systems could use the unique patterns from a person's ECG reading for biometric sign-ons.…

Categories: News

Please stop regulating the dumb tubes, says Internet Society boss

The Register - Tue, 25/06/2019 - 09:10
Even govt rules have knock-on effects, warns Andrew Sullivan

Interview  Andrew Sullivan, chief exec of the Internet Society, has condemned governments that "interfere in underlying technologies that people are allowed to build," as regulators increasingly target net infrastructure to enforce their visions of how the online world ought to be.…

Categories: News

What the cell...? Telcos around the world were so severely pwned, they didn't notice the hackers setting up VPN points

The Register - Tue, 25/06/2019 - 04:18
Revealed: Long-running espionage campaign targets phone carriers to snoop on VIPs' location, call records

Hackers infiltrated the networks of at least ten cellular telcos around the world, and remained hidden for years, as part of a long-running tightly targeted surveillance operation, The Register has learned. This espionage campaign is still ongoing, it is claimed.…

Categories: News

Biz tells ransomware victims it can decrypt their files... by secretly paying off the crooks and banking a fat margin

The Register - Mon, 24/06/2019 - 22:44
It's all in a lucrative day's work for Red Mosquito

A Scottish managed services provider is running a lucrative sideline in ransomware decryption – however, a sting operation by a security firm appears to show that “decryption” merely means paying off the malware's masterminds.…

Categories: News

Iran is doing to our networks what it did to our spy drone, claims Uncle Sam: Now they're bombing our hard drives

The Register - Mon, 24/06/2019 - 20:35
Tehran's hackers are 'wiping' infected machines as tensions spike, fresh sanctions approved

Hackers operating on behalf of the Iranian government have turned destructive, the US Department of Homeland Security has claimed.…

Categories: News

Cisco cleans up critical flaws, Florida city forks out $600k to ransomware scumbags, and more from infosec land

The Register - Mon, 24/06/2019 - 10:56
Your quick guide to what else has been happening in computer security lately

Roundup  Here's a quick Monday summary of recent infosec news, beyond what we've already reported.…

Categories: News

Driving Xtreme Cuts: DXC Technology waves bye bye to 45% of Americas Security divison

The Register - Mon, 24/06/2019 - 09:08
50 roles shifted off to India

DXC Technology is sending hundreds of security personnel from the America's division down the redundancy chute and offshoring some of those roles to low-cost centres, insiders are telling us.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News