News

Campaign even targeted branch offices inside China and sought secrets of automotive and engineering companies

Broadcom’s security subsidiary Symantec has named a China-linked hacking gang known as “APT 10” and “Cicada” as the probable source of a year-long attack on Japanese interests around the world.…

Magecart variant has changed and you should be alert, warns RiskIQ

A new offshoot of the Grelos card-skimming malware - a common Magecart variant - is doing the rounds, according to infosec biz RiskIQ.…

The battle of the algorithms has begun

Sponsored  It was 2017 and a hacker had gained access to a digital system at an organization in India. At first it seemed like just a normal intrusion - the kind that happens thousands of times each day. But this one was different.…

Tech tackles two things: 'Aggregate statistics to improve an application, maintain the privacy of the people'

The Internet Security Research Group (ISRG) has a plan to allow companies to collect information about how people are using their products while protecting the privacy of those generating the data.…

Threatens plenty of Zoom sessions in the days ahead... just as well they've updated security in recent weeks

There's nothing quite like eating your own dog food, as Test and Trace chief Baroness Dido Harding has learned after being instructed to self-isolate by the NHS COVID-19 contact-tracing app overnight.…

Daniel Stenberg tells The Reg he's baffled by profile hack

The creator of cURL reassured The Reg on Tuesday that he's not a billionaire rocket man giving away Bitcoins, no matter what his Twitter account claimed.…

Terminated by presidential tweet that piled on the baseless election-rigging allegations CISA director sought to counter

President Donald Trump tonight fired the boss of the US government's Cybersecurity and Infrastructure Security Agency (CISA), the very organisation his administration formed with the aim of shoring up America's computer networks from hackers.…

In latest court bout, snooper biz seems to ask: Are you sure you want to open this can of worms?

Israeli spyware maker NSO Group has taken a leaf out of Hollywood in an attempt to avoid any legal repercussions from making and selling tools that hack WhatsApp users' phones.…

Intel, AMD, Qualcomm are all on board

Microsoft has joined hands with Intel, AMD, and Qualcomm to release a new security chip called Pluton, which Redmond reckons will delete "entire vectors of attack" from the infosec landscape.…

So make sure you've updated since July, fandroids

A crafty person could have slurped every single cookie from a Firefox-using Android device by tricking a user to look at a specially crafted HTML file.…

Mudge work to be done after high-profile Bitcoin scam earlier this year

Twitter has hired legendary hacker Peiter "Mudge" Zatko as head of security.…

Big Sur highlights shortcomings in OCSP comms, APIs

Analysis  Apple plans to revise the way it checks the trustworthiness of Mac applications when they're run – after server problems last week during the launch of macOS Big Sur prevented people's desktop apps from starting.…

Top speakers, new courses, all live online

Promo  If you work in cybersecurity you’ll know that come December, it’s time to kick back, take stock… and prepare for whatever devilish tricks the hacker community is planning to pull over Christmas and into 2021. And this year and next can be expected to be particularly challenging, with cyber criminals looking to take advantage of a chaotic 2020, whether it’s by targeting the security gaps opened up as your workforce has gone remote or ripping the headlines for enticing spear phishing material.…

Hundreds of email addresses exposed, customers predictably less-than-thrilled

Micropayments company Coil has emailed users its new privacy policy but placed hundreds of their addresses in the “To:” field and therefore breached their privacy.…

Capcom KO'd by 'criminal organisation that calls itself Ragnar Locker'

Japanese games giant Capcom, the company behind the 33-year-old Street Fighter franchise, has issued "deepest apologies" to customers and other stakeholders whose details were exposed in a ransomware attack.…