DXC says ransomware attack disrupted customer operations at insurance services arm but barely left a scratch

The Register - Thu, 30/07/2020 - 08:29
No data loss or evidence of extended intrusions, but standalone limb Xchanging did suffer

DXC has recovered from a ransomware attack that hit its independent services-for-insurers operation Xchanging.…

Categories: News

YOU... SHA-1 NOT PASS! Microsoft magics away demonic hash algorithm from Windows updates, apps

The Register - Wed, 29/07/2020 - 21:37
Because no one likes to install spoof system files

Microsoft is preparing to once and for all drop support for the SHA-1 hash algorithm.…

Categories: News

GRUB2, you're getting too bug for your boots: Config file buffer overflow is a boon for malware seeking to drill deeper into a system

The Register - Wed, 29/07/2020 - 18:00
We're gonna keeping punning this until someone pays us $5m

An annoying vulnerability in the widely used GRUB2 bootloader can be potentially exploited by malware or a rogue insider already on a machine to thoroughly compromise the operating system or hypervisor while evading detection by users and security tools.…

Categories: News

Chinese ambassador to UK threatens to withdraw Huawei, £3bn investment if comms giant banned from building 5G

The Register - Wed, 29/07/2020 - 15:28
Surprise pledge catches company on the hop: 'We have announced no change to our strategy'

China's ambassador to Britain has threatened to withdraw Huawei and several billions in investment following the government's decision to ban the company's products from 5G mobile networks.…

Categories: News

No wonder Brit universities report hacks so often: Half of staff have had zero infosec training, apparently

The Register - Wed, 29/07/2020 - 09:01
Plus: Don't worry, students. The hackers told us they destroyed your data... - latest unis to fess up to being hit by Blackbaud

Nearly half of British university staff say they have received no cybersecurity training, according to a recent survey.…

Categories: News

Japan starts work on global quantum crypto network

The Register - Wed, 29/07/2020 - 08:02
Toshiba leads effort that aspires to run 100 quantum cryptographic devices for 10,000 users by 2024

Japan is poised to start work on global quantum key distribution service and associated infrastructure.…

Categories: News

Reply-All storm flares as email announcing privacy policy puts 500 addresses in the 'To' field, not 'BCC'

The Register - Wed, 29/07/2020 - 05:56
Newsletter-as-a-service outfit Substack does the usual apologising

Some advice from The Register: when announcing a new privacy policy don’t do so with emails that reveal 500 addresses in the “To” field of the message.…

Categories: News

We're suing Google for harvesting our personal info even though we opted out of Chrome sync – netizens

The Register - Tue, 28/07/2020 - 20:40
Browser quitters say they'll return if web goliath lives up to privacy promises

A handful of Chrome users have sued Google, accusing the browser maker of collecting personal information despite their decision not to sync data stored in Chrome with a Google Account.…

Categories: News

MI6 tried to intervene in independent court by stopping judge seeing legal papers – but they said sorry, so it's OK

The Register - Tue, 28/07/2020 - 13:04
Just another day for the Investigatory Powers Tribunal

The UK's Secret Intelligence Service, aka MI6, has been accused of trying to tamper with a court that is supposed to oversee and regulate it after an extraordinary tale emerged yesterday.…

Categories: News

Find out this week: How to build a cyber threat intelligence program while cutting through the noise

The Register - Tue, 28/07/2020 - 11:00
Tune in online to get a handle on separating good data from clutter

Webcast  The advantages of having decent threat intelligence in place are many and various, as the threat landscape continues to widen year-on-year.…

Categories: News

Tune in this week to learn all about an identity-centric approach to zero-trust security

The Register - Mon, 27/07/2020 - 23:56
It's time to think beyond simple perimeter defenses

Webcast  The adoption of mobile and cloud, and the coronavirus pandemic forcing people to work from home, shows you can no longer rely on computer security based on a simple network perimeter.…

Categories: News

Data-stealing, password-harvesting, backdoor-opening QNAP NAS malware Qsnatch reaches 62,000 infections

The Register - Mon, 27/07/2020 - 22:07
If you're still using a vulnerable box, you ought to factory reset it before patching

The number of QNAP network-attached storage (NAS) boxes infected with the data-stealing QSnatch malware has reached 62,000, the US and UK governments warned today.…

Categories: News

Garmin staggers back to its feet: Aviation systems seem to be lagging, though. Here's why

The Register - Mon, 27/07/2020 - 15:37
Somebody light that pilot light

Garmin services appear to be in the process of being restored after the company was reportedly hit with ransomware, though its aviation services remain offline at the time of writing.…

Categories: News

UKIP blackmail, data breach sueball allegations were groundless, rules High Court

The Register - Mon, 27/07/2020 - 09:07
Tawdry political scuffle over database access binned for lack of evidence

A lawsuit alleging that ex-UKIP leader Richard Braine took part in blackmail and data breaches has been all but thrown out of the High Court as a judge said it was "without any proper and sound evidential foundation".…

Categories: News

Psst.. You may want to patch this under-attack data-leaking Cisco bug – and these Ripple20 hijack flaws

The Register - Sat, 25/07/2020 - 02:14
Plus: US govt sounds the alarm on industrial equipment attacks

In Brief  Cisco this week emitted fixes for potentially serious vulnerabilities, one of which is already being exploited in the wild.…

Categories: News

It's a Meow-nixed system, I know this: Purr-fect storm of 3,000+ insecure databases – and a data-wiping bot

The Register - Fri, 24/07/2020 - 22:18
ProtoVPN IP range fingrered as source of destructive attacks

Poorly secured databases by the thousands are being wiped and vandalized in a seemingly automated attack.…

Categories: News

Cabinet Office takes over control of UK government data: Mundane machinery or Machiavellian manoeuvrings?

The Register - Fri, 24/07/2020 - 16:25
Argh! Dominic Cummings' department! Everybody panic!

The UK Cabinet Office is to take control of government data from the Department for Digital, Media, Culture and Sport.…

Categories: News

Brit unis hit in Blackbaud hack inform students that their data was nicked, which has gone as well as you might expect

The Register - Fri, 24/07/2020 - 14:55
That cloudy CRM firm paid ransom doesn't fill anyone with confidence

British universities are waking up to last week's ransomware attack on cloud CRM purveyor Blackbaud – though it appears some haven't realised the American software company paid the ransom.…

Categories: News

UK's NCSC reveals Premier League footie clubs to be ripe pickings for cybercrooks: One almost lost £1m to BEC attack

The Register - Fri, 24/07/2020 - 12:03
Switch on, urges GCHQ-backed public security agency

Common cybersecurity threats also apply to Premier League football clubs, according to the National Cyber Security Centre, which said that one club nearly sent £1m to fraudsters after a business email compromise (BEC) attack.…

Categories: News

Raytheon techie who took home radar secrets gets 18 months in the clink in surprise time fraud probe twist

The Register - Fri, 24/07/2020 - 11:16
Be careful about bunking off when you're billing your hours to a government

A now-former Raytheon systems engineer will spend the next year and a half behind bars for taking home secret US government blueprints and paperwork, against security procedures, all because he seemingly liked taking Fridays off.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News