The Register

Subscribe to The Register feed
Biting the hand that feeds IT — Enterprise Technology News and Analysis
Updated: 23 min 29 sec ago

Radio Frequency fingerprinting of aircraft ADS-B transmitters? Boffins reckon they've cracked it

Tue, 10/11/2020 - 19:58
More data points needed, says academic, but technique could give governments a spoofin' bad headache

A group of academics reckon they've found a way to uniquely fingerprint aeroplanes’ Automatic Dependent Surveillance-Broadcast (ADS-B) tracking transmitters – though an aviation infosec boffin says more research is needed to verify the new technique.…

Categories: News

One more reason for Apple to dump Intel processors: Another SGX, kernel data-leak flaw unearthed by experts

Tue, 10/11/2020 - 18:00
Obscure interface lets you monitor chip activity with code as if you were physically plugged into it

Updated  Boffins based in Austria, Germany, and the UK have identified yet another data-leaking side-channel flaw affecting Intel processors, and potentially other chips, that exposes cryptographic secrets in memory.…

Categories: News

EA Games' Origin client contained privilege escalation vuln that anyone with user-grade access could exploit

Tue, 10/11/2020 - 16:47
Fancy getting system privs? Swap out a DLL and you're in

A British infosec outfit spotted a privilege escalation vulnerability in EA Games’ Origin client after discovering the software was hunting for an absent DLL file when users opened it.…

Categories: News

Tim Berners-Lee asks everyone to do new biz a Solid and let him have another crack at fixing the Web's privacy

Tue, 10/11/2020 - 07:55
Lauches enterprise server trying to make 'pod' data a thing at scale

Inventor of the world wide web, Tim Berners-Lee, is having another crack at fixing the internet’s biggest problems with the launch of a new enterprise server.…

Categories: News

Laptop mega-manufacturer Compal hit by DoppelPaymer ransomware – same one that hit German hospital

Mon, 09/11/2020 - 23:35
Crooks want $17m for decryption key

Compal, the world’s second-largest white-label laptop manufacturer, has been hit by the file-scrambling DoppelPaymer ransomware gang – and the hackers want $17m in cryptocurrency before they'll hand over the decryption key.…

Categories: News

Zoom strong-armed by US watchdog to beef up security after boasting of nonexistent end-to-end encryption

Mon, 09/11/2020 - 21:03
Vid-chat giant promises never again to make 'misrepresentations about its privacy and security practices'

Zoom has been forced to agree to a range of security improvements in a settlement with America's consumer watchdog, the Federal Trade Commission, as a result of earlier wrongly claiming it offered true 256-bit end-to-end encryption.…

Categories: News

RansomEXX trojan variant is being deployed against Linux systems, warns Kaspersky

Mon, 09/11/2020 - 17:12
Inoculation is simple: MFA, regular timely patching

A trojan targeting Linux and deployed by a known ransomware gang has been discovered by Russian antivirus firm Kaspersky.…

Categories: News

Somebody's Russian to meddle with UK coronavirus vaccine efforts, but GCHQ won't take it lying down

Mon, 09/11/2020 - 15:52
Offensive cyber operation includes 'encrypting' Vlad and Chums' disinfo servers

British eavesdropping agency GCHQ is actively hacking Russian attempts to undermine coronavirus vaccine efforts, according to The Times.…

Categories: News

Sanctioned Chinese hacking competition cracks Chrome, ESXi, Windows 10, iOS 14, Galaxy 20, Qemu and more

Mon, 09/11/2020 - 07:11
VMware warns of incoming security fix after attackers get root on host

VMware has taken the unusual step of warning about an imminent security advisory after a Chinese team successfully popped its flagship product.…

Categories: News

Hackers work 24 hours a day – when will you schedule your security training?

