Subscribe: The Register - Security
http://www.theregister.com/security/headlines.rss
Added By: Feedage Forager Feedage Grade B rated
Language: English
Tags:
data  hackers  hacking  leaked  malware  nsa  ransomware  researchers  security researchers  security  systems  tools  windows     
Rate this Feed
Rate this feedRate this feedRate this feedRate this feedRate this feed
Rate this feed 1 starRate this feed 2 starRate this feed 3 starRate this feed 4 starRate this feed 5 star

Comments (0)

Feed Details and Statistics Feed Statistics
Preview: The Register - Security

The Register - Security



Biting the hand that feeds IT



Copyright: Copyright 2017, Situation Publishing
 



Hyundai app security blunder allowed crooks to 'steal victims' cars'

Tue, 25 Apr 2017 23:27:11 GMT

Remote locate, unlock, and start vehicles – using a fixed encryption key... ouch

Hyundai has patched its Blue Link smartphone app to stop it blabbing private info that could, it is claimed, be used to break into and steal people's cars.…




Expedia IT bod gets all-expenses-paid trip to prison after hacking execs' emails for profit

Tue, 25 Apr 2017 22:05:06 GMT

Blames pricey SF rent for $350,000 insider-trading scam

An ex-Expedia IT admin has been fined and jailed for 15 months after he spied on the emails of the travel giant's top brass to make insider trades.…




After blitzing FlexiSpy, hackers declare war on all stalkerware makers: 'We're coming for you'

Tue, 25 Apr 2017 21:04:24 GMT

App dev ransacked after gang used test/test login, it is claimed

A Brit biz selling surveillance tools that can be installed on phones to spy on spouses, kids, mates or employees has been comprehensively pwned by hackers – who promise similar stalkerware peddlers are next.…




Brit behind Titanium Stresser DDoS malware sent to chokey

Tue, 25 Apr 2017 16:25:58 GMT

20-year-old Herts man slapped with two years' stripey suntan time

A Hertfordshire man has been jailed for two years after netting nearly £400,000 from the malware he wrote as a 15-year-old student.…




Hackers uncork experimental Linux-targeting malware

Tue, 25 Apr 2017 14:20:04 GMT

SSH... it's Shishiga

Hackers have unleashed a new malware strain that targets Linux-based systems.…




Kremlin-backed DNC hackers going after French presidential hopeful Macron

Tue, 25 Apr 2017 12:06:04 GMT

Everyone, everything's a target for mysterious APT28 crew

The Russian cyberespionage group blamed for the infamous US Democratic National Committee email leak launched targeted phishing attacks against French presidential candidate Emmanuel Macron's campaign as recently as last month.…




Ex-NSA techies launch data governance tool for future algorithm-slavery

Tue, 25 Apr 2017 11:00:09 GMT

Immuta debuts Projects for machine learning governance, 'interpretability is key' – CEO

Immuta, a data governance startup in Maryland run by former US National Security Agency technicians, has developed a method to govern how data is used by machine learning algorithms.…




Car hacking's dynamic duo offers to save others $1m in research

Tue, 25 Apr 2017 04:08:12 GMT

Miller and Valasek spread the word on hacking archive

Two famed car hackers claim they can save fellow tinkerers and security researchers a lot of time and money – by handing over their tools and blueprints for free. The pair boast the gear is worth over a million bucks.…




HipChat SlipChat lets hackers RipChat

Tue, 25 Apr 2017 00:57:50 GMT

They're going to get plenty of LipChat

IRC-for-biz HipChat says a vulnerability in a software library used by its HipChat.com service allowed hackers to access private conversations and customer account information.…




Webroot antivirus goes bananas, starts trashing Windows system files

Tue, 25 Apr 2017 00:03:19 GMT

Even automated security tool thinks Redmond's snooping operating system is 'malicious'

Webroot's security tools went berserk today, mislabeling key Microsoft Windows system files as malicious and temporarily removing them – knackering countless PCs in the process.…




Northrop Grumman can make a stealth bomber – but can't protect its workers' W-2 tax forms

