The Register

Subscribe to The Register feed
Biting the hand that feeds IT — sci/tech news and views for the world
Updated: 44 min 14 sec ago

Why zero trust security needs strong hardware foundations

2 hours 43 min ago
Intel vPro platform provides hardware level of trust

Sponsored  Sometimes it feels like the hackers and malware creators are in an arms race with the teams tasked with protecting systems and data. New tools and technologies are being deployed on both sides all the time.…

Categories: News

26 million logins believed to be stolen from LiveJournal in 2017 pop up on hacker forum

Wed, 27/05/2020 - 19:30
Best change any recycled credentials from your blogging days

Russian-owned blogging service LiveJournal has reportedly suffered a hack affecting 26 million user accounts.…

Categories: News

Oh cool, tech service prices are plummeting. And by tech services, we mean botnet rentals and stolen credit cards

Wed, 27/05/2020 - 12:02
Supply and demand in action

Crime has never been cheaper to pull off, so long as you're not particular about quality.…

Categories: News

Microsoft banishes Trend Micro code at center of driver 'cheatware' storm from Windows 10, rootkit detector product pulled from site

Wed, 27/05/2020 - 08:14
Infosec's Drivergate scandal deepens

Microsoft has blocked a Trend Micro driver from running on Windows 10 – and Trend has withdrawn downloads of its rootkit detector that uses the driver – after the code appeared to cheat Redmond's QA tests.…

Categories: News

Mulled Chrome API shines light on long-neglected privacy gap: Sites can snoop on your find-in-page searches

Wed, 27/05/2020 - 06:04
Naughty JS can watch you hit control+F, start typing, see what's on your mind

Analysis  A browser feature being developed for the open-source Chromium platform has raised data-leakage privacy concerns – though the Google engineers working on the project contend the potential benefits outweigh the risks.…

Categories: News

India said its contact-tracing app is perfect – adds bug bounty and open-sources it anyway

Wed, 27/05/2020 - 03:59
As the legalese changes to extend data retention period

India has open-sourced its Aarogya Setu contact-tracing app and announced a bug bounty program to detect any security issues.…

Categories: News

US lawmakers get a second shot at forcing FBI agents to obtain a warrant before they leaf through web histories

Wed, 27/05/2020 - 00:25
Bi-partisan amendment aims to take away easy access to your online life

US lawmakers will get another vote on whether the FBI must get a warrant before agents can search Americans’ search and web-browsing histories.…

Categories: News

If someone could stop hackers pwning medical systems right now, that would be cool, say Red Cross and friends

Tue, 26/05/2020 - 20:51
The rules of war that protect hospitals should extend into cyberspace

Following the surge of cyber attacks on medical facilities, the head of the International Committee of the Red Cross (ICRC) and more than 40 other international leaders asked the governments of the world to do more to safeguard critical medical organizations amid the coronavirus pandemic.…

Categories: News

Airline-chasing lawyers leap on Easyjet for £18bn after 9m folks' data, itineraries nicked

Tue, 26/05/2020 - 17:22
No win, no fee. But if they win it's an up to £5.4bn fee

A law firm that is already chasing British Airways now claims it is suing Easyjet for up to £18bn, intending to take a modest £5.4bn cut for itself, after nine million people's data was stolen from the airline's servers.…

Categories: News

Unmanned drones to slash NHS delivery times to one-fifth of road 'n' rail transport

Tue, 26/05/2020 - 15:41
Scottish trial will courier PPE and COVID-19 tests to remote hospital

Remote-control drones are to be used to deliver coronavirus testing kits to a remote Scottish hospital – and they're being flown outside of the operators' direct line of sight.…

Categories: News

eBay users spot the online auction house port-scanning their PCs. Um... is that OK?

Tue, 26/05/2020 - 13:39
Fraud is a big issue for etailer, but there are privacy and consent concerns too

Users visiting eBay have spotted that the website runs port scans against their computer, using the localhost address to inspect what may be running on your machine.…

Categories: News

Galaxy S20 security is already old hat as Samsung launches new safety silicon

Tue, 26/05/2020 - 11:32
Passport-grade chippery to help mobile devices prove their identity

Samsung will launch a new standalone turnkey security chip to protect mobile devices, the company announced today.…

Categories: News

Contact-tracing app may become a permanent fixture in major Chinese city

Tue, 26/05/2020 - 07:02
Hangzhou wants a 'health and immunity firewall'

One of China's major tech hubs is planning to make a health and movement tracking system developed to fight the COVID-19 epidemic a permanent fixture in daily life.…

Categories: News

Pre-authentication, remote root hole in call-center software? Thanks, Cisco. Just what a long weekend needs

Mon, 25/05/2020 - 10:31
This and more bits and bytes from infosec world

Roundup  It's once again time to catch up on the latest happenings from the world of infosec.…

Categories: News

It wasn't just a few credit cards: Entire travel itineraries were stolen by hackers, Easyjet now tells victims

Fri, 22/05/2020 - 19:06
Unsurpisingly budget airline goes cheap: No payout or credit monitoring

Victims of the Easyjet hack are now being told their entire travel itineraries were accessed by hackers who helped themselves to nine million people’s personal details stored by the budget airline.…

Categories: News

Forget BYOD, this is BYOVM: Ransomware tries to evade antivirus by hiding in a virtual machine on infected systems

Fri, 22/05/2020 - 17:00
Like Inception, but expensive and disappointing. So... just like Inception

With antivirus tools increasingly wise to common infection tricks, one group of extortionists has taken the unusual step of stashing their ransomware inside its own virtual machine.…

Categories: News

To test its security mid-pandemic, GitLab tried phishing its own work-from-home staff. 1 in 5 fell for it

Thu, 21/05/2020 - 21:51
Welp, at least that's better than industry averages, says code-hosting biz

Code hosting biz GitLab recently concluded a security exercise to test the susceptibility of its all-remote workforce to phishing – and a fifth of the participants submitted their credentials to the fake login page.…

Categories: News

Campaign groups warn GCHQ can re-identify UK's phones from COVID-19 contact-tracing app data

Thu, 21/05/2020 - 16:15
Yes, the app that's not quite working yet

Campaign groups have written to the UK Prime Minister warning GCHQ and its digital arm, the National Cyber Security Centre (NCSC) will have the capacity to re-identify the phones of people who have installed the COVID-19 contact-tracing app.…

Categories: News

Far-right leader walks free from court after conviction for refusing to hand his phone passcode over to police

Thu, 21/05/2020 - 14:43
British border search law strikes again

The leader of far-right political group Britain First has been handed a judicial slap on the wrist after refusing to give his phone PIN to police at Heathrow Airport.…

Categories: News

DNS this week stands for Drowning Needed Services: Design flaw in name server system can be exploited to flood machines offline

Thu, 21/05/2020 - 11:52
Microsoft, BIND, Google, Cloudflare, Amazon, others fix up software

A new vulnerability has been found in the design of the world's domain-name system that potentially can be exploited to flood websites off the internet.…

Categories: News