Android PDF app with just 100m downloads caught sneaking malware into mobes

The Register - Wed, 28/08/2019 - 06:20
Scram CamScanner, says Kaspersky

An Android PDF maker with more than 100 million downloads from the official Play Store has been caught silently installing malware on victims' phones.…

Categories: News

We will hack back if you tamper with our shiz, NATO declares to world's black hats

The Register - Tue, 27/08/2019 - 16:52
Starting a war over stopped trams? Unlikely, says intelligence boffin

NATO's secretary-general has once again declared that members of the alliance will respond with force to cyber-attacks, in line with Article 5 of its founding treaty.…

Categories: News

Yes, TfL asked people to write down their Oyster passwords – but don't worry, they didn't inhale

The Register - Tue, 27/08/2019 - 09:10
About your data breach the other day, lads...

Transport for London is looking at ways to improve its processes after a Register reader queried why he was being asked to write down his password on a paper form for railway staff to read.…

Categories: News

Can't bear to part with that well-worn copy of Windows 7? Microsoft might let you keep it updated an extra year

The Register - Tue, 27/08/2019 - 01:26
EA and ESA subscribers can get 12 free months of updates

With Windows 7's official retirement less than five months away, Redmond is offering some business customers a way to squeeze a bit more life out of the beloved OS.…

Categories: News

Breaking news: Apple un-breaks break on jailbreak break

The Register - Tue, 27/08/2019 - 00:38
The fix for the fix is in

Apple has issued an update to address a potentially serious security flaw it re-opened in the latest version of iOS.…

Categories: News

Fraught 'naut who sought consort's report says: I was up to naught, I will thwart fault tort

The Register - Mon, 26/08/2019 - 21:28
NASA space ace accused of hacking ex-wife's bank account mid-orbit and mid-divorce

A NASA astronaut has been accused of breaking into her wife's bank account while working aboard the International Space Station.…

Categories: News

Hacktivist skids nip at Mounties' ankles, Emotet ransomware rides again, and more

The Register - Mon, 26/08/2019 - 10:08
Including AV patches, VPN attacks, data leaks, and security cam holes

Roundup  Summer is winding down, although there are plenty of computer security news bits and bytes to go around.…

Categories: News

Biz forked out $115k to tout 'Time AI' crypto at Black Hat. Now it sues organizers because hackers heckled it

The Register - Mon, 26/08/2019 - 09:02
Lawsuit argues event bosses breached deal by failing to prevent audience hostility

Crown Sterling, a Newport Beach, California-based biz that calls itself "a leading digital cryptographic firm," is suing UBM, the UK-based owner of the Black Hat USA conference, in America for allegedly violating its sponsorship agreement.…

Categories: News

Security gone in 600 seconds: Make-me-admin hole found in Lenovo Windows laptop crapware. Delete it now

The Register - Fri, 23/08/2019 - 19:14
Solution Centre WONTFIX amid EOL date shenanigans

Not only has a vulnerability been found in Lenovo Solution Centre (LSC), but the laptop maker fiddled with end-of-life dates to make it seem less important – and is now telling the world it EOL'd the vulnerable monitoring software before its final version was released.…

Categories: News

Cybercrook hands cops £923k in Bitcoin made from selling phished deets on the dark web

The Register - Fri, 23/08/2019 - 16:30
27-year-old also shipped weed, flogged 'how-to' fraud guides

A hacker from Kent has handed over almost a million quid in Bitcoin following a lengthy police investigation.…

Categories: News

GitHub upgrades two-factor authentication with WebAuthn support

The Register - Fri, 23/08/2019 - 09:08
Standard enables more security key options with passwordless a future possibility

GitHub has announced support for the Web Authentication (WebAuthn) security standard.…

Categories: News

Steam cleaned of zero-day security holes after Valve turned off by bug bounty snub outrage

The Register - Fri, 23/08/2019 - 00:14
Security bod may be invited back into vuln reward program, Half-Life 3 still ain't happening

Games giant Valve is attempting to make nice with the infosec bod who disclosed zero-day exploits for vulnerabilities in Steam after the corporation refused to pay out bug bounties for the flaws.…

Categories: News

As browser rivals block third-party tracking, Google pitches 'Privacy Sandbox' peace plan

The Register - Thu, 22/08/2019 - 22:14
Disclaimer: No advertisers were harmed in making this project

On Thursday, Google reminded everyone who might have forgotten that "privacy is paramount to us" and announced an initiative called "Privacy Sandbox" that proposes paving over a few privacy pitfalls without suffocating its ad business.…

Categories: News

Contacts-slurping Android malware sneaked onto Google Play store – twice

The Register - Thu, 22/08/2019 - 18:30
Could a simple automated scan have picked up open-source nasty? Hmm

Android spyware – open-source spyware, no less – has found its way onto the Google Play store, according to researchers from ESET.…

Categories: News

Shhh! Microsoft, Intel, Google and more sign up to the Confidential Computing Consortium

The Register - Thu, 22/08/2019 - 13:15
You can make your own joke about foxes and hen houses...

The Linux Foundation has signed up the likes of Microsoft and Google for its Confidential Computing Consortium, a group with the laudable goal of securing sensitive data.…

Categories: News

Disgruntled bug-hunter drops Steam zero-day to get back at Valve for refusing him a bounty

The Register - Thu, 22/08/2019 - 06:16
EoP bug now free for the world to see after bounty was rejected

A security bod angry at Valve's handling of bug reports has released a zero-day vulnerability affecting the games giant's flagship Steam app.…

Categories: News

The Joy of Six... critical security patches: Cisco small biz switches open to hijacking via web UI

The Register - Thu, 22/08/2019 - 01:18
Plus UCS and other gear need updates

Cisco has emitted a fresh round of software updates to address security holes in its network switches and controllers.…

Categories: News

Finally. Thanks so much, nerds. Google, Apple, Mozilla end government* internet spying for good

The Register - Wed, 21/08/2019 - 23:28
* Terms and conditions apply. Offer not valid outside Kazakhstan. Your home may be repossessed if you do not keep up payments

On Wednesday, Google, Apple, and Mozilla said their web browsers will block the Kazakhstan root Certificate Authority (CA) certificate – following reports that ISPs in the country have required customers to install a government-issued certificate that enables online spying.…

Categories: News

Here's a top tip: Don't trust the new guy – block web domains less than a month old. They are bound to be dodgy

The Register - Wed, 21/08/2019 - 20:53
Better to be aggressive and safe than sorry

IT admins could go a long way towards protecting their users from malware and other dodgy stuff on the internet if they ban access to any web domain less than a month old.…

Categories: News

Microsoft: Reckon our code is crap? Prove it and $30k could be yours

The Register - Wed, 21/08/2019 - 16:00
Doors on the Edge Insider Bounty Program flung open

Having finally pushed out the first Beta preview of its Chromium-based browser, Microsoft has launched a bounty programme aimed at getting researchers to kick the tyres on its latest and greatest.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News