News

So says Pro Privacy after automatedly gazing at 82,000 sites

British charities are sharing information about people visiting their websites with adtech data brokers, according to a report.…

The Orange One was using a password breached four years previously

Three “grumpy old hackers” in the Netherlands managed to access Donald Trump’s Twitter account in 2016 by extracting his password from the 2012 Linkedin hack.…

BORKlife! Flaw allows overwriting of keys by the habitual voyeur

The Bluetooth Special Interest Group has admitted some previous iterations of its technology had a flaw that could be exploited to hijack or eavesdrop on nearby connections.…

UK political parties probed, too, reckons Redmond as it wades into debate with call for extra election security funding

Microsoft believes there have been extensive “cyberattacks targeting people and organizations involved in the upcoming presidential election,” and that foreign government hackers responsible for attacks ahead of the 2016 vote are back with new and nastier tactics.…

Here’s an ebook just for you, courtesy of Rapid7

Promo  When you’re running security, it can be hard not to feel you’re slogging away in the trenches, saving your organisation on a daily basis, but getting precious little in the way of recognition and even less in terms of budget.…

Swansea-based CPS Advisory hit dial 106,987 times in 80 days, says ICO

Britain’s data watchdog says it has snared Swansea-based business CPS Advisory for making more than 100,000 “unauthorised direct marketing calls” to people about their pensions, and subsequently fined the company £130,000.…

Anti-social network asked to stop piping Irish uncles' mutterings to America

Facebook has been reportedly asked to stop sending data from Ireland to the US, on orders from the EU.…

‘Anti-China elements viciously attacked’ with links to racy personal service provider and propaganda

China’s UK embassy has lashed out after the Twitter account of its ambassador Liu Xiaoming was apparently hacked.…

'Particularly students in high school and college classes'

Researchers have published the first detailed look into what makes people troll Zoom calls and other video-conferencing meetings – and found the vast majority are inside jobs, and unique per-person access codes could end the practice.…

Silently side-step software safeguards

Video  Boffins in America, the Netherlands, and Switzerland have devised a Spectre-style attack on modern processors that can defeat defenses that are supposed to stop malicious software from hijacking a computer's operating system. The end result is exploit code able to bypass a crucial protection mechanism and take over a device to hand over root access.…

US extradition attempt for ex-WikiLeaker now being heard by London beak

Julian Assange has been told to hold his tongue and not interrupt court proceedings by a judge as he contests US attempts to extradite him from Britain to stand trial over his WikiLeaks website.…

Apple crowd included - as NFC can now be used for something other than Apple Pay

Security token biz Yubico has a new key out today, its latest-generation two-factor encryption (2FA) authentication unit, the Yubico 5C NFC, which includes support for PCs and mobile devices using USB-C, as well as a built-in NFC radio.…

Don't be so smug, Mac users, you're open to an InDesign project file

A nightmare flaw for Exchange Server headlines this month's Patch Tuesday lineup from Microsoft and others.…

Doppelpaymer gang publishes Geordie institution's stolen files online

A cyber attack at Newcastle University has turned out to be a ransomware infection courtesy of the Doppelpaymer gang.…

State-sponsored infrastructure hacking, backdoors-by-fiat and even lock-in all out of bounds in draft code

China has proposed a “Global Initiative on Data Security” that it hopes the world will adopt to govern the collection and use of data by governments and the private sector alike.…

And no good deed (for drug dealers) goes unpunished

In Brief  The US Court of Appeals for the Ninth Circuit ruled last week that the activities of American intelligence agencies unmasked by Edward Snowden were illegal.…

Ripping and replacing Chinese-made gear won't be cheap

The US Federal Communications Commission (FCC) says that performing a full replacement of all Huawei and ZTE hardware on American wireless networks will cost $1.837bn in total.…

'Most developers are highly intelligent, but also highly stupid'

Hard-working but naive developers are a little known but highly dangerous soft spot in an organisation that attackers can exploit.…

And reveals half a dozen WhatsApp bugs into the bargain

Facebook has published its first Vulnerability Disclosure Policy and given itself grounds to blab the existence of bugs to the world if it thinks that’s the right thing to do.…

We should be able to outlaw unauthorized inquiry, Voatz argues

Voatz, the maker of a blockchain-based mobile election voting app pilloried for poor security earlier this year, has urged the US Supreme Court not to change the 1986 Computer Fraud and Abuse Act (CFAA), a law that critics say inhibits security research because it's overly broad.…