Subscribe: The Register - Security: Spam
http://www.theregister.com/security/spam/headlines.rss
Added By: Feedage Forager Feedage Grade A rated
Language: English
Tags:
access  day  hacking  malware  microsoft  new  people  plant  privacy  ransomware  researchers  security  system  tech  windows     
Rate this Feed
Rate this feedRate this feedRate this feedRate this feedRate this feed
Rate this feed 1 starRate this feed 2 starRate this feed 3 starRate this feed 4 starRate this feed 5 star

Comments (0)

Feed Details and Statistics Feed Statistics
Preview: The Register - Security: Spam

The Register - Security



Biting the hand that feeds IT



Copyright: Copyright 2017, Situation Publishing
 



WikiLeaks doc dump reveals CIA tools for infecting air-gapped PCs

Thu, 22 Jun 2017 21:12:30 GMT

Brutal Kangaroo jumps network breaks, according to leaked classified info

WikiLeaks has published online more top-secret documents it has obtained from the CIA describing the agency's hacking tools. This time the dossier details software codenamed Brutal Kangaroo that agents can use to infect targets' air-gapped computers with malware.…




Microsoft PatchGuard flaw could let hackers plant rootkits on x64 Windows 10 boxen

Thu, 22 Jun 2017 16:02:08 GMT

Redmond shrugs, says PC would already need to be thoroughly pwned

Flaws in Microsoft PatchGuard create a means for hackers to plant rootkits on Windows 10, 64-bit OS devices.…




Two Brits nabbed in connection with global plot to hack Microsoft network

Thu, 22 Jun 2017 15:19:19 GMT

Organised crime coppers cuff young men

Detectives have arrested two men in the UK this morning in connection with an international "conspiracy" to break into the Microsoft network.…




UCL ransomware attack traced to malvertising campaign

Thu, 22 Jun 2017 12:27:10 GMT

Researchers finger trojan-slinging AdGholas group

Security researchers have suggested that the ransomware attack on University College London last week was spread through a "malvertising" campaign.…




'No decision' on Raytheon GPS landing system aboard Brit aircraft carriers

Thu, 22 Jun 2017 11:04:10 GMT

We've already got one tried and tested system, huffs MoD

The Ministry of Defence has insisted it has made “no decision” to install the US Navy’s JPALS aircraft carrier landing system aboard HMS Prince of Wales, the second of the Royal Navy’s two new 65,000-tonne aircraft carriers.…




Researcher calls the fuzz on OpenVPN, uncovers crashy vulns

Thu, 22 Jun 2017 01:56:09 GMT

Patches for servers and clients already out there – get updating just in case

OpenVPN has patched a bunch of security vulnerabilities that can be exploited to crash the service or, at a pinch, potentially gain remote-code execution.…




Homeland Security: Putin’s hackers tried to crack electoral networks in 21 US states

Thu, 22 Jun 2017 00:16:13 GMT

Senate Intelligence Committee frustrated by lack of details

Russian attempts to hack key American election systems are more advanced than first thought, according to Homeland Security officials on Wednesday.…




Cybereason snags $100m from Softbank to mount distribution, tech offensive

Wed, 21 Jun 2017 17:59:50 GMT

'This deal is the coming of age of the offensive security model'

Cybersecurity startup Cybereason is looking to go to the next level after securing $100m in funding from SoftBank.…




Breach at UK.gov's Cyber Essentials scheme exposes users to phishing attacks

Wed, 21 Jun 2017 14:41:11 GMT

How does that rank on the Morissette Scale?

Updated The operation behind the UK government's Cyber Essentials scheme has suffered a breach exposing the email addresses of registered consultancies, it told them today.…




Honda plant in Japan briefly stops making cars after fresh WannaCrypt outbreak

Wed, 21 Jun 2017 13:57:57 GMT

No minivans or sedans rolled out of plant for 24 hours

Honda said today that it had briefly halted operations at a car plant in Sayama, Japan earlier this week because of the infamous WannaCrypt ransomware.…




Ad 'urgently' seeks company to build national e-ID system

Wed, 21 Jun 2017 12:27:04 GMT

People Per Hours alert does not specify which government

An intriguing, and slightly concerning, job ad has appeared on freelancing website People Per Hour, entitled: "URGENT!!! Delivery of a National e-ID System".…




