News
Apple emits emergency iOS security updates while warning holes may have been exploited in wild by hackers
Apple today released software updates to patch vulnerabilities in iPhones and iPads that may have been exploited by miscreants to silently snoop on victims from afar.…
I was targeted by North Korean 0-day hackers using a Visual Studio project, vuln hunter tells El Reg
A zero-day hunter has told The Register of the “holy f**k” moment when he realised he'd been targeted by a North Korean campaign aimed at stealing Western researchers' vulns.…
UK Cabinet Office spokesman tells House of Lords: We're not being complacent about impact of SolarWinds hack
The British government has denied being "complacent" over the Solarwinds hack as a fed-up peer of the realm urged a minister to "answer the question".…
North Korea infected infosec bods with backdoors via dodgy blog pages, Visual Studio files – Google
North Korea's hackers homed in on specific infosec researchers and infected their systems with a backdoor after luring them to a suspicious website, Google revealed on Monday.…
Biden said to be assembling cyber dream team to sort out US govt computer security
President Biden is preparing to assemble a crack US government cybersecurity team, and has pledged $10bn in funding to shore up the defenses of Uncle Sam's computer networks.…
Digital burglars break into the Australian Securities and Investments Commission
The Australian Securities and Investments Commission (ASIC) has admitted one of its servers was accessed without sanction and may have been digitally pawed by miscreants.…
Man arrested after UK school reports wiped hard drives on devices connected to network
A 28-year-old has been arrested after allegedly carrying out what police have labelled a "sophisticated cyber attack" on a school.…
Showering malware-laced laptops on UK schoolchildren is the wrong way to teach them about cybersecurity
Column It is not good form to ruin people's online privacy. It is especially bad form if you're in a position of authority when you do this. It goes beyond bad form altogether if you're the Department for Education and you are potentially exposing schoolchildren to online attacks. That is criminal neglect.…
ADT techie admits he peeked into women's home security cams thousands of times to watch them undress, have sex
In brief One-time ADT security engineer Telesforo Aviles, 35, pleaded guilty to computer fraud in the US after spying on women through their home surveillance cameras.…
Scottish enviro bods shrug off ransomware gang's extortion attempt as 4,000 files dumped online, saying it's nothing big
About 4,000 stolen files from the Scottish Environmental Protection Agency (SEPA) have been dumped online by frustrated ransomware criminals after the public sector body refused to pay out.…
Clop ransomware gang clips sensitive files from Atlantic Records' London ad agency The7stars, dumps them online
Updated A London ad agency that counts Atlantic Records, Suzuki, and Penguin Random House among its clients has had its files dumped online by a ransomware gang, The Register can reveal.…
Microsoft Edge goes homomorphic: Nobody will see your credentials... but you'll need to sign in to use it
Microsoft has detailed how the Password Monitor feature in Edge works after it pushed version 88 of the browser into the Stable channel.…
It's 2021 and you can hijack a Cisco SD-WAN deployment with malicious IP traffic and a buffer overflow. Patch now
Cisco this week emitted patches for four sets of critical-severity security holes in its products along with other fixes.…
Laptops given to British schoolkids came preloaded with malware and talked to Russia when booted
A shipment of laptops supplied to British schoolkids by the Department for Education to help them learn under lockdown came preloaded with malware, The Register can reveal.…
Microsoft SolarWinds analysis: Attackers hid inside Windows systems by wearing the skins of legit processes
The SolarWinds hackers triggered one of their Cobalt Strike implants in the firm's network through a cunning VBScript that was activated by a routine system process, Microsoft has said.…
Wherever your apps, users and data are heading, is your backup keeping up?
Webcast What’s your tech infrastructure going to look like in the next few months or years? You know, once we get past the current situation and find time to start innovating again. All of which may come sooner than you think.…
Malwarebytes says its Office 365, Azure tenancies have been breached, insists its tools are still safe to use
Security company Malwarebytes suspects a breach of its Office 365 and Azure tenancies is by the same attacker behind the SolarWinds hack, but reckons flaws in Azure Active Directory security are also to blame.…
Slack has entered the Matrix: Element builds a bridge to realm of encrypted, decentralised comms
Element Matrix Services is adding a bridge between hipster chat platform Slack and the open-source world of Matrix messaging.…
Open banking is the future, so let’s secure the APIs
Sponsored The future of banking is digital, of that there is no doubt. It may be at an early stage, but we can already see that future, as, all over the world, the banking community moves to embrace open banking.…
Dnsmasq, used in only a million or more internet-facing devices globally, patches not-so-secret seven spoofing, hijacking flaws
Seven vulnerabilities have been found in a popular DNS caching proxy and DHCP server known as dnsmasq, raising the possibility of widespread online attacks on networking devices.…
Pages
