Rowhammer rides again as FPGA attack, RSA again reportedly up for sale, anti-theft kit to nuke laptops, etc

The Register - Mon, 06/01/2020 - 06:58
Including: Tesla and a town hit hard by spear-phish bridge scammers

Roundup  Welcome to the New Year: here are some security headlines that may have slipped past you during the gorging season.…

Categories: News

IT exec sets up fake biz, uses it to bill his bosses $6m for phantom gear, gets caught by Microsoft Word metadata

The Register - Sat, 04/01/2020 - 01:24
And now he faces up to 20 years in the slammer

A now-former senior IT exec has admitted conning his employer out of $6m – by setting up a fake tech services biz that billed his bosses for bogus services.…

Categories: News

New year, new critical Cisco patches to install – this time for a dirty dozen of bugs that can be exploited to sidestep auth, inject commands, etc

The Register - Fri, 03/01/2020 - 20:10
Data Center Network Manager bugapalooza with three must-fix flaws

Cisco is kicking off 2020 with the release of a crop of patches for its Data Center Network Manager.…

Categories: News

Brit banking sector hasn't gone a single day of 2020 without something breaking

The Register - Fri, 03/01/2020 - 16:22
Yorkshire and Clydesdale latest to join ongoing game of TITSUP*manship

Updated  It appears the UK banking system is playing a fiscal game of Top Trumps as both Yorkshire and Clydesdale Bank followed yesterday's example set by Lloyds by not processing payments into customer accounts.…

Categories: News

Don't Xiaomi pics of other people's places! Chinese kitmaker fingers dodgy Boxing Day cache update after Google banishes it from Home

The Register - Fri, 03/01/2020 - 12:47
Redditor finds security camera capturing stills from strangers' cribs

Google has plonked Xiaomi on the naughty step, blocking the Chinese tech conglomerate's devices from its Nest Hub and Assistant, it has confirmed.…

Categories: News

This page is currency unavailable... Travelex scrubs UK homepage, kills services, knackers other sites amid 'software virus' infection

The Register - Fri, 03/01/2020 - 05:53
Systems still toast since NYE compromise, manual processing only

Foreign currency mega-exchange Travelex said on Thursday it was forced offline by a "software virus" infection, bring down a number of currency-exchange websites with it.…

Categories: News

And we now go live to Apple v Corellium, where the iTitan is still lobbing copyright fireballs at the virtual iPhone upstart

The Register - Fri, 03/01/2020 - 01:02
Cupertino says its software is being ripped off, virty cloud biz says jailbreaks are under attack

Corellium and Apple are once again trading allegations in a legal brouhaha over the former's virtual-iPhones-as-a-service operation.…

Categories: News

Oddly specific 'cyber attack' hits Alaskan airline RavnAir and one plane type

The Register - Thu, 02/01/2020 - 19:05
Dash 8? More like dash for the maintenance hangar

A small Alaskan airline has suffered a curiously specific "cyber attack" that mostly affected its De Havilland Dash 8 airliners.…

Categories: News

TikTok boom: US Army bans squaddies from using trendy app on govt-issued phones

The Register - Thu, 02/01/2020 - 18:04
Guess they'll have to attract new recruits on the 'Gram

TikTok is one of the fastest growing social apps, with more than 1.5 billion downloads. However, its Chinese origins have caused controversy in the US, leading some lawmakers to declare it a threat to national security. And now the US Army has banned soldiers from downloading the app on government-issued phones.…

Categories: News

Beware the three-finger-salute, or 'How I Got The Keys To The Kingdom'

The Register - Fri, 27/12/2019 - 10:05
With great power comes great irresponsibility

Friday is upon us, and with it another On Call story from those poor souls who have to answer the phone when everything goes wrong. Not all heroes wear capes and, as we'll see, remember to ward their Linux servers from an enthusiastic boss.…

Categories: News

Londoner who tried to blackmail Apple with 300m+ iCloud account resets was reusing stale old creds

