Subscribe: The Register - Security: ID
http://www.theregister.com/security/identity/headlines.rss
Added By: Feedage Forager Feedage Grade B rated
Language: English
Tags:
app  data  email  hackers  hacking  linux  malware  new  nsa  researchers  security researchers  security  smart  systems  year     
Rate this Feed
Rate this feedRate this feedRate this feedRate this feedRate this feed
Rate this feed 1 starRate this feed 2 starRate this feed 3 starRate this feed 4 starRate this feed 5 star

Comments (0)

Feed Details and Statistics Feed Statistics
Preview: The Register - Security: ID

The Register - Security



Biting the hand that feeds IT



Copyright: Copyright 2017, Situation Publishing
 



NSA pulls plug on some email spying before Congress slaps it down

Fri, 28 Apr 2017 21:54:34 GMT

Curious time to stop listening to Americans talking about foreigners, eh, Donald?

Updated The NSA has, in theory, stopped snooping on American citizens' private communications that loosely involve foreigners in some way.…




Linux Mint-using terror nerd awaits sentence for training Islamic State

Fri, 28 Apr 2017 17:54:00 GMT

Paranoid fella hid operating system, weapons manuals in USB drive cufflinks, no less

A paranoid Welsh Muslim who wore gloves while typing on his laptop, admitted being part of Islamic State, and, gasp, harbored a copy of Linux Mint, has been described as a “new and dangerous breed of terrorist.”…




Sneaky 'fileless' malware flung at Israeli targets via booby-trapped Word docs

Fri, 28 Apr 2017 12:27:10 GMT

Spies, bank raiders gravitate to growing stealth technique

A newly uncovered cyber-espionage campaign targeting Israeli organisations relies on "fileless" malware hidden in Microsoft Word documents, a hacker tactic that's becoming a growing menace.…




Last year's ICO fines would be 79 times higher under GDPR

Fri, 28 Apr 2017 08:03:07 GMT

TalkTalk's £400,000 penalty was big – how about £59 MILLION?

Fines from the Information Commissioner's Office (ICO) against Brit companies last year would have been £69m rather than £880,500 if the pending General Data Protection Regulation (GDPR) had been applied, according to analysis by NCC Group.…




Kali Linux can now use cloud GPUs for password-cracking

Fri, 28 Apr 2017 07:02:40 GMT

Kali's a favourite for white hats, but that doesn't stop black hats guys from using it too

Think passwords, people. Think long, complex passwords. Not because a breach dump's landed, but because the security-probing-oriented Kali Linux just got better at cracking passwords.…




Republicans want IT bloke to take fall for Clinton email brouhaha

Thu, 27 Apr 2017 20:39:15 GMT

Not quite 'lock her up,' but they'll take what they can get – like formal criminal charges

US House Republicans are demanding prosecutors bring charges against the IT chap who hosted Hillary Clinton's private email service.…




Facebook decides fake news isn't crazy after all. It's now a real problem

Thu, 27 Apr 2017 20:12:28 GMT

Once dismissed by Zuck, misinformation now merits revised security strategy

Analysis Last November at the Techonomy Conference in Half Moon Bay, California, Facebook CEO Mark Zuckerberg dismissed the notion that disinformation had affected the US presidential election as lunacy.…




Mysterious Hajime botnet has pwned 300,000 IoT devices

Thu, 27 Apr 2017 16:02:13 GMT

The Dark Knight of malware's purpose remains unknown

Hajime – the "vigilante" IoT worm that blocks rival botnets – has built up a compromised network of 300,000 malware-compromised devices, according to new figures from Kaspersky Lab.…




Super-secure Pi-stuffed nomx email server box given a good probing

Thu, 27 Apr 2017 15:06:08 GMT

Researcher claims it's riddled with flaws. Vendor denies it

Updated Security researchers claim to have uncovered a variety of serious security holes in a heavily touted secure email server technology. Nomx, the firm behind the device, strongly disputes the claims and has challenged researchers to a hacking challenge, involving the creation of an email account on a designated remotely hosted nomx device.…




Seven in ten UK unis admit being duped by phishing attacks

Thu, 27 Apr 2017 12:41:11 GMT

Not so smart now, eh?

Seven in ten UK universities have admitted falling victim to a phishing attack in which an individual has been tricked into disclosing personal details via an email purporting to be from a trusted source.…




FTC urged to probe easily penetrated telly-enabled teledildonic toy

Thu, 27 Apr 2017 10:28:11 GMT

Woes whack Wi-Fi webcam willy with weak websec walls

The US Federal Trade Commission has been urged to launch a probe into a hackable sex toy, which is potentially exposing couples' teledildonic frolics to cyberpervs.…




Ransomware up. Breaches up. What do hackers want? Research, prototypes... all your secrets

Thu, 27 Apr 2017 08:08:06 GMT

Verizon super depressing report's in

Cyberespionage and ransomware attacks are on the increase, according to the latest annual edition of Verizon's breach report.…




Peace in our time! Symantec says it can end Google cert spat

Thu, 27 Apr 2017 07:27:06 GMT

It's basically a promise to do better and not mess things up

Symantec is hoping to get its certificates back on Google's trust list.…




TalkTalk HackHack DuoDuo PleadPlead GuiltyGuiltyGuiltyGuilty

Thu, 27 Apr 2017 06:27:05 GMT

Met cops gloat after pair admits to pilfering subscriber records

Two chaps in the UK have admitted stealing more than 150,000 customer records from TalkTalk.…




Unplug the Bitcoin miner and do us all a favour: Antminer has remote shutdown flaw

Thu, 27 Apr 2017 02:03:19 GMT

‘Antbleed’ attack could crock 70 per cent of all mining. Time to try another flavour?

