Azure flings out free virtual trusted platform module for cloudy VMs

The Register - Tue, 09/03/2021 - 05:58
Take that, rootkits and other low-level nasties - if they take a crack at fresh VMs, on certain instance types under a handful of OSes

Microsoft has revealed that its Azure IaaS platform now offers free a virtual trusted platform module.…

Categories: News

Apple emits patches for iOS, macOS, Safari, etc to stop dodgy websites hijacking people's gadgets

The Register - Tue, 09/03/2021 - 01:07
Plus: Chrome also patched, Microsoft and Intel team up for homomorphic encryption, and more

In brief  Apple on Monday released security patches for macOS, iOS, iPadOS, watchOS, and Safari to fix up a vulnerability that can be exploited by malicious web pages to run malware on victims' computers and gadgets.…

Categories: News

Google engineer urges web devs to step up and secure their code in this data-spilling Spectre-haunted world

The Register - Mon, 08/03/2021 - 23:22
'This is going to be a lot of work ... a reasonable set of mitigation primitives exists today, ready and waiting for use'

After the disclosure of the 2018 Spectre family of vulnerabilities in modern microprocessor chips, hardware vendor and operating system makers scrambled to reduce the impact of data-leaking side-channel attacks designed to exploit the way chips try to predict future instructions.…

Categories: News

McAfee to offload enterprise business for $4bn, focus on consumer security

The Register - Mon, 08/03/2021 - 20:56
While its namesake founder is indicted for fraud and money laundering

McAfee will sell off its enterprise business to private equity firm Symphony Technology Group (STG) for $4bn in cash, the venerable security biz announced on Monday.…

Categories: News

University of the Highlands and Islands shuts down campuses as it deals with 'ongoing cyber incident'

The Register - Mon, 08/03/2021 - 14:55
Ten letters, starts with R, ends with E, three syllables

The University of the Highlands and Islands (UHI) in Scotland is fending off "an ongoing cyber incident" that has shut down its campuses.…

Categories: News

SolarWinds just keeps getting worse: New strain of malware found infecting victims

The Register - Mon, 08/03/2021 - 12:30
Plus: McAfee's in serious trouble over claimed cryptocurrency scam

In brief  Another form of malware installed in servers made vulnerable by flaws in SolarWinds' Orion management software has been spotted in the wild.…

Categories: News

The torture garden of Microsoft Exchange: Grant us the serenity to accept what they cannot EOL

The Register - Mon, 08/03/2021 - 10:15
Time to fix those legacy evils, though.... right?

Column  It is the monster which corrupts all it touches. It is an energy-sucking vampire that thrives on the pain it promotes. It cannot be killed, but grows afresh as each manifestation outdoes the last in awfulness and horror. It is Microsoft Exchange and its drooling minion, Outlook.…

Categories: News

US National Security Council urges review of Exchange Servers in wake of Hafnium attack

The Register - Mon, 08/03/2021 - 04:58
Don't just patch, check for p0wnage, says top natsec team

The Biden administration has urged users of Microsoft's Exchange mail and messaging server to ensure they have not fallen victim to the recently-detected "Hafnium" attack on Exchange Server that Microsoft says originated in China.…

Categories: News

Intel CPU interconnects can be exploited by malware to leak encryption keys and other info, academic study finds

The Register - Mon, 08/03/2021 - 01:00
Side-channel ring race 'hard to mitigate with existing defenses'

Chip-busting boffins in America have devised yet another way to filch sensitive data by exploiting Intel's processor design choices.…

Categories: News

EFF urges Google to ground its FLoC: 'Pro-privacy' third-party cookie replacement not actually great for privacy

The Register - Fri, 05/03/2021 - 21:18
'That is not the world we want, nor the one users deserve'

With the arrival of Google Chrome v89 on Tuesday, Google is preparing to test a technology called Federated Learning of Cohorts, or FLoC, that it hopes will replace increasingly shunned, privacy-denying third-party cookies.…

Categories: News

Oh SITA: Airline IT provider confirms passenger data leaked after major 'cyber-attack'

The Register - Fri, 05/03/2021 - 16:01
Data from multiple aviation giants hit

Not that many planes are taking off these days, but that didn’t stop the flight of passenger records from servers belonging to aviation tech supplier SITA after it was hit by a "cyberattack".…

Categories: News

While Reg readers know the difference between a true hacker and cyber-crook, for everyone else, hacking means illegal activity

The Register - Fri, 05/03/2021 - 11:00
Our vulture Iain argues against this week's motion

Reader debate  Welcome to the latest Register Debate in which writers discuss technology topics, and you – the reader – choose the winning argument. The format is simple: a motion was proposed this week, the argument for the motion was published on Wednesday, and the argument against is published today.

Categories: News

Dutch government: Did we say 10 'high data protection risks' in Google Workspace block adoption? Make that 8

The Register - Fri, 05/03/2021 - 10:15
Untangling privacy implications of using Google's productivity suite not easy

A Dutch government report identifying "10 high data protection risks" for users of Google Workspace, formerly known as G Suite, has been revised after Google's response, and now says eight high risk issues still remain.…

Categories: News

Biden administration labels China top tech threat, promises proportionate responses to cyberattacks

The Register - Fri, 05/03/2021 - 05:02
Tech visa reform pledged, alongside diplomacy to write new rules for tech

The Biden administration has named China as the most threatening nation the United States faces, on grounds that it can combine its technological and other capabilities like no other.…

Categories: News

AdGuard names 6,000+ web trackers that use CNAME chicanery: Feel free to feed them into your browser's filter

The Register - Thu, 04/03/2021 - 21:18
Assuming your content blocker can scrutinize DNS

AdGuard on Thursday published a list of more than 6,000 CNAME-based trackers so they can be incorporated into content-blocking filters.…

Categories: News

Like a challenge in a high profile 'face-of-IT' role? Welcome to the Home Office

The Register - Thu, 04/03/2021 - 13:20
Talk about a hostile environment... It's £70k+ but you'll really sweat for it

For the brave – or perhaps foolhardy – senior IT jobs hunters there is an opening at the UK Home Office for a Deputy Director of IT Operations in a lovely '70s era highrise in Croydon.…

Categories: News

Would you let users vouch for unknown software's safety with an upvote? Google does

The Register - Thu, 04/03/2021 - 07:55
And so can you, because its vote-for-code tools are now on GitHub

POLL  Google has revealed that its internal anti-malware tools include a “social voting” scheme that lets staff vouch for code they want to install won’t do any damage.…

Categories: News

Qualys hit with ransomware: Customer invoices leaked on extortionists' Tor blog

The Register - Wed, 03/03/2021 - 17:00
Ace infosec biz aware and investigating, we're told

Infosec outfit Qualys, its cloud-based vuln detection tech, and its SSL server test webpage, have seemingly fallen victim to a ransomware attack.…

Categories: News

Proof of concept code published for latest Saltstack CVE: Don't be an update laggard

The Register - Wed, 03/03/2021 - 16:47
Any user could become root, warns Immersive Labs researcher

Proof of concept code has been published for a vulnerability in popular data centre security management tool Saltstack, which was discovered after a developer at Immersive Labs found a privilege escalation bug allowing any old user to become root.…

Categories: News

Cybersecurity threats aren't getting any smaller. Could big data help?

The Register - Wed, 03/03/2021 - 16:00
Spend a little time with our Tim and Nutanix’s Kong Yang – and learn how to crack the conundrum

Webcast  Upheaval always creates opportunity, and it’s often cyber criminals who are the first to exploit it.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News