Fraught 'naut who sought consort's report says: I was up to naught, I will thwart fault tort

The Register - Mon, 26/08/2019 - 21:28
NASA space ace accused of hacking ex-wife's bank account mid-orbit and mid-divorce

A NASA astronaut has been accused of breaking into her wife's bank account while working aboard the International Space Station.…

Categories: News

Hacktivist skids nip at Mounties' ankles, Emotet ransomware rides again, and more

The Register - Mon, 26/08/2019 - 10:08
Including AV patches, VPN attacks, data leaks, and security cam holes

Roundup  Summer is winding down, although there are plenty of computer security news bits and bytes to go around.…

Categories: News

Biz forked out $115k to tout 'Time AI' crypto at Black Hat. Now it sues organizers because hackers heckled it

The Register - Mon, 26/08/2019 - 09:02
Lawsuit argues event bosses breached deal by failing to prevent audience hostility

Crown Sterling, a Newport Beach, California-based biz that calls itself "a leading digital cryptographic firm," is suing UBM, the UK-based owner of the Black Hat USA conference, in America for allegedly violating its sponsorship agreement.…

Categories: News

Security gone in 600 seconds: Make-me-admin hole found in Lenovo Windows laptop crapware. Delete it now

The Register - Fri, 23/08/2019 - 19:14
Solution Centre WONTFIX amid EOL date shenanigans

Not only has a vulnerability been found in Lenovo Solution Centre (LSC), but the laptop maker fiddled with end-of-life dates to make it seem less important – and is now telling the world it EOL'd the vulnerable monitoring software before its final version was released.…

Categories: News

Cybercrook hands cops £923k in Bitcoin made from selling phished deets on the dark web

The Register - Fri, 23/08/2019 - 16:30
27-year-old also shipped weed, flogged 'how-to' fraud guides

A hacker from Kent has handed over almost a million quid in Bitcoin following a lengthy police investigation.…

Categories: News

GitHub upgrades two-factor authentication with WebAuthn support

The Register - Fri, 23/08/2019 - 09:08
Standard enables more security key options with passwordless a future possibility

GitHub has announced support for the Web Authentication (WebAuthn) security standard.…

Categories: News

Steam cleaned of zero-day security holes after Valve turned off by bug bounty snub outrage

The Register - Fri, 23/08/2019 - 00:14
Security bod may be invited back into vuln reward program, Half-Life 3 still ain't happening

Games giant Valve is attempting to make nice with the infosec bod who disclosed zero-day exploits for vulnerabilities in Steam after the corporation refused to pay out bug bounties for the flaws.…

Categories: News

As browser rivals block third-party tracking, Google pitches 'Privacy Sandbox' peace plan

The Register - Thu, 22/08/2019 - 22:14
Disclaimer: No advertisers were harmed in making this project

On Thursday, Google reminded everyone who might have forgotten that "privacy is paramount to us" and announced an initiative called "Privacy Sandbox" that proposes paving over a few privacy pitfalls without suffocating its ad business.…

Categories: News

Contacts-slurping Android malware sneaked onto Google Play store – twice

The Register - Thu, 22/08/2019 - 18:30
Could a simple automated scan have picked up open-source nasty? Hmm

Android spyware – open-source spyware, no less – has found its way onto the Google Play store, according to researchers from ESET.…

Categories: News

Shhh! Microsoft, Intel, Google and more sign up to the Confidential Computing Consortium

The Register - Thu, 22/08/2019 - 13:15
You can make your own joke about foxes and hen houses...

The Linux Foundation has signed up the likes of Microsoft and Google for its Confidential Computing Consortium, a group with the laudable goal of securing sensitive data.…

Categories: News

Disgruntled bug-hunter drops Steam zero-day to get back at Valve for refusing him a bounty

The Register - Thu, 22/08/2019 - 06:16
EoP bug now free for the world to see after bounty was rejected

A security bod angry at Valve's handling of bug reports has released a zero-day vulnerability affecting the games giant's flagship Steam app.…

Categories: News

The Joy of Six... critical security patches: Cisco small biz switches open to hijacking via web UI

The Register - Thu, 22/08/2019 - 01:18
Plus UCS and other gear need updates

Cisco has emitted a fresh round of software updates to address security holes in its network switches and controllers.…

Categories: News

Finally. Thanks so much, nerds. Google, Apple, Mozilla end government* internet spying for good

The Register - Wed, 21/08/2019 - 23:28
* Terms and conditions apply. Offer not valid outside Kazakhstan. Your home may be repossessed if you do not keep up payments

On Wednesday, Google, Apple, and Mozilla said their web browsers will block the Kazakhstan root Certificate Authority (CA) certificate – following reports that ISPs in the country have required customers to install a government-issued certificate that enables online spying.…

Categories: News

Here's a top tip: Don't trust the new guy – block web domains less than a month old. They are bound to be dodgy

The Register - Wed, 21/08/2019 - 20:53
Better to be aggressive and safe than sorry

IT admins could go a long way towards protecting their users from malware and other dodgy stuff on the internet if they ban access to any web domain less than a month old.…

Categories: News

Microsoft: Reckon our code is crap? Prove it and $30k could be yours

The Register - Wed, 21/08/2019 - 16:00
Doors on the Edge Insider Bounty Program flung open

Having finally pushed out the first Beta preview of its Chromium-based browser, Microsoft has launched a bounty programme aimed at getting researchers to kick the tyres on its latest and greatest.…

Categories: News

Sorry script kiddies, hacktivism isn't cool anymore: No one cares about stuff that's easy-peasy to defend against

The Register - Wed, 21/08/2019 - 15:00
So much for Beto O'Rourke's cow-related capers

The youthful doings of US presidential wannabe Beto O'Rourke are in sharp decline, according to threat intel biz Recorded Future, which reckons folk have fallen out of love with hacktivism.…

Categories: News

Stuff like sophisticated government spyware is scary and all – but don't forget, a single .wmv file can pwn you via VLC

The Register - Wed, 21/08/2019 - 09:57
Keep your media player, like other apps, up to date: 13 security flaws fixed

VideoLAN has issued an update to address a baker's dozen of CVE-listed security vulnerabilities in its widely used VLC player software.…

Categories: News

30+ countries, 160,000 emails, $4.2m in cyber-heists… maybe it's time for the Silence hacker crew to change its name

The Register - Wed, 21/08/2019 - 06:00
Russian bank-hacking ring continues its global expansion

The rapidly growing hacking crew dubbed Silence, has – in less than three years – gone from ransacking small regional banks in Eastern Europe to stealing millions from some of the largest international banks.…

Categories: News

No REST for the wicked: Ruby gem hacked to siphon passwords, secrets from web devs

The Register - Tue, 20/08/2019 - 22:21
Developer account cracked due to credential reuse, source tampered with and released to hundreds of programmers

An old version of a Ruby software package called rest-client that was modified and released about a week ago has been removed from the Ruby Gems repository – because it was found to be deliberately leaking victims' credentials to a remote server.…

Categories: News

Huawei goes all <i>Art of War</i> on us: Switches on 'battle mode' and vows to 'dominate the world'

The Register - Tue, 20/08/2019 - 16:30
You listening, Trump?

An internal memo to Huawei staff sent by boss Ren Zhengfei is long on military metaphors and warns that the company needs to go into "battle mode" to counter trade barriers put up by the United States.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News