Microsoft admits to disabling third-party antivirus code if Win 10 doesn't like it

Tue, 20 Jun 2017 23:40:40 GMT

Redmond readies the ground for Kaspersky's EU antitrust suit

Windows 10 does disable some third-party security software, Microsoft has admitted, but because of compatibility – not competitive – issues.…




US is Number One! In sales register hacking attacks, at least

Tue, 20 Jun 2017 21:15:55 GMT

Fraudsters love America's easy-to-hack card slurpers

Hacking attacks against sales terminals have risen by nearly a third last year, and the US is still leading the way in being insecure.…




Hacker exposed bank loophole to buy luxury cars and a face tattoo

Tue, 20 Jun 2017 17:59:18 GMT

♪ I'm gonna wait... til the midnight hour, when there's no one else around

A UK hacker who stole £100,000 from his bank after spotting a loophole in its systems has been jailed for 16 months.…




NSA had NFI about opsec: 2016 audit found laughably bad security

Tue, 20 Jun 2017 06:02:06 GMT

Unlocked racks. No 2FA. No access control lists. No wonder Snowden got away with it

Second-rate opsec remained pervasive at the United States' National Security Agency, according to an August 2016 review now released under Freedom of Information laws.…




South Korean hosting co. pays $1m ransom to end eight-day outage

Tue, 20 Jun 2017 03:02:08 GMT

Talked scum down from $4.4m after they waltzed through unpatched legacy mess

A South Korean web hosting company is forking out just over US$1 million to ransomware scum after suffering more than eight days of nightmare.…




Stack Clash flaws blow local root holes in loads of top Linux programs

Tue, 20 Jun 2017 01:03:06 GMT

We knew about this in 2005. And 2010. And people are still building without -fstack-check

Powerful programs run daily by users of Linux and other flavors of Unix are riddled with holes that can be exploited by logged-in miscreants to gain root privileges, researchers at Qualys have warned.…




Mexican government accused of illegal phone hacking of citizens

Mon, 19 Jun 2017 23:32:25 GMT

Investigation reveals targeting of journalists and activists

An investigation by Mexican NGOs and a Canadian tech lab has revealed how the Mexican government is illegally targeting the mobile phones of journalists, lawyers and activists to spy on them.…




US voter info stored on wide-open cloud box, thanks to bungling Republican contractor

Mon, 19 Jun 2017 19:00:29 GMT

OMG, GOP! WTF?

A massive cloud-hosted database containing personal information on nearly 200 million people in America was left wide open by consultants hired by the US Republican National Committee, it is claimed.…




Fancy buying our aircraft carrier satnav, Raytheon asks UK

Mon, 19 Jun 2017 13:11:06 GMT

System might only be fitted to HMS Prince of Wales – reports

American defence firm Raytheon has said it is in talks with the Ministry of Defence to put the US Navy’s “satnav for F-35s” system onto new British carrier HMS Prince of Wales.…




It's 2017, and UPnP is helping black-hats run banking malware

Mon, 19 Jun 2017 05:00:11 GMT

Pinkslipbot malware copies Conficker for C&C channel

Another banking malware variant has been spotted in the wild, and it's using UPnP to pop home routers to expose unsuspecting home users, recruited as part of the botnet.…




Worried about election hacking? There's a technology fix – Helios

Fri, 16 Jun 2017 23:28:09 GMT

End-to-end encrypted, verifiable voting already in action

Election hacking is much in the news of late and there are fears that the Russians/rogue lefties/Bavarian illuminati et al are capable of falsifying results.…




FOIA documents show the Kafkaesque state of US mass surveillance

Fri, 16 Jun 2017 20:58:55 GMT

♪ Tech biz fought the spying law and the spying law won

A mystery technology biz tried to fight off demands from the US government that it hand over people's communications flowing through its systems.…




Brit hacker admits he siphoned info from US military satellite network

Fri, 16 Jun 2017 05:28:09 GMT

Department of Defense claims intrusion cost $628,000... er?

