News

Now you've done it: Cyber attack targeted Australian brewery 'n' dairy biz Lion

The Register - Thu, 11/06/2020 - 19:30
Coming between a Reg reader and their beer is the worst crime of all

Australian brewery Lion has suspended production, threatening the flow of beer across the continent-country, after a “cyber attack” struck down its IT systems.…

Categories: News

Russia-linked Gamaredon hacker crew using Microsoft's Visual Basic for Applications to pwn Microsoft's Outlook

The Register - Thu, 11/06/2020 - 17:30
From targeting Ukraine to random mailboxes: how the mighty have fallen

Security researchers claim to have uncovered "several previously undocumented post-compromise tools" used by a Russia-linked APT to target Microsoft Office and Outlook through Visual Basic for Applications.…

Categories: News

How to scale endpoint management, improve employee productivity and reduce costs

The Register - Thu, 11/06/2020 - 07:00
Intel vPro platform has massive armoury at your disposal

Sponsored  Life is getting more complicated for IT professionals responsible for managing endpoint hardware. An expanding number of devices are connecting to the corporate network and the diversity of device types is also growing. This can include workers with business laptops to point-of-sale (PoS) terminals, digital signage systems and numerous smart devices that make up the Internet of Things (IoT).…

Categories: News

Tencent floats bug bounties for its cloudy Linux and IoT OSes

The Register - Thu, 11/06/2020 - 05:05
CentOS-based code should already be pretty-well explored, but Chinese test isn’t exactly trusted right now ...

Tencent has announced a bug bounty program for its operating systems.…

Categories: News

Another month, another way to smash Intel's SGX security. Let's take a closer look at these latest holes...

The Register - Thu, 11/06/2020 - 00:04
Plus: 10nm five-core 3GHz Lakefield system-on-chips announced

Analysis  Intel's Software Guard Extensions, known as SGX among friends, consist of a set of instructions for running a secure enclave inside an encrypted memory partition using certain Intel microprocessors.…

Categories: News

Keepnet kerfuffle: Firing legal threats at bloggers did infosec biz more damage than its exposed database

The Register - Wed, 10/06/2020 - 19:02
UK outfit gets a Streisand effect 101

Comment  UK-based infosec outfit Keepnet Labs left an 867GB database of previously compromised website login details accessible to world+dog earlier this year – then sent lawyers' letters to bloggers in a bid to erase their reports of its blunder.…

Categories: News

Readers of a certain age will remember GPRS: Old insecure tech from turn of millennium still haunts 5G networks

The Register - Wed, 10/06/2020 - 15:20
Positive Technologies analysts less than positive about GTP

Long-standing vulnerabilities in older wireless broadband standards will continue to dog new 5G networks, despite efforts to improve network security, a new report has claimed.…

Categories: News

Lettuce Encrypt, Encrypt We Must: Hobby projects change name after Let's Encrypt fires off trademark complaints

The Register - Wed, 10/06/2020 - 13:52
One's 'best served cold with ranch and carrots', the other turns to 'Yoda Speak'

An open-source project for automating the installation of free Let's Encrypt certificates for websites built with Microsoft's ASP.NET Core framework was forced to change its name after a trademark complaint from the Internet Security Research Group (ISRG).…

Categories: News

An Internet of Trouble lies ahead as root certificates begin to expire en masse, warns security researcher

The Register - Wed, 10/06/2020 - 11:00
'This is going to be a problem; we are not on top of this'

Interview  Expiring root certificates will cause devices like smart TVs and refrigerators to fail in the next few years, security researcher Scott Helme has warned.…

Categories: News

GnuTLS patches huge security hole that hung around for two years – worse than Heartbleed, says Google cryptoboffin

The Register - Wed, 10/06/2020 - 07:01
Maybe it's time to get it gone

GnuTLS, a widely used open source library implementing Transport Layer Security, last week fixed a bug that had been hiding in the code for almost two years that made resumed TLS 1.3 sessions vulnerable to attack.…