The Register - Tue, 24/12/2019 - 14:30
Community service for 'Turkish Crime Family' wannabe big dog

A 22-year-old Londoner has been given 300 hours of community service and a State-enforced bedtime after trying to blackmail Apple with hundreds of millions of previously compromised login credentials.…

Categories: News

To protect data and code in the age of hybrid cloud, you can always turn to Intel SGX

The Register - Tue, 24/12/2019 - 07:00
A gentle guide to enclaves and trusted execution environments

Sponsored  Data and code are the lifeblood of digital organisations, and increasingly these are shared with others in order to achieve specific business goals. As such, data and code must be protected no matter where the workloads run, be they in on-premises data centers, remote cloud servers, or edge-of-the-network.…

Categories: News

Patch now: Published Citrix applications leave networks of 'potentially 80,000' firms at risk from attackers

The Register - Mon, 23/12/2019 - 14:35
Unauthorised users able to perform 'arbitrary code execution'

A critical vulnerability found in Citrix Application Delivery Controller and Citrix Gateway (formerly known as Netscaler ADC and Netscaler Gateway) means businesses with apps published using these technologies may be exposing their internal network to unauthorised access.…

Categories: News

Emirati 'surveillance app' ToTok promoted by Huawei as Apple punts it from store

The Register - Mon, 23/12/2019 - 13:42
Yes, people of UAE. That free govt-approved VoIP app that replaced all the banned encrypted chat apps

A popular UAE messaging app has been reportedly used by the country's government to spy on its population. This app, called ToTok, passed all the usual Google Play and Apple App Store checks. Huawei even promoted it via social media.…

Categories: News

Say GDP-aaaR: UK's Information Commissioner pours £275k fine into London pharmacy's teaspoon

The Register - Mon, 23/12/2019 - 10:30
Half a million docs, including patient names and medical records left at back of premises

A pharmacy that left around half a million documents, including customers' personal information and medical data, in unlocked storage at the back of its premises, has been fined £275,000 - a financial penalty the ICO has issued under the General Data Protection Regulation.…

Categories: News

Tracking President Trump with cellphone location data, Greta-Thunberg-themed malware, SharePoint patch, and more

The Register - Sat, 21/12/2019 - 14:05
Including: Nasty Mac malware and gas-pump infections

Roundup  Here's a catch-up of security news beyond everything else we've covered.…

Categories: News

It's cool for Brit snoops to break the law, says secretive spy court. Just hold on while we pull off some legal jujitsu to let MI5 off the hook...

The Register - Fri, 20/12/2019 - 18:47
They're not 'immune', they just have the 'power' to not be punished

It’s perfectly legal for British spies to break the law, Britain’s secretive spy court has ruled – making a mockery of other laws intended to keep eavesdropping agencies and others under effective control.…

Categories: News

What's that? Encryption's OK now? UK politicos Brexit from Whatsapp to Signal

The Register - Fri, 20/12/2019 - 14:00
Take a break from calling for the end of e2e, so they can switch encrypted chat apps

It's not just the European Union the UK's ruling party wishes to leave. According to the Guardian, the recently victorious Conservative party is switching from WhatsApp to Signal, in order to accommodate its new influx of MPs.…

Categories: News

Five years for the man who scammed Facebook and Google out of $120m by cunning use of email

The Register - Fri, 20/12/2019 - 12:00
Lithuanian bloke gets half a decade for the mother of all phishing schemes

A Lithuanian hacker will spend the next five years behind bars for masterminding a massive $120m (£92.05m) business email compromise involving Facebook and Google.…

Categories: News

Want to 'live long and prosper'? Then avoid pirated, malware-laden Star Wars streams and pay to watch

The Register - Thu, 19/12/2019 - 22:00
Poisoned movie feeds will do more damage than an angry Dalek

Movie fans eager for an early peek at the new Star Wars installment are putting themselves at risk of malware infection.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News