A UK-based computer hacker has admitted stealing hundreds of usernames and email addresses from a US military communications system.…




WikiLeaks emits CIA's Wi-Fi pwnage tool docs

Thu, 15 Jun 2017 22:49:46 GMT

Spies do spying, part 78: Cherry Blossom malware gobbles up data flowing through routers

Hundreds of commercial Wi-Fi routers are, or were, easily hackable by the CIA, according to classified files published today by WikiLeaks.…




BAE accused of flogging mass-spying toolkits to assh*le autocrats

Thu, 15 Jun 2017 20:22:43 GMT

Arab Spring meant ka-ching for merchants of death

A year-long investigation has uncovered evidence that British armaments conglomerate BAE Systems has been selling internet surveillance equipment to Middle Eastern regimes with questionable human rights records.…




Look who's joined the anti-encryption posse: Germany, come on down

Thu, 15 Jun 2017 18:43:33 GMT

Sie werden diese Nachrichten entschlüsseln!

Germany has joined an increasing number of countries looking to introduce anti-encryption laws.…




If you haven't already obliterated your Jaff-infected comp, there is an antidote available

Thu, 15 Jun 2017 17:03:12 GMT

Lovely chaps at Kaspersky have developed decryption tool

Security researchers have developed a free decryption tool for victims of the ‪Jaff‬ ransomware, meaning they can regain access to files without paying crooks.…




Banks could be stung for €5bn under GDPR, screams latest report on industry readiness

Thu, 15 Jun 2017 16:03:04 GMT

Firm peddling security solutions says poor breach reporting will 'make you look like a fool'

European banks could face fines totalling €4.7bn in the three years after General Data Protection Regulation comes into force, according to a report from data security solutions firm AllClear ID.…




Banking websites are 'littered with trackers' ogling your credit risk

Thu, 15 Jun 2017 11:03:07 GMT

Lenders already know whether to approve before you apply

A new study has warned that third-party trackers litter banking websites and the privacy-invading tech is being used to rate surfers' creditworthiness.…




Don't all rush out at once, but there are a million devices ripe to be the next big botnet

Thu, 15 Jun 2017 10:02:11 GMT

As bad as Mirai was, it could have been much worse

A wormable vulnerability involving an estimated one million digital video recorders (DVR) is at risk of creating a Mirai-style botnet, security researchers warn.…




RSA SecurID admin console can issue emergency access to decent social engineers

Thu, 15 Jun 2017 04:04:11 GMT

Put the management interface behind the firewall, pronto

Stop us if you've heard this one: an emergency access feature offered by RSA for SecurID token customers isn't completely secure.…




It's 2017 and someone's probably still using WINS naming. If so, stop

Thu, 15 Jun 2017 01:14:05 GMT

Microsoft's NetBIOS naming is vulnerable: use DNS instead

Sysadmins should already have purged WINS from their Microsoft Windows Server environments – but if they haven't, there's a new reason to take it for one last walk out behind the shed.…




Researcher says fixes to Windows Defender's engine incomplete

Thu, 15 Jun 2017 00:37:07 GMT

James Lee says Microsoft's A-V software still has remote code execution holes

In spite of a flurry of patches designed to fix Windows Defender, at least one security researcher reckons there's still work to be done.…




Soldiers bust massive click-farm that used 500k SIM cards, 100s of mobes to big up web tat

Wed, 14 Jun 2017 22:21:52 GMT

Cops pad up to Thai operation

A massive click-fraud farm has been raided in Thailand by police and army troops, who seized nearly half a million SIM cards and hundreds of iPhones used to promote products online.…




Crouching cyber, Hidden Cobra: Crack North Korean hack team ready to strike, says US-CERT

Wed, 14 Jun 2017 20:03:25 GMT

DeltaCharlie malware aimed at American biz, we're told

The Norks are coming and it won't be fun, according to a new bulletin from the United States Computer Emergency Readiness Team (US-CERT).…




Don't touch that mail! London uni fears '0-day' used to cram network with ransomware

Wed, 14 Jun 2017 19:16:44 GMT

Antivirus didn't pick up software nasty, says UCL

Updated University College London is tonight tackling a serious ransomware outbreak that has scrambled academics' files.…




