Adtech's bogeymen are tracking everything - even your web visits to mental health charities, claim campaigners

The Register - Fri, 11/09/2020 - 13:01
So says Pro Privacy after automatedly gazing at 82,000 sites

British charities are sharing information about people visiting their websites with adtech data brokers, according to a report.…

Categories: News

Three middle-aged Dutch hackers slipped into Donald Trump's Twitter account days before 2016 US election

The Register - Fri, 11/09/2020 - 10:07
The Orange One was using a password breached four years previously

Three “grumpy old hackers” in the Netherlands managed to access Donald Trump’s Twitter account in 2016 by extracting his password from the 2012 Linkedin hack.…

Categories: News

Billions of Bluetooth gadgets bothered by ‘BLURtooth’ miscreant-in-the-middle bug

The Register - Fri, 11/09/2020 - 08:42
BORKlife! Flaw allows overwriting of keys by the habitual voyeur

The Bluetooth Special Interest Group has admitted some previous iterations of its technology had a flaw that could be exploited to hijack or eavesdrop on nearby connections.…

Categories: News

China, Russia <i>and</i> Iran all attacking US elections and using some nasty new tactics, says Microsoft

The Register - Fri, 11/09/2020 - 02:26
UK political parties probed, too, reckons Redmond as it wades into debate with call for extra election security funding

Microsoft believes there have been extensive “cyberattacks targeting people and organizations involved in the upcoming presidential election,” and that foreign government hackers responsible for attacks ahead of the 2016 vote are back with new and nastier tactics.…

Categories: News

How to talk vulnerability management with the C-suite – and make them care

The Register - Thu, 10/09/2020 - 18:03
Here’s an ebook just for you, courtesy of Rapid7

Promo  When you’re running security, it can be hard not to feel you’re slogging away in the trenches, saving your organisation on a daily basis, but getting precious little in the way of recognition and even less in terms of budget.…

Categories: News

Pension scheme cold caller fined £130,000 by UK data watchdog

The Register - Thu, 10/09/2020 - 15:05
Swansea-based CPS Advisory hit dial 106,987 times in 80 days, says ICO

Britain’s data watchdog says it has snared Swansea-based business CPS Advisory for making more than 100,000 “unauthorised direct marketing calls” to people about their pensions, and subsequently fined the company £130,000.…

Categories: News

Ireland unfriends Facebook: Oh Zucky Boy, the pipes, the pipes are closing…from glen to US, and through the EU-side

The Register - Thu, 10/09/2020 - 12:25
Anti-social network asked to stop piping Irish uncles' mutterings to America

Facebook has been reportedly asked to stop sending data from Ireland to the US, on orders from the EU.…

Categories: News

China’s UK embassy calls for probe into 'hack of Ambassador’s Twitter account'

The Register - Thu, 10/09/2020 - 07:27
‘Anti-China elements viciously attacked’ with links to racy personal service provider and propaganda

China’s UK embassy has lashed out after the Twitter account of its ambassador Liu Xiaoming was apparently hacked.…

Categories: News

Now that's a somewhat unexpected insider threat: Zoombombings mostly blamed on rogue participants, unique solution offered

The Register - Thu, 10/09/2020 - 07:06
'Particularly students in high school and college classes'

Researchers have published the first detailed look into what makes people troll Zoom calls and other video-conferencing meetings – and found the vast majority are inside jobs, and unique per-person access codes could end the practice.…

Categories: News

Don't be BlindSided: Watch speculative memory probing bypass kernel defenses, give malware root control

The Register - Thu, 10/09/2020 - 03:59
Silently side-step software safeguards

Video  Boffins in America, the Netherlands, and Switzerland have devised a Spectre-style attack on modern processors that can defeat defenses that are supposed to stop malicious software from hijacking a computer's operating system. The end result is exploit code able to bypass a crucial protection mechanism and take over a device to hand over root access.…

Categories: News

I can 'proceed without you', judge tells Julian Assange after courtroom outburst

The Register - Wed, 09/09/2020 - 17:12
US extradition attempt for ex-WikiLeaker now being heard by London beak

Julian Assange has been told to hold his tongue and not interrupt court proceedings by a judge as he contests US attempts to extradite him from Britain to stand trial over his WikiLeaks website.…

Categories: News

Remember the Titans: Yubico jangles new NFC and USB-C touting security key

The Register - Wed, 09/09/2020 - 13:00
Apple crowd included - as NFC can now be used for something other than Apple Pay

Security token biz Yubico has a new key out today, its latest-generation two-factor encryption (2FA) authentication unit, the Yubico 5C NFC, which includes support for PCs and mobile devices using USB-C, as well as a built-in NFC radio.…

Categories: News

Enjoyed the US Labor Day weekend? Because it's September 2020 and Exchange Server can be pwned via email

The Register - Tue, 08/09/2020 - 23:02
Don't be so smug, Mac users, you're open to an InDesign project file

A nightmare flaw for Exchange Server headlines this month's Patch Tuesday lineup from Microsoft and others.…

Categories: News

Newcastle University, neighbouring Northumbria hit by ransomware attacks

The Register - Tue, 08/09/2020 - 16:30
Doppelpaymer gang publishes Geordie institution's stolen files online

A cyber attack at Newcastle University has turned out to be a ransomware infection courtesy of the Doppelpaymer gang.…

Categories: News

China proposes ‘Global Initiative on Data Security’ forbidding stuff it and Huawei are accused of doing already

The Register - Tue, 08/09/2020 - 07:29
State-sponsored infrastructure hacking, backdoors-by-fiat and even lock-in all out of bounds in draft code

China has proposed a “Global Initiative on Data Security” that it hopes the world will adopt to govern the collection and use of data by governments and the private sector alike.…

Categories: News

US Appeal court rules Snowden right - US data grab was illegal, but you're still guilty and going down

The Register - Mon, 07/09/2020 - 07:01
And no good deed (for drug dealers) goes unpunished

In Brief  The US Court of Appeals for the Ninth Circuit ruled last week that the activities of American intelligence agencies unmasked by Edward Snowden were illegal.…

Categories: News

What price security? Well, for the US ban on Huawei/ZTE kit it's around $1.8bn, and you're going to pay most of it

The Register - Sat, 05/09/2020 - 00:10
Ripping and replacing Chinese-made gear won't be cheap

The US Federal Communications Commission (FCC) says that performing a full replacement of all Huawei and ZTE hardware on American wireless networks will cost $1.837bn in total.…

Categories: News

Old and busted: Targeting servers and web bugs. New hotness: Pwning devs with targeted poisoned stacks

The Register - Fri, 04/09/2020 - 12:15
'Most developers are highly intelligent, but also highly stupid'

Hard-working but naive developers are a little known but highly dangerous soft spot in an organisation that attackers can exploit.…

Categories: News

Facebook to blab bugs it finds if it thinks code owners aren’t fixing fast enough

The Register - Fri, 04/09/2020 - 07:41
And reveals half a dozen WhatsApp bugs into the bargain

Facebook has published its first Vulnerability Disclosure Policy and given itself grounds to blab the existence of bugs to the world if it thinks that’s the right thing to do.…

Categories: News

Surprise! Voting app maker roasted by computer boffins for poor security now begs US courts to limit flaw finding

The Register - Fri, 04/09/2020 - 02:13
We should be able to outlaw unauthorized inquiry, Voatz argues

Voatz, the maker of a blockchain-based mobile election voting app pilloried for poor security earlier this year, has urged the US Supreme Court not to change the 1986 Computer Fraud and Abuse Act (CFAA), a law that critics say inhibits security research because it's overly broad.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News