News

Scram CamScanner, says Kaspersky

An Android PDF maker with more than 100 million downloads from the official Play Store has been caught silently installing malware on victims' phones.…

Starting a war over stopped trams? Unlikely, says intelligence boffin

NATO's secretary-general has once again declared that members of the alliance will respond with force to cyber-attacks, in line with Article 5 of its founding treaty.…

About your data breach the other day, lads...

Transport for London is looking at ways to improve its processes after a Register reader queried why he was being asked to write down his password on a paper form for railway staff to read.…

EA and ESA subscribers can get 12 free months of updates

With Windows 7's official retirement less than five months away, Redmond is offering some business customers a way to squeeze a bit more life out of the beloved OS.…

The fix for the fix is in

Apple has issued an update to address a potentially serious security flaw it re-opened in the latest version of iOS.…

NASA space ace accused of hacking ex-wife's bank account mid-orbit and mid-divorce

A NASA astronaut has been accused of breaking into her wife's bank account while working aboard the International Space Station.…

Including AV patches, VPN attacks, data leaks, and security cam holes

Roundup  Summer is winding down, although there are plenty of computer security news bits and bytes to go around.…

Lawsuit argues event bosses breached deal by failing to prevent audience hostility

Crown Sterling, a Newport Beach, California-based biz that calls itself "a leading digital cryptographic firm," is suing UBM, the UK-based owner of the Black Hat USA conference, in America for allegedly violating its sponsorship agreement.…

Solution Centre WONTFIX amid EOL date shenanigans

Not only has a vulnerability been found in Lenovo Solution Centre (LSC), but the laptop maker fiddled with end-of-life dates to make it seem less important – and is now telling the world it EOL'd the vulnerable monitoring software before its final version was released.…

27-year-old also shipped weed, flogged 'how-to' fraud guides

A hacker from Kent has handed over almost a million quid in Bitcoin following a lengthy police investigation.…

Standard enables more security key options with passwordless a future possibility

GitHub has announced support for the Web Authentication (WebAuthn) security standard.…

Security bod may be invited back into vuln reward program, Half-Life 3 still ain't happening

Games giant Valve is attempting to make nice with the infosec bod who disclosed zero-day exploits for vulnerabilities in Steam after the corporation refused to pay out bug bounties for the flaws.…

Disclaimer: No advertisers were harmed in making this project

On Thursday, Google reminded everyone who might have forgotten that "privacy is paramount to us" and announced an initiative called "Privacy Sandbox" that proposes paving over a few privacy pitfalls without suffocating its ad business.…

Could a simple automated scan have picked up open-source nasty? Hmm

Android spyware – open-source spyware, no less – has found its way onto the Google Play store, according to researchers from ESET.…

You can make your own joke about foxes and hen houses...

The Linux Foundation has signed up the likes of Microsoft and Google for its Confidential Computing Consortium, a group with the laudable goal of securing sensitive data.…

EoP bug now free for the world to see after bounty was rejected

A security bod angry at Valve's handling of bug reports has released a zero-day vulnerability affecting the games giant's flagship Steam app.…

Plus UCS and other gear need updates

Cisco has emitted a fresh round of software updates to address security holes in its network switches and controllers.…

* Terms and conditions apply. Offer not valid outside Kazakhstan. Your home may be repossessed if you do not keep up payments

On Wednesday, Google, Apple, and Mozilla said their web browsers will block the Kazakhstan root Certificate Authority (CA) certificate – following reports that ISPs in the country have required customers to install a government-issued certificate that enables online spying.…

Better to be aggressive and safe than sorry

IT admins could go a long way towards protecting their users from malware and other dodgy stuff on the internet if they ban access to any web domain less than a month old.…

Doors on the Edge Insider Bounty Program flung open

Having finally pushed out the first Beta preview of its Chromium-based browser, Microsoft has launched a bounty programme aimed at getting researchers to kick the tyres on its latest and greatest.…