A new branded bug (sigh) has landed, specific to an ASIC-based Bitcoin miner: dubbed “Antbleed”, it allows remote shutdown of hardware sold by a company called "Bitmain".…




Homebrew crypto SNAFU on electrical grid sees GE rush patches

Thu, 27 Apr 2017 01:59:05 GMT

Boffins turned up hard-coded password in ancient controllers

General Electric is pushing patches for protection relay bugs that, if exploited, could open up transmission systems to a grid-scale attack.…




Australia' Smart meter leaders lag in securing devices

Thu, 27 Apr 2017 00:39:12 GMT

Centre for Internet Safety calls for consumer safeguards

Default passwords, unpatched firmware, unencrypted traffic: according to a report from a Canberra University research organisation, Australia's smart electricity meter rollouts are characterised by n00b-level security gaffes.…




Chipotle may have banished E coli, but now it has a new infection

Wed, 26 Apr 2017 23:58:13 GMT

Another reason to feel queasy when leaving – bank-card-stealing malware

The last quarter has been a trying one for Mexican fast-food chain Chipotle. People are returning to its restaurants after the great 2015 E coli outbreak, but now customers are being struck by a different kind of virus.…




Linux kernel security gurus Grsecurity oust freeloaders from castle

Wed, 26 Apr 2017 23:14:28 GMT

No more test patches without a subscription

Linux users, the free lunch is over. Pennsylvania-based Open Source Security on Wednesday decided to stop making test patches of Grsecurity available for free.…




Beware of geeks bearing gifts: Evil game guides infect 2 million Androids

Wed, 26 Apr 2017 21:47:31 GMT

Google Play scanners asleep at the switch while morons tap away their security

Ad-displaying malware in nearly 50 apps on the Google Play Store has infected nearly two million phones.…




Interpol unplugs nearly 9,000 Asian command and control networks

Wed, 26 Apr 2017 03:01:08 GMT

WordPress plug-in bug exploited in eight countries

An Interpol investigation has revealed a worrying degree of insecurity in south-east Asian countries, with even government-operated web servers infected to operate as command and control systems for bot-herders.…




Samsung Smart TV pwnable over Wi-Fi Direct, pentester says

Wed, 26 Apr 2017 01:17:13 GMT

Sammy says trust-known-MACs code is a feature not a bug

A security researcher is complaining that Samsung isn't making a serious response to a vulnerability in its Smart TVs.…




Hyundai app security blunder allowed crooks to 'steal victims' cars'

Tue, 25 Apr 2017 23:27:11 GMT

Remote locate, unlock, and start vehicles – using a fixed encryption key... ouch

Hyundai has patched its Blue Link smartphone app to stop it blabbing private info that could, it is claimed, be used to break into and steal people's cars.…




Expedia IT bod gets all-expenses-paid trip to prison after hacking execs' emails for profit

Tue, 25 Apr 2017 22:05:06 GMT

Blames pricey SF rent for $350,000 insider-trading scam

An ex-Expedia IT admin has been fined and jailed for 15 months after he spied on the emails of the travel giant's top brass to make insider trades.…




After blitzing FlexiSpy, hackers declare war on all stalkerware makers: 'We're coming for you'

Tue, 25 Apr 2017 21:04:24 GMT

App dev ransacked after gang used test/test login, it is claimed

A Brit biz selling surveillance tools that can be installed on phones to spy on spouses, kids, mates or employees has been comprehensively pwned by hackers – who promise similar stalkerware peddlers are next.…




Brit behind Titanium Stresser DDoS malware sent to chokey

Tue, 25 Apr 2017 16:25:58 GMT

20-year-old Herts man slapped with two years' stripey suntan time

A Hertfordshire man has been jailed for two years after netting nearly £400,000 from the malware he wrote as a 15-year-old student.…




Hackers uncork experimental Linux-targeting malware

Tue, 25 Apr 2017 14:20:04 GMT

SSH... it's Shishiga

Hackers have unleashed a new malware strain that targets Linux-based systems.…




Kremlin-backed DNC hackers going after French presidential hopeful Macron

Tue, 25 Apr 2017 12:06:04 GMT

Everyone, everything's a target for mysterious APT28 crew

The Russian cyberespionage group blamed for the infamous US Democratic National Committee email leak launched targeted phishing attacks against French presidential candidate Emmanuel Macron's campaign as recently as last month.…