Mon, 24 Apr 2017 22:08:02 GMT

'Stolen creds' used to swipe data on aerospace giant's staff

Northrop Grumman has admitted one of its internal portals was broken into, exposing employees' sensitive tax records to miscreants.…




Alert: If you're running SquirrelMail, Sendmail... why? And oh yeah, remote code vuln found

Mon, 24 Apr 2017 19:29:15 GMT

This is nuts

Updated Security researchers have uncovered a critical security hole in SquirrelMail, the open-source webmail project.…




We're 'heartbroken' we got caught selling your email records to Uber, says Unroll.me boss

Mon, 24 Apr 2017 19:02:19 GMT

Not sorry we did it – just sorry you're pissed off

Jojo Hedaya, the CEO of email summarizer Unroll.me, has apologized to his users for not telling them clearly enough that they are the product, not his website.…




eBay denies claims it's failing to thwart 'systematic fraud'

Mon, 24 Apr 2017 15:31:27 GMT

Man alleges elaborate scam is slapping money out of online souk's pockets

A campaigner has gone public with his concerns over an alleged scam on eBay.…




Russian hacker arrested in Spain for bot-herding not election-fiddling

Mon, 24 Apr 2017 07:31:07 GMT

Peter Levashov indicted over Kelihos as Russian carder Roman Seleznev cops 27 years

Last week ended badly for Russian hackers.…




Teen charged with 'cyberstalking' in bomb hoax case

Mon, 24 Apr 2017 03:22:03 GMT

Hoaxer kept thumb drive of swatting calls

An 18-year-old dual citizen of the US and Israel has been charged with making a string of online and phone threats against schools and Jewish community centers.…




China 'hacked' South Korea to wreck Star Wars missile shield

Fri, 21 Apr 2017 22:31:09 GMT

FireEye fingers Middle Kingdom infiltration teams

Well-connected security biz FireEye is claiming Chinese hackers are trying to break into South Korea's military to halt the deployment of an anti-ballistic weapons system in the country.…




Doctor Who-inspired proxy transmogrifies politically sensitive web to avoid gov censorship

Fri, 21 Apr 2017 20:38:03 GMT

Slitheen tool smuggles browsers into cyber-Tardis

Computer boffins in Canada are working on anti-censorship software called Slitheen that disguises disallowed web content as government-sanctioned pablum. They intend for it to be used in countries where network connections get scrutinized for forbidden thought.…




LinkedIn U-turns on Bluetooth-enabled 'Tinder for marketers'

Fri, 21 Apr 2017 15:22:08 GMT

Pop-up requested permission to share data with nearby devices even when app not in use

LinkedIn irked privacy advocates by dropping a Bluetooth-enabled "Tinder for marketers" feature into its mobile app on Thursday.…




Peer pressure, not money, lures youngsters into cybercrime – report

Fri, 21 Apr 2017 13:01:12 GMT

Are teenage dreams so hard to beat?

Teenage hackers get mixed up in cybercrime mostly to gain bragging rights over peers rather than to get rich, according to a new study.…




Script kiddies pwn 1000s of Windows boxes using leaked NSA hack tools

Fri, 21 Apr 2017 06:38:08 GMT

Vulnerable unpatched systems expose exploitable SMB networking to world+dog

The NSA's Equation Group hacking tools, leaked last Friday by the Shadow Brokers, have now been used to infect thousands of Windows machines worldwide, we're told.…




Nuh-uh, Google, you WILL hand over emails stored on foreign servers, says US judge

Thu, 20 Apr 2017 22:31:12 GMT

If you can access them in California, so can the Feds

Google has been ordered by a US court to cough up people's private Gmail messages stored overseas – because if that information can be viewed stateside, it is subject to American search warrants, apparently.…




'We should have done better' – the feeble words of a CEO caught using real hospital IT in infosec product demos

Thu, 20 Apr 2017 20:54:24 GMT

Understatement of the month: 'Mistakes were made'

The CEO of computer security biz Tanium has admitted his staff logged into hospital networks and accessed live IT systems during product demos with potential customers.…




Trump's self-imposed cybersecurity deadline is up: What we got?

