Stop us if you've heard this one: US government staff wildly oblivious to basic computer, info security safeguards

The Register - Wed, 26/06/2019 - 02:31
Now for deep-diving Congress hearings... LMAO JK JK they will do nothing

A US Senate probe has once again outlined the woeful state of computer and information security within Uncle Sam's civil service.…

Categories: News

McAfee sues ship-jumping sales staff over trade secret theft allegations

The Register - Tue, 25/06/2019 - 15:13
Complaint claims rival Tanium's hires took deal data with them

McAfee is suing former senior salespeople whom it alleges stole company trade secrets when they moved to a rival security vendor.…

Categories: News

Open-heart nerdery: Boffins suggest identifying and logging in people using ECGs

The Register - Tue, 25/06/2019 - 12:57
Heartbeat rhythms could be the next biometric authentication method

Biometric systems could use the unique patterns from a person's ECG reading for biometric sign-ons.…

Categories: News

Please stop regulating the dumb tubes, says Internet Society boss

The Register - Tue, 25/06/2019 - 09:10
Even govt rules have knock-on effects, warns Andrew Sullivan

Interview  Andrew Sullivan, chief exec of the Internet Society, has condemned governments that "interfere in underlying technologies that people are allowed to build," as regulators increasingly target net infrastructure to enforce their visions of how the online world ought to be.…

Categories: News

What the cell...? Telcos around the world were so severely pwned, they didn't notice the hackers setting up VPN points

The Register - Tue, 25/06/2019 - 04:18
Revealed: Long-running espionage campaign targets phone carriers to snoop on VIPs' location, call records

Hackers infiltrated the networks of at least ten cellular telcos around the world, and remained hidden for years, as part of a long-running tightly targeted surveillance operation, The Register has learned. This espionage campaign is still ongoing, it is claimed.…

Categories: News

Biz tells ransomware victims it can decrypt their files... by secretly paying off the crooks and banking a fat margin

The Register - Mon, 24/06/2019 - 22:44
It's all in a lucrative day's work for Red Mosquito

A Scottish managed services provider is running a lucrative sideline in ransomware decryption – however, a sting operation by a security firm appears to show that “decryption” merely means paying off the malware's masterminds.…

Categories: News

Iran is doing to our networks what it did to our spy drone, claims Uncle Sam: Now they're bombing our hard drives

The Register - Mon, 24/06/2019 - 20:35
Tehran's hackers are 'wiping' infected machines as tensions spike, fresh sanctions approved

Hackers operating on behalf of the Iranian government have turned destructive, the US Department of Homeland Security has claimed.…

Categories: News

Cisco cleans up critical flaws, Florida city forks out $600k to ransomware scumbags, and more from infosec land

The Register - Mon, 24/06/2019 - 10:56
Your quick guide to what else has been happening in computer security lately

Roundup  Here's a quick Monday summary of recent infosec news, beyond what we've already reported.…

Categories: News

Driving Xtreme Cuts: DXC Technology waves bye bye to 45% of Americas Security divison

The Register - Mon, 24/06/2019 - 09:08
50 roles shifted off to India

DXC Technology is sending hundreds of security personnel from the America's division down the redundancy chute and offshoring some of those roles to low-cost centres, insiders are telling us.…

Categories: News

Good old British 'fair play' is the answer to vexed Huawei question, claims security minister

The Register - Fri, 21/06/2019 - 11:00
He then doubled down on spies' 'ghost user' backdoor plan

Solving the Huawei 5G security problem is a question of convincing the Chinese to embrace British "fair play", security minister Ben Wallace said yesterday without the slightest hint of irony.…

Categories: News

Millions of Windows Dell PCs need patching: Give-me-admin security gremlin found lurking in bundled support tool

The Register - Thu, 20/06/2019 - 23:21
Can't spell SupportAssist without 'ass' and 'u' – other makers may be hit, too

Dell's troubleshooting software SupportAssist, bundled with the US tech titan's home and business computers, has a security flaw that can be exploited by malware and rogue logged-in users to gain administrator powers.…

Categories: News

Digi-dosh exchange Coinbase: Someone tried to pwn our staff via this week's Firefox zero-day security hole

The Register - Thu, 20/06/2019 - 21:37
Patch released after crypto-currency biz sounded alarm

The development and release of a critical Firefox security patch this week was, in part, triggered by an attempted cyber-heist of crypto-coin exchange Coinbase.…

Categories: News

Shut the barn door: UK data watchdog tells MPs mass slurping by firms is a huge risk to privacy

The Register - Thu, 20/06/2019 - 13:59
You need to rifle through my photos why, exactly?

Regulators and campaign groups have warned a UK Parliamentary inquiry that the increasing collection, use and storage of data by corporations poses a serious risk to privacy and security.…

Categories: News

If Uncle Sam could quit using insecure .zip files to swap info across the 'net, that would be great, says Silicon Ron Wyden

The Register - Wed, 19/06/2019 - 23:27
Senator urges NIST to do something about it

Influential US Senator Ron Wyden (D-OR) is not happy about Uncle Sam's employees using insecure .zip files and other archive formats to electronically transfer information.…

Categories: News

Google takes the PIS out of advertising: New algo securely analyzes shared encrypted data sets without leaking contents

The Register - Wed, 19/06/2019 - 22:47
Plus: MongoDB crams end-to-end crypto into database tech

Google on Wednesday released source code for a project called Private Join and Compute that allows two parties to analyze and compare shared sets of data without revealing the contents of each set to the other party.…

Categories: News

Using Oracle WebLogic? Put down your coffee, drop out of Discord, grab this patch right now: Vuln under attack

The Register - Wed, 19/06/2019 - 19:35
Emergency security fix emitted for remote code exec hole exploited in the wild

Oracle has issued an emergency critical update to address a remote code execution vulnerability in its WebLogic Server component for Fusion Middleware – a flaw miscreants are exploiting in the wild to hijack systems.…

Categories: News

NASA's JPL may be able to reprogram a probe at the arse end of the solar system, but its security practices are a bit crap

The Register - Wed, 19/06/2019 - 13:18
Office of the Inspector General brings lab back down to Earth

NASA's Jet Propulsion Lab still has "multiple IT security control weaknesses" that expose "systems and data to exploitation by cyber criminals", despite cautions earlier this year.…

Categories: News

Spin the wheel and find today's leaky cloud DB... *clack clack... clack* A huge trove of medical malpractice complaints

The Register - Tue, 18/06/2019 - 23:58
150,000 personal records on people, including US veterans, upset with their healthcare

In what has become a depressingly common occurrence, the personal information of hundreds of thousands of people may have fallen into the wrong hands because yet another organization did not secure a cloud-hosted database.…

Categories: News

Awoogah! Awoogah! Firefox fans urged to update and patch zero-day hole exploited in the wild by miscreants

The Register - Tue, 18/06/2019 - 22:52
Just make sure you're running the latest version

Mozilla has released an emergency critical update for Firefox to squash a zero-day vulnerability that is under active attack.…

Categories: News

Delicious irony: Hacked medical debt collector AMCA files for bankruptcy protection from debt collectors

The Register - Tue, 18/06/2019 - 19:09
The tables are turned, database tables that is

The healthcare debt collector ransacked by hackers, who gained access to millions of patients' personal information, has filed for bankruptcy protection.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News