Communication, communication – and politics: Iowa saga of cuffed infosec pros reveals pentest pitfalls

The Register - Thu, 07/11/2019 - 19:35
Tales from the coal face as experts reflect on what can possibly go wrong on the job

Analysis  It has been six weeks since Coalfire's Gary Demercurio and Justin Wynn were arrested in Dallas County, Iowa, while performing a paid-for security penetration test at a courthouse. Despite everyone acknowledging there was no foul play, the pair still face criminal charges. They deny any wrongdoing.…

Categories: News

Morrisons tells top court it's not liable for staffer who nicked payroll data of 100,000 employees

The Register - Thu, 07/11/2019 - 14:00
Supermarket takes appeal to most senior legal eagles

Brit supermarket Morrisons is arguing in the Supreme Court that it shouldn't be held vicariously liable for the actions of a rogue employee who stole and leaked the company's payroll.…

Categories: News

We're almost into the third decade of the 21st century and we're still grading security bugs out of 10 like kids. Why?

The Register - Thu, 07/11/2019 - 08:07
Infosec veteran Marc Rogers on why we need a better system to rate vulnerabilities

Disclosure  The way we rate the severity of computer security vulnerabilities and bugs needs to change if people and businesses want to be better protected from malware and cyber-crime.…

Categories: News

Microsoft crams Office 365 docs into Edge-style sandboxes to thwart malware infections

The Register - Thu, 07/11/2019 - 06:03
Your guide to some of the security enhancements announced this week

Ignite  Amid the flood of news from Microsoft's Ignite conference in Florida this week, Redmond dropped word of several new features and additions to its cloud services aimed at protecting user data.…

Categories: News

Ex-Twitter staff charged with spying for Saudi royals: Duo accused of leaking account records, including those of critics

The Register - Thu, 07/11/2019 - 02:52
One cuffed by Feds this week

Two now-ex Twitter employees have been charged with spying on behalf of Saudi Arabia – after they allegedly leaked internal records for accounts linked to critics of the Saudi royal family, including the assassinated journalist Jamal Khashoggi, while working for the social network.…

Categories: News

Google's joins Gang of Four to guard Play Store apps from malware, and maybe not fail so much

The Register - Wed, 06/11/2019 - 22:37
The App Defense Alliance posse will scrutinize Android app code before release

Google, after more than a decade of dealing with Android malware, has formed an alliance with three security companies to help it defend its mobile platform.…

Categories: News

NSA to Congress: Our spy programs don’t work, aren’t used, or have gone wrong – now can you permanently reauthorize them?

The Register - Wed, 06/11/2019 - 21:26
Senators: Um, no.

The NSA was unable to give a single example of how one of its most controversial spying programs has been useful in the fight against terrorism in a Congressional hearing on Wednesday morning.…

Categories: News

Trend Micro: Our super-duper security software will keep you safe from everyone – except our staff who go rogue

The Register - Wed, 06/11/2019 - 20:10
Insider sold 120,000 customer records to scammers

Trend Micro today revealed one of its staff went rogue and illegally sold the personal information of roughly 120,000 of its customers.…

Categories: News

Controversies aren't Boeing away for aircraft maker amid claims of faulty oxygen systems and wobbling wings

The Register - Wed, 06/11/2019 - 15:57
737 NG and 787 Dreamliner hit with safety flaw allegations

Ailing Boeing has been hit with a double whammy of recent controversies alleging safety flaws with its 737 NG (not the fatally flawed Max) and the 787 Dreamliner.…

Categories: News

Leeds IT bloke pleads guilty to hacking Jet2 CEO's email account

The Register - Wed, 06/11/2019 - 14:07
27-year-old 'fessed up to 8 offences

Exclusive  A man has pleaded guilty to hacking low-cost airline Jet2, including an attempt to compromise the CEO's email account.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News