Thu, 20 Apr 2017 19:42:33 GMT

Quick clue: President Snowflake is a compulsive liar

Analysis On January 6, president-elect Donald Trump had a meeting with the heads of the intelligence services and came out with one action point: cybersecurity.…




Online ad scam launders legions of pirates and pervs into 'legit' surfing

Thu, 20 Apr 2017 16:00:09 GMT

Traffic Alchemist turns base metal into gold

An elaborate online ad scam that disguised junk traffic as views on reputable sites has been costing advertisers as much as $7m per month.…




Mastercard launches card that replaces PIN with fingerprint sensor

Thu, 20 Apr 2017 13:35:09 GMT

Sweet MFA... but there's no documentation available for users

Mastercard has unveiled its new biometric card which adds a fingerprint sensor to the chip as a replacement security measure to the four-digit PIN.…




Flaws found in Linksys routers that could be used to create a botnet

Thu, 20 Apr 2017 13:00:04 GMT

Engineers working on firmware updates

Multiple models of Linksys Smart Wi-Fi Routers have vulnerabilities that might be exploited to create a botnet, security researchers at IOActive warn.…




Microsoft shrugs off report that Edge can expose user identities from JS Fetch requests

Thu, 20 Apr 2017 10:05:05 GMT

La la la nothing to patch here la la la

Updated An independent researcher claims to have uncovered a security flaw in Microsoft Edge.…




Ambient light sensors can steal data, says security researcher

Thu, 20 Apr 2017 06:31:12 GMT

Not-so-bright API means web pages can use a W3C idea to pop your phone or laptop

Security researcher Lukasz Olejnik says it is possible to slurp sensitive data with the ambient light sensors installed in many smartphones and laptops.…




We're spying on you for your own protection, says NSA, FBI

Wed, 19 Apr 2017 21:44:25 GMT

Except we're not, of course, because that would be illegal

A new factsheet by the NSA and FBI has laid bare ludicrous contradictions in how US intelligence agencies choose to interpret a law designed to prevent spying on American citizens, but which they use to achieve exactly that end.…




If you've stayed at a Holiday Inn you may have lost more than a good night's sleep (like maybe your bank card)

Wed, 19 Apr 2017 20:36:25 GMT

Massive malware infection slurps customers' privates

In February, Intercontinental Hotels Group alerted customers that some of its US locations had been infected with credit-card-stealing malware. Now it has admitted the cyber-outbreak is much worse than first thought.…




30,000 London gun owners hit by Met Police 'data breach'

Wed, 19 Apr 2017 13:55:10 GMT

Who gave marketing agency access to super-sensitive address database?

London gun owners are asking questions of the Metropolitan Police after the force seemingly handed the addresses of 30,000 firearm and shotgun owners to a direct mail marketing agency for a commercial firm's advertising campaign.…




UK.gov survey shines light on cybersecurity threats to businesses

Wed, 19 Apr 2017 12:51:10 GMT

Phishing, ransomware remain most pressing concerns

Phishing and ransomware remain the most pressing security threats for UK business, according to a government-backed survey out Wednesday.…




Speaking in Tech: Hacking Microsoft Windows? That's cute

Wed, 19 Apr 2017 10:35:43 GMT

Podcast Hacker whizz and Veracode co-founder Chris Wysopal joins the crew this week to talk secure software



Fixing your oven can cook your computer

Wed, 19 Apr 2017 06:26:09 GMT

Appliance vendor Hotpoint's UK service site is serving malware when you seek repairs

Updated If your Hotpoint cooker or washer's on the blink, don't arrange a repair by visiting the manufacturer's website: the appliance vendor has been inadvertently foisting nastyware onto visitors.…




Revealed: Scammers plaster Google Maps with pins to lure punters from honest traders

Wed, 19 Apr 2017 06:08:04 GMT

Research shows how web mapping service can be abused

Computer scientists at the University of California, San Diego, and Google, are clamping down on fake businesses trying to scam victims through Google Maps.…




Oracle patches Solaris 10 hole exploited by NSA spyware tool – and 298 other security bugs

Wed, 19 Apr 2017 00:39:49 GMT

Mega load of updates lands for tons of Big Red gear

Oracle today emitted a huge batch of 299 security fixes for its software – including a patch for a vulnerability exploited by a leaked NSA tool that can hijack Solaris systems.…




