The Register

Subscribe to The Register feed
Biting the hand that feeds IT — sci/tech news and views for the world
Updated: 1 hour 56 min ago

Singapore government scraps physical 2FA tokens for government services

3 hours 40 min ago
There's an app for that. Or text, if you dare. Or even retail outlets

Singapore will bin the physical tokens used to provide two-factor authentication (2FA) for some digital government services.…

Categories: News

Epic Games floats $1m bounty to ID source of 'commercial smear' claiming Houseparty chat app has been hacked

Tue, 31/03/2020 - 19:30
Lots of non-savvy users may be recycling previously hacked creds

Group video chat app Houseparty has offered a $1m bounty to identify what it claims is an organised campaign to falsely depict it as a hackers' backdoor.…

Categories: News

Marriot Hotels breached AGAIN: Two compromised logins abused to exfil guests' personal deets

Tue, 31/03/2020 - 17:01
How many customers' deets? It's not saying just yet

Marriot Hotels has suffered its second data spillage in as many years after an "unexpected amount" of guests' data was accessed through two compromised employee logins, the under-fire chain has confirmed.…

Categories: News

Poured your info out on a call to 118 118 Money? Bad luck. Credit provider 'fesses up that hacker nabbed customer service phone recordings

Mon, 30/03/2020 - 14:14
Don't worry, though. Any 'systematic' data extraction would be 'time-consuming'

The digital burglary at 118 118 Money exposed recordings of customer service calls that included a raft of personal information although thankfully not payment data.…

Categories: News

You know all those stories of leaky cloud buckets taken offline? Well, some may still be there, just badly hidden

Mon, 30/03/2020 - 12:06
Plus, Google warns of fake journo phishing attacks

Roundup  It's once again time for the El Reg security roundup.…

Categories: News

First-ever SANS Women in Cybersecurity survey reveals significant mentorship gaps

Mon, 30/03/2020 - 07:00
'The future of cybersecurity is the responsibility of everyone'

Promo  As women take more senior positions in the field of cybersecurity, there's a shortage of women available to mentor others.…

Categories: News

Yeah, that Zoom app you're trusting with work chatter? It lives with 'vampires feeding on the blood of human data'

Fri, 27/03/2020 - 21:49
Doc Frown: Searls decries video-conferencing software's 'creepy' closeness with ad tracking

As the global coronavirus pandemic pushes the popularity of videoconferencing app Zoom to new heights, one web veteran has sounded the alarm over its "creepily chummy" relationship with tracking-based advertisers.…

Categories: News

AMD dials 911, emits DMCA takedowns after miscreant steals a load of GPU hardware blueprints, leaks on GitHub

Thu, 26/03/2020 - 19:10
'We believe the stolen graphics IP is not core to the competitiveness or security of our graphics products'

On Wednesday, AMD confirmed intellectual property related to its graphics processors was stolen last year, though insisted the leaked files will not damage its business nor compromise product security.…

Categories: News

Hey, China. Maybe you should have held your hackers off for a bit while COVID-19 ravaged the planet. Just a suggestion

Thu, 26/03/2020 - 14:03
Citrix, Cisco and Zoho-pwning APT41 attack wave seems in awfully bad taste

Proving that no good crisis ever goes to waste, Chinese government hacking crew APT41 launched a campaign that abuses vulns in Citrix Netscaler and Zoho ManageEngine, according to threat intel outfit FireEye.…

Categories: News

SANS is offering fully certified cybersecurity training – without leaving your bunker

Thu, 26/03/2020 - 07:00
Isolation is the perfect time to learn new skills

Promo  Amid this planet's ongoing pandemic and stay-at-home measures, if you’re keen to repurpose all that time previously spent commuting, attending conferences, and so on, why not take a look at the SANS Institute’s Online Cybersecurity Training.…

Categories: News

If there's something strange in Symantec's neighborhood, who you gonna call? Not Broadcom, it seems: Systems go down, cut off customers

Wed, 25/03/2020 - 21:47
And now back on their feet after global two-hour wobble

Symantec customers, or rather Broadcom customers these days, were taken offline for a while on Wednesday when the security service's data centers around the planet went down.…

Categories: News

Tupperware-dot-com has a live credit card skimmer on its payment page, warns Malwarebytes

Wed, 25/03/2020 - 15:50
Branded lunchbox biz didn't answer for 5 days, alleges infosec firm

Tupperware, maker of the plastic food containers beloved of the Western middle classes, has an active and ongoing malware infection on its website that steals credit card data and passes it to criminals.…

Categories: News

Brit housing association blabs 3,500 folks' sexual orientation, ethnicity in email blunder

Wed, 25/03/2020 - 10:45
Please update your contact details in this handy spreadsheet ... oh

A UK housing association blurted 3,500 people's sensitive personal data as part of a bungled "please update your contact details" email exercise, The Register has been told.…

Categories: News

Stuck inside with nothing to do? Apple fires out security fixes for iOS, macOS, wrist-puters... and something weird called iTunes for Windows

Wed, 25/03/2020 - 06:57
Dozens of bugs swatted in latest Cupertino updates

Apple has emitted a bundle of security fixes ranging across its product lines.…

Categories: News

Adobe debuts disk-cleaning tool cleverly disguised as an arbitrary file deletion bug in Creative Cloud on Windows

Tue, 24/03/2020 - 19:25
Patch this flaw, unless you want random docs to wipe out your work

Adobe has issued a patch for a critical flaw that can be exploited to delete files from Windows computers running the Creative Cloud client.…

Categories: News

Watch live online this week: Why you need managed detection and response

Tue, 24/03/2020 - 17:00
Integrate your disconnected products and management if you want to survive

Webcast  In a recent survey, nine out of 10 organisations that suffered a significant security attack were running up-to-date cybersecurity software. They did what everyone told them to do, and it wasn’t enough.…

Categories: News

Got your number? Maybe. 118 118 Money shutters website after spotting an intruder

Tue, 24/03/2020 - 12:33
No word on what digi burglars lifted

The parent firm of directory enquiry service 118 118 has yanked offline its finance division's website after detecting unauthorised access by a person or persons unknown, The Register can reveal.…

Categories: News

Memcached has a crash-me bug, but hey, only about 83,000 public-facing servers appears to be running it

Tue, 24/03/2020 - 11:04
Yes, you may have detected some sarcasm

An annoying security flaw been disclosed and promptly fixed in the fairly popular memcached distributed data-caching software.…

Categories: News

It's 2020 and hackers are still hijacking Windows PCs by exploiting font parser security holes. No patch, either

Mon, 23/03/2020 - 20:27
Spreading in the wild, no vaccine, people told to distance themselves from dodgy sources... sounds familiar

Hackers are commandeering victims' Windows PCs by exploiting at least one remote-code-execution flaw in the Adobe Type Manager Library included with the Microsoft operating system. No patches are available right now.…

Categories: News

It's time to track people's smartphones to ensure they self-isolate during this global pandemic, says WHO boffin

Mon, 23/03/2020 - 08:33
Suspected carriers need to stay home – and we should use their phones to monitor them, we're told

Tracking the movements of suspected COVID-19 coronavirus carriers has proved an essential tool in controlling the pandemic, according to Professor Marylouise McLaws.…

Categories: News