Sun, 08/11/2020 - 22:00
It’s SANS training time in Tokyo, Singapore, and India

Promo  We might all be living under various degrees of lockdown, but that doesn’t mean you can’t sharpen up your security skills with some of the best instructors around – and all at early bird prices, if you’re quick.…

Categories: News

Let's Encrypt warns about a third of Android devices will from next year stumble over sites that use its certs

Fri, 06/11/2020 - 23:58
Expiration of cross-signed root certificates spells trouble for pre-7.1.1 kit... unless they're using Firefox

Let's Encrypt, a Certificate Authority (CA) that puts the "S" in "HTTPS" for about 220m domains, has issued a warning to users of older Android devices that their web surfing may get choppy next year.…

Categories: News

Ransomware crims read our bank balance and demanded the lot, reveals Scotland's Dundee and Angus College

Fri, 06/11/2020 - 17:17
But we rebuilt the entire institution in 5 days, says principal as he looks back on February attack

The criminals who took out Scotland's Dundee and Angus College made a ransom demand that precisely added up to the contents of its bank account – and that was no accident, its principal has said.…

Categories: News

Sodinokibi/REvil ransomware gang pwns British housing biz via suspected phishing attack

Fri, 06/11/2020 - 16:08
Same people who killed Travelex and revenge-published personal data when ignored. Nice folk

A social housing provider in Norwich, England, has said it was hit with the Sodinokibi ransomware following what it assumes was a successful phishing attack.…

Categories: News

Snap-crappy: 183 Brit local authorities operate 80,000 CCTV cams between them, says surveillance watchdog

Fri, 06/11/2020 - 11:01
Please make sure you're obeying the law, outgoing commissioner pleads

"There are over 6,000 systems and 80,000 cameras in operation across 183 LAs!" So exclaimed the UK's outgoing Surveillance Camera Commissioner as he detailed just how many council CCTV cameras there are across the nation.…

Categories: News

Ransomware attack shutters Brazilian courts. But did attackers breach the virtual machine divide?

Fri, 06/11/2020 - 04:31
Six-day outage predicted as rebuild commences from untouched backups

Brazil’s Superior Tribunal de Justiça has temporarily shut down after a suspected ransomware attack.…

Categories: News

Tech support scammer dialed random number and Australian Police’s cybercrime squad answered

Fri, 06/11/2020 - 03:05
Cops used the opportunity to figure out remote access traps

A tech support scammer making random phone calls in the hope of finding a victim called the cybercrime squad of an Australian police force, which used the happy accident to document the scam and inform the public what to watch out for.…

Categories: News

Apple emits iOS, iPadOS, watchOS, macOS patches to fix three hijack-my-device flaws exploited in the wild

Thu, 05/11/2020 - 23:41
Trio of bugs reported by Google Project Zero, plenty of other flaws addressed, too

Apple on Thursday issued security updates for iOS, iPadOS, watchOS, and macOS that address three holes reported by Google's Project Zero among exploitable bugs found by others. Installing the latest software for your iPhone, iPad and so on will address these programming blunders.…

Categories: News

After Cummings' Barnard Castle trip, cheeky Britons started using the word 'vision' in their passwords

Thu, 05/11/2020 - 15:45
That was still dwarfed by clods using 'password' itself, though

Britons began using the word "vision" in their passwords after prime ministerial advisor Dominic Cummings was caught travelling across the country from his parents' farm in Durham to Barnard Castle "to test" his eyesight, according to research from Pen Test Partners (PTP).…

Categories: News

Data protection scofflaws failed to pay £2m in fines from UK watchdog – and 68% of penalties are still outstanding

Thu, 05/11/2020 - 12:15
We're trying, insists beleaguered Information Commissioner's Office

Scofflaws have failed to pay nearly £2m in fines handed out by the UK Information Commissioner's Office over the past 18 months, according to new research.…

Categories: News

Deloitte's 'Test your Hacker IQ' site fails itself after exposing database user name, password in config file

Thu, 05/11/2020 - 08:28
Security quiz site created by advisors includes inadvertent bonus round

A website created for global consultancy Deloitte to quiz people on knowledge of hacking tactics has proven itself vulnerable to hacking.…

Categories: News