News

Hackers cheese free slices after logins from other websites deliver the goods

Pizza Hut has warned members of its loyalty scheme "Hut Rewards" not to re-use passwords after hackers managed to access some customer accounts.…

We know it's controversial – but don't rule out paying the ransom to unscramble your biz files, experts suggest

As ransomware infections continue, conventional wisdom on how to respond to threats is going out the window.…

Updates are on the way… if you have a Google device, at least

Google has released its June bundle of security vulnerability patches for Android, with fixes for 22 CVE-listed flaws included.…

Absolutely criminal behavior – unrestricted file upload, really?

Exclusive  Phishing kits – used by miscreants to build webpages that steal victims' personal information and money by masquerading as legit websites – harbor vulnerabilities that can be exploited by other miscreants to pilfer freshly stolen data.…

Inoffensive, nondescript logo screams 'building a safer world'

Logowatch  The strategy boutique opened a pop-up shop on the wild steppe of Kaspersky Lab yesterday as the Russian antivirus developer revealed a daring redesign that involves dropping the word "Lab".…

Outsourced silos of personal info raided, at least 200,000 payment details swiped

Hackers have raided databases containing millions of medical test lab patients' personal and payment information, making off with at least hundreds of thousands of people's banking details.…

Or so claim these security bods after clocking proxy-installing fake Flash plugin

A devious and baffling new strain of malware intercepts and tampers with internet traffic on infected Apple Macs to inject Bing results into users' Google search results, we're told.…

Upgraded its systems after attack in early '18, just enough to detect attack in late '18

The Australian National University (ANU) today copped to a fresh breach in which intruders gained access to "significant amounts" of data stretching back 19 years.…

Video streams can be hijacked by anyone on your Wi-Fi

Owners of Supra Smart Cloud TVs are in danger of getting some unwanted programming: it's possible for miscreants or malware on your Wi-Fi network to switch whatever you're watching for video of their or its choosing.…

Redmond kinda just shrugs after advertising systems sling scareware pop-ups at users

Application makers are crying foul after some of their programs distributed via the Windows Store popped open tech-support scam ads on users' desktops.…

Academic outfit U-turns on blacklisting Chinese bogeyman

The US-based Institute of Electrical and Electronics Engineers (IEEE) has lifted its sanctions on Huawei-linked academic reviewers.…

Three words to ruin an Apple engineer's day: 'Patrick Wardle disclosure'

Malware can bypass protections in macOS Mojave, and potentially access user data as well as the webcam and mic – by exploiting a hole in Apple's legacy app support.…

No data nicked in weekend attack but systems and server pulled to contain infection

Bio-analytical testing biz Eurofins Scientific today admitted it was the subject of a ransomware attack at the weekend.…

Another week of security mishaps is in the books

Roundup  Here's a quick summary of news in the world of information security beyond everything we've already covered.…

Now they're withdrawing co-operation too

Following disquiet over the IEEE's decision to block Huawei-linked researchers from doing various academic tasks, a Chinese computer research body has reportedly severed ties with the IEEE in retaliation.…

If you've bought a Foxes shirt lately, check your statements

Leicester City Football Club has quietly told people who bought stuff from its website that their financial details have been stolen by hackers – and those details include credit card numbers and CVVs.…

Ad giant's site slurping tech complicates web security model, could give more power to search engines and social networks, Firefox maker warns

Mozilla has published a series of objections to web packaging, a content distribution scheme proposed by engineers at Google that the Firefox maker considers harmful to the web in its current form.…

No policy to stop use of dodgy foreign network providers. You'd hope common sense would prevail, but...

US government workers may be placing America's national security at risk as there is no official policy banning them from running their smartphones' personal and official internet traffic through untrustworthy foreign-hosted VPN services.…

Brit spies' idea would backdoor WhatsApp et al without breaking the crypto

Bruce Schneier, Richard Stallman and a host of western tech companies including Microsoft and WhatsApp are pushing back hard against GCHQ proposals that to add a "ghost user" to encrypted messaging services.…

Nanshou malware hijacked more than 50,000 MS-SQL boxes with rootkits

More than 50,000 servers around the world have been infected with malware that installs crypto-coin-mining scripts and advanced rootkits, it is claimed.…