Internet hygiene still stinks despite botnet and ransomware flood

Wed, 14 Jun 2017 14:05:12 GMT

Millions of must-be-firewalled services sitting wide open

Network security has improved little over the last 12 months – millions of vulnerable devices are still exposed on the open internet, leaving them defenceless to the next big malware attack.…




Telegram chat app founder claims Feds offered backdoor bribe

Wed, 14 Jun 2017 10:04:41 GMT

Pavel Durov flings Twitter dooky at rivals Signal, says US govt funds their encryption

The founder of chat app Telegram has publicly claimed that feds pressured the company to weaken its encryption or install a backdoor.…




Buggy devices and lazy operators make VoLTE a security nightmare

Wed, 14 Jun 2017 02:58:11 GMT

Voicemail hacking? Discovered in 2015, and still not fixed.
And that's not the worst of it

Voice over LTE leaks like a sieve, because nobody's paying attention to the details.…




Tails OS hits version 3.0, matches Debian's pace but bins 32-bit systems

Wed, 14 Jun 2017 01:58:09 GMT

Edward Snowden's preferred-for-privacy OS gets a decent upgrade

The developers of privacy-protecting Linux distribution Tails have decided to get closer to Debian with the project's 3.0 release.…




Five Eyes nations stare menacingly at tech biz and its encryption

Tue, 13 Jun 2017 19:34:13 GMT

US, UK, Australia, New Zealand and Canada mull leaning hard for access to your info

Officials from the United States, the United Kingdom, Canada, Australia and New Zealand will discuss next month plans to force tech companies to break encryption on their products.…




Discredit a journo? Easy, that'll be $55k. Fix an election? Oh, I can do that for just $400k

Tue, 13 Jun 2017 14:58:27 GMT

Cybercrooks rake it in with Fake-News-as-a-Service

Fake news has come to be associated with political intrigue but the same propaganda techniques are also abused by cybercriminals, according to a study by Trend Micro.…




Pizza proffer punctures privacy protection, prompts pals' perfidy

Tue, 13 Jun 2017 12:33:04 GMT

People like the idea of privacy but not the effort, research finds

Researchers from the Massachusetts Institute of Technology and Stanford University have found that people say they want privacy but make choices suggesting the opposite, and can be easily manipulated through interface design, reassuring statements, and pizza.…




Connectivity's value is almost erased by the costs it can impose

Tue, 13 Jun 2017 07:05:08 GMT

The internet made information flow on the cheap, but making it anti-fragile will cost plenty

I spent the first half of my career coding and while I don't miss the day-in-day-out grind of coding, but do still enjoy the computer-as-infinite-toy. So from time to time I try to spend a few days with my head in the machine, playing, exploring and learning.…




Raspberry Pi sours thanks to mining malware

Tue, 13 Jun 2017 01:32:20 GMT

Change your default user name or Linux.MulDrop.14 will send your Pi down the crypto-mines

Anti-virus vendor Dr. Web has found something nasty: malware named “Linux.MulDrop.14” that turns the Raspberry Pi into a cryptocurrency mining machine.…




Jailed fraudster admits running same cold-caller con from behind bars

Mon, 12 Jun 2017 17:12:13 GMT

Fooling marks into divulging bank details made £2m a week

The jailed kingpin behind a multimillion-pound fraud has admitted attempting to run an almost identical con from behind bars.…




Google's news algorithm serves up penis pills

Mon, 12 Jun 2017 16:02:12 GMT

This story has: Maths, Google, 'fake' pharma, explicit screenshots...

+Comment Our Monday here at The Reg's London offices has been cheered to no end by Google News, which has been spitting out odd pharmaceutical-related "journalism" throughout the day.…




Move over, Stuxnet: Industroyer malware linked to Kiev blackouts

Mon, 12 Jun 2017 15:36:05 GMT

Modular nasty can seize direct control of substation switches and circuit breakers

Security researchers have discovered malware capable of disrupting industrial control processes.…




German police nick alleged admin of dark web gun sales site

Mon, 12 Jun 2017 13:39:48 GMT

Charge connected to 2016 Munich mass-murder weapon

German police have arrested a man they suspect of being the administrator of a dark net website. The site is said to have been used to buy a gun used in a 2016 mass murder.…