Stop asking people for their passwords, rights warriors yell at US Homeland Security

Tue, 18 Apr 2017 22:55:30 GMT

File request under: 'Trash can'

Civil and digital rights groups are leading a campaign to stop the US Department of Homeland Security's demanding access to foreigners' social media accounts when entering America.…




Profit with just one infection! Crook sells ransomware for $175

Tue, 18 Apr 2017 14:47:08 GMT

Nifty dashboard shows the bitcoin rolling in

Cybercrooks have begun retailing a new easy-to-use ransomware strain that promises profit with only one successful infection.…




Large UK businesses are getting pwned way more than smaller ones

Tue, 18 Apr 2017 12:31:00 GMT

But are they just better at sniffing out breaches?

Larger businesses in the UK are far more likely to be victims of attacks than smaller ones, according to a survey by the British Chamber of Commerce.…




That apple.com link you clicked on? Yeah, it's actually Russian

Tue, 18 Apr 2017 06:06:13 GMT

Didn't we fix this back in 2005? Apparently not

Click this link (don't fret, nothing malicious). Chances are your browser displays "apple.com" in the address bar. What about this one? Goes to "epic.com," right?…




Leaked NSA point-and-pwn hack tools menace Win2k to Windows 8

Fri, 14 Apr 2017 23:29:21 GMT

Microsoft claims it has patched most of the exploited bugs

Updated The Shadow Brokers have leaked more hacking tools stolen from the NSA's Equation Group – this time four-year-old exploits that attempt to hijack venerable Windows systems, from Windows 2000 up to Server 2012 and Windows 7 and 8.…




All ready for that Easter holiday? Here's a mild MySQL security bug

Fri, 14 Apr 2017 19:54:52 GMT

Panic over the Riddle flaw – or just update to version 5.7. Your choice. We're not your dad

A programming blunder has been uncovered in Oracle's MySQL that can potentially leak usernames and passwords to man-in-the-middle eavesdroppers.…




Sysadmin 'trashed old bosses' Oracle database with ticking logic bomb'

Fri, 14 Apr 2017 07:04:04 GMT

Always ensure the office laptop gets returned

A systems administrator is being sued by his ex-employer, which has accused the IT bod of planting a ticking time-bomb on company's servers to wipe crucial data.…




Linux remote root bug menace: Make sure your servers, PCs, gizmos, Android kit are patched

Fri, 14 Apr 2017 01:25:46 GMT

Ping of pwn: Malicious UDP packets may take over gear

A Linux kernel flaw that potentially allows miscreants to remotely control vulnerable servers, desktops, IoT gear, Android handhelds, and more, has been quietly patched.…




Cerber surpasses Locky to become dominant ransomware menace

Thu, 13 Apr 2017 16:30:10 GMT

Ransomware-as-a-Service is a hit with the tech illiterate

Cerber eclipsed Locky as the most common ransomware pathogen doing the rounds in the first three months of 2017.…




Callisto Group snoopers wreak havoc with leaked HackingTeam spyware

Thu, 13 Apr 2017 14:30:04 GMT

Surveillance firm's toolset goes rogue in hands of cyberspooks

Leaked HackingTeam spyware was used by a cyber-spy group to collect intelligence.…




Free health apps laugh in the face of privacy, sell your wheezing data

Thu, 13 Apr 2017 13:00:11 GMT

Actually, invasive slurping goes way beyond the remit of 'fitness'

Free health tracker apps pose a severe privacy risk, security researchers warn.…




Irish! data! police! are! preparing! to! whack! Yahoo! over! that! hack!

Thu, 13 Apr 2017 12:00:06 GMT

Er, wait, which hack? We've lost track...

Yahoo! is set to get a spanking under European Union data protection laws for the biggest of the many megabreaches it copped to last year.…




DTMF replay phreaked out the Dallas tornado alarm, say researchers

Thu, 13 Apr 2017 03:30:06 GMT

Get Kevin Mitnick on the line, he knows something about whistling codes, apparently

Strap yourself into the DeLorean: researchers from Duo reckon the Dallas tornado alarm incident was a case of old-style DTMF phreaking.…