Minigame: Celebrate Firefox 70's release by finding a website with 70+ trackers blocked

The Register - Tue, 22/10/2019 - 20:00
Yeah, it's not us

Firefox turned 70 today, at least in terms of version, with an update focused on – surprise, surprise – security and privacy.…

Categories: News

Japanese hotel chain sorry that hackers may have watched guests through bedside robots

The Register - Tue, 22/10/2019 - 18:00
Can we at least turn the thing around before we... y'know?

Japanese hotel chain HIS Group has apologised for ignoring warnings that its in-room robots were hackable to allow pervs to remotely view video footage from the devices.…

Categories: News

Just say the 'magic password': Boffins turn up potential backdoor in SQL Server 2012, 2014

The Register - Tue, 22/10/2019 - 09:15
Admin rights needed to fire up the malware and – hey presto!

Security researchers at ESET have published details of a backdoor into Microsoft's SQL Server via hooks and the splendidly named "magic passwords".…

Categories: News

Just a friendly reminder there were no at-the-time classified secrets on Clinton's email server. Yes, the one everyone lost their minds over

The Register - Tue, 22/10/2019 - 03:15
But, but her emails!

The US State Department has delivered its report [PDF] into Hillary Clinton's use of a personal email system and, amazingly enough, there wasn't anything scandalous nor classified on it at the time.…

Categories: News

ATTK of the Pwns: Trend Micro's antivirus tools 'will run malware – if its filename is cmd.exe'

The Register - Mon, 21/10/2019 - 23:52
Try not to save files to your Windows PC called cmd.exe or regedit.exe

Video  A flaw in the Trend Micro Anti-Threat Toolkit can be exploited by hackers to run malware on victims' Windows computers.…

Categories: News

Row erupts over who to blame after NordVPN says: One of our servers was hacked via remote management tool

The Register - Mon, 21/10/2019 - 22:44
Netizens' traffic flowing out of box could have been sniffed by miscreants

Analysis  NordVPN spent today attempting to downplay a security breach in which someone sneaked into one of its servers for purposes unknown.…

Categories: News

Avast lobs intruders into the 'Abiss': Miscreants tried to tamper with CCleaner after sneaking into network via VPN

The Register - Mon, 21/10/2019 - 19:54
Software used by millions not compromised this time, says biz

On Monday, security biz Avast said it believes some of its credentials were stolen and abused in an unsuccessful attempt to subvert CCleaner, a file cleanup utility that it acquired in 2017.…

Categories: News

Assange fails to delay extradition hearing as date set for February

The Register - Mon, 21/10/2019 - 18:45
Wikileaks founder said to be frail, labours to confirm name and date of birth

An emotional and clean-shaven Julian Assange has appeared in court to request more time and resources to prepare his defence against extradition to from the UK to the US on espionage charges.…

Categories: News

No one would be so scummy as to scam a charity, right? UK orgs find out the hard way

The Register - Mon, 21/10/2019 - 17:01
Research blames 'culture of trust' for weak fraud protections

UK charities are misjudging the risks of fraud, according to research from the Charity Commission and the Fraud Advisory Panel.…

Categories: News

Trend Micro would like you to fall in line and become a victim of Cloud Conformity

The Register - Mon, 21/10/2019 - 13:45
Security biz to slurp Aussie compliance outfit

Infosec giant Trend Micro is buying Australian compliance biz Cloud Conformity for $70m to help customers check the configuration of their fluffy white services – one of the major causes of cloud security breaches.…

Categories: News

If there were almost a million computer misuse crimes last year, Action Fraud is only passing 2% of cases to cops

The Register - Mon, 21/10/2019 - 13:04
You know my stats don't lie and I'm starting to feel it's wrong

Action Fraud (AF) is referring fewer computer misuse cases to police investigators despite official statistics showing nearly a million offences were reported last year.…

Categories: News

Iran? More like Ivan: Brit and US spies say they can see through Turla hacking group's facade

The Register - Mon, 21/10/2019 - 11:06
Russian-backed cell's Middle East campaign pretended to be of a Persian persuasion

British and US spies have blamed Russian hacker group Turla for masquerading as Iranian hackers to launch recent attacks mostly on government systems in the Middle East.…

Categories: News

Malware hides as iOS jailbreak, Sucuri is insecuri, and China is about to get even worse

The Register - Mon, 21/10/2019 - 06:04
Plus, new allegations in Iran and American hacking war

Roundup  Here's your Register security roundup to kick off your week.…

Categories: News

Deus ex hackina: It took just 10 minutes to find data-divulging demons corrupting Pope's Click to Pray eRosary app

The Register - Fri, 18/10/2019 - 23:28
Vatican coders exorcise API gremlins but, we must confess, they missed little monster....

Exclusive  The technology behind the Catholic Church’s latest innovation, an electronic rosary, is so insecure, it can be trivially hacked to siphon off worshipers' personal information.…

Categories: News

How does £36m sound, mon CHERI? pumps cash into Arm security research

The Register - Fri, 18/10/2019 - 12:23
That's 'Capability Hardware Enhanced RISC Instructions'

University of Cambridge researchers and UK industry bods have been tossed £36m from the UK government to support their work with Arm to strengthen security by improving memory protection.…

Categories: News

Google slings websites into Chrome's solitary confinement on Android to thwart Spectre-style data snooping

The Register - Fri, 18/10/2019 - 05:53
Ignore the overhead, enjoy Site Isolation – a defense against side-channel attacks

Last year, Google deployed Site Isolation in desktop versions of its Chrome browser as a defense against CPU side-channel attacks like Spectre. The technique renders websites in separate processes to prevent one from interfering with or snooping on another, augmenting browser sandboxing defenses.…

Categories: News

Help! I bought a domain and ended up with a stranger's PayPal! And I can't give it back

The Register - Thu, 17/10/2019 - 20:21
Any Reg readers have a solution? The web payment giant doesn't care

A Register reader says that for months he has been dealing with unwanted emails and alerts because a domain he purchased is connected to someone else's PayPal account, and PayPal doesn't seem to care.…

Categories: News

A cautionary, Thames Watery tale on how not to look phishy: 'Click here to re-register!'

The Register - Thu, 17/10/2019 - 16:43
Mass-mailing your customers today? Read this first

Thames Water found itself in warm, er, water this week after a clunky migration effort left customers receiving emails that looked like a particularly sophisticated spear-phishing attack.…

Categories: News

Remember the Democratic National Committee email leak? Same hackers now targeting EU countries, say malware boffins

The Register - Thu, 17/10/2019 - 14:55
Researchers reckon they've cracked a Washington embassy and more

The hacker crew behind the US Democratic National Committee breach are still at it and have infiltrated an EU country's embassy in Washington DC, according to infosec biz Eset.…

Categories: News

Hundreds charged in internet's biggest child-abuse swap-shop site bust: IP addy leak led cops to sys-op's home

The Register - Wed, 16/10/2019 - 21:28
23 kids saved, alleged scumbag-in-chief already in jail

US prosecutors say a South Korean man was behind the largest child-abuse image-swapping operation yet found on the internet.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News