Categories: News

June's Patch Tuesday reveals 23 ways to remotely pwn Windows – and over 100 more bugs that could ruin your day

The Register - Tue, 09/06/2020 - 22:28
Microsoft, Intel, Adobe, SAP emit fixes in security synchronicity

Patch Tuesday  Microsoft has given IT admins and folks another busy Patch Tuesday with 129 security vulnerabilities to address.…

Categories: News

Thought you'd fixed those Linux Spectre issues? Guess again, and AMD users need to be especially on their toes

The Register - Tue, 09/06/2020 - 20:39
Google engineer flags holes in speculative execution attack defences

Linux kernel developers are in the midst of applying a trio of patches after a Google engineer reported that defenses implemented to stop speculative execution attacks don't work as intended.…

Categories: News

Researchers unmask Indian 'infosec' firm to reveal hacker-for-hire op that targeted pretty much anyone clients wanted

The Register - Tue, 09/06/2020 - 18:49
And we would have gotten away with it if it wasn't for that meddling Citizen Lab

Canada's Citizen Lab laboratory has uncovered a hacks-for-hire phishing operation targeting anyone from political activists and oligarchs to lawyers and CEOs that hit more than 10,000 email inboxes over seven years.…

Categories: News

Hospital-busting hacker crew may be behind ransomware attack that made Honda halt car factories, say researchers

The Register - Tue, 09/06/2020 - 16:30
Snake / Ekans nasty fingered

Updated  Japanese car maker Honda has been hit by ransomware that disrupted its production of vehicles and also affected internal communications, according to reports.…

Categories: News

Brave soz about coding snafu that sent search queries to affiliate links but insists practice is 'industry-standard'

The Register - Tue, 09/06/2020 - 15:30
Sustainable revenue is hard for privacy-focused browser

Privacy-focused browser maker Brave has responded to complaints about affiliate links by apologising for a coding error but also stating that adding affiliate links to search queries is standard practice.…

Categories: News

Singapore to distribute wearable contact-tracing device and won't rule out making it compulsory

The Register - Tue, 09/06/2020 - 09:01
Because not everyone has a smartphone and Apple devices remain problematic

Singapore will introduce a wearable device to assist with COVID-19 contact-tracing and the minister responsible won't rule out making it compulsory.…

Categories: News

Because things aren't bad enough already: COVID-19 is going to mess up election security assumptions too

The Register - Mon, 08/06/2020 - 22:08
Socially isolated officials will be fair game for meddling hackers

The social distancing measures brought about by the COVID-19 pandemic will weaken election security in the US, according to a non-profit's security check.…

Categories: News

Huawei launches UK charm offensive: We've provided 2G, 3G and 4G for 20 years, and you're worried about 5G?

The Register - Mon, 08/06/2020 - 15:56
'High-risk' comms vendor says Blighty will be sorry if it limits firm's involvement

Chinese comms bogeyman Huawei has embarked on a UK-wide ad blitz in the wake of reports its telco kit would be ripped out of the country by 2023 to "commemorate 20 years in the British market".…

Categories: News

Why would someone want to hack Germany's PPE supply chain? We're glad you masked

The Register - Mon, 08/06/2020 - 11:00
IBM says phishing operation could be effort to get upper hand in negotiations

Hackers are targeting German companies tasked with replenishing the nation's supply of personal protective equipment.…

Categories: News

Smart fridges are cool, but after a few short years you could be stuck with a big frosty brick in the kitchen

The Register - Mon, 08/06/2020 - 09:30
You should check how long a vendor intends to support the kit, says Which?

A report from consumer advocates Which? highlights the shockingly short lifespan of "smart" appliances, with some losing software support after just a few years, despite costing vastly more than "dumb" alternatives.…

Categories: News

Pages

Subscribe to Sec Tec Limited aggregator - News