Ex-NSA techies launch data governance tool for future algorithm-slavery

Tue, 25 Apr 2017 11:00:09 GMT

Immuta debuts Projects for machine learning governance, 'interpretability is key' – CEO

Immuta, a data governance startup in Maryland run by former US National Security Agency technicians, has developed a method to govern how data is used by machine learning algorithms.…




Car hacking's dynamic duo offers to save others $1m in research

Tue, 25 Apr 2017 04:08:12 GMT

Miller and Valasek spread the word on hacking archive

Two famed car hackers claim they can save fellow tinkerers and security researchers a lot of time and money – by handing over their tools and blueprints for free. The pair boast the gear is worth over a million bucks.…




HipChat SlipChat lets hackers RipChat

Tue, 25 Apr 2017 00:57:50 GMT

They're going to get plenty of LipChat

IRC-for-biz HipChat says a vulnerability in a software library used by its HipChat.com service allowed hackers to access private conversations and customer account information.…




Webroot antivirus goes bananas, starts trashing Windows system files

Tue, 25 Apr 2017 00:03:19 GMT

Even automated security tool thinks Redmond's snooping operating system is 'malicious'

Updated Webroot's security tools went berserk today, mislabeling key Microsoft Windows system files as malicious and temporarily removing them – knackering countless PCs in the process.…




Northrop Grumman can make a stealth bomber – but can't protect its workers' W-2 tax forms

Mon, 24 Apr 2017 22:08:02 GMT

'Stolen creds' used to swipe data on aerospace giant's staff

Northrop Grumman has admitted one of its internal portals was broken into, exposing employees' sensitive tax records to miscreants.…




Alert: If you're running SquirrelMail, Sendmail... why? And oh yeah, remote code vuln found

Mon, 24 Apr 2017 19:29:15 GMT

This is nuts

Updated Security researchers have uncovered a critical security hole in SquirrelMail, the open-source webmail project.…




We're 'heartbroken' we got caught selling your email records to Uber, says Unroll.me boss

Mon, 24 Apr 2017 19:02:19 GMT

Not sorry we did it – just sorry you're pissed off

Jojo Hedaya, the CEO of email summarizer Unroll.me, has apologized to his users for not telling them clearly enough that they are the product, not his website.…




eBay denies claims it's failing to thwart 'systematic fraud'

Mon, 24 Apr 2017 15:31:27 GMT

Man alleges elaborate scam is slapping money out of online souk's pockets

A campaigner has gone public with his concerns over an alleged scam on eBay.…




Russian hacker arrested in Spain for bot-herding not election-fiddling

Mon, 24 Apr 2017 07:31:07 GMT

Peter Levashov indicted over Kelihos as Russian carder Roman Seleznev cops 27 years

Last week ended badly for Russian hackers.…




Teen charged with 'cyberstalking' in bomb hoax case

Mon, 24 Apr 2017 03:22:03 GMT

Hoaxer kept thumb drive of swatting calls

An 18-year-old dual citizen of the US and Israel has been charged with making a string of online and phone threats against schools and Jewish community centers.…




China 'hacked' South Korea to wreck Star Wars missile shield

Fri, 21 Apr 2017 22:31:09 GMT

FireEye fingers Middle Kingdom infiltration teams

Well-connected security biz FireEye is claiming Chinese hackers are trying to break into South Korea's military to halt the deployment of an anti-ballistic weapons system in the country.…




Doctor Who-inspired proxy transmogrifies politically sensitive web to avoid gov censorship

Fri, 21 Apr 2017 20:38:03 GMT

Slitheen tool smuggles browsers into cyber-Tardis

Computer boffins in Canada are working on anti-censorship software called Slitheen that disguises disallowed web content as government-sanctioned pablum. They intend for it to be used in countries where network connections get scrutinized for forbidden thought.…




LinkedIn U-turns on Bluetooth-enabled 'Tinder for marketers'

Fri, 21 Apr 2017 15:22:08 GMT

Pop-up requested permission to share data with nearby devices even when app not in use

LinkedIn irked privacy advocates by dropping a Bluetooth-enabled "Tinder for marketers" feature into its mobile app on Thursday.…




Peer pressure, not money, lures youngsters into cybercrime – report

Fri, 21 Apr 2017 13:01:12 GMT

Are teenage dreams so hard to beat?

Teenage hackers get mixed up in cybercrime mostly to gain bragging rights over peers rather than to get rich, according to a new study.…




Script kiddies pwn 1000s of Windows boxes using leaked NSA hack tools

Fri, 21 Apr 2017 06:38:08 GMT

Vulnerable unpatched systems expose exploitable SMB networking to world+dog

The NSA's Equation Group hacking tools, leaked last Friday by the Shadow Brokers, have now been used to infect thousands of Windows machines worldwide, we're told.…




Nuh-uh, Google, you WILL hand over emails stored on foreign servers, says US judge

Thu, 20 Apr 2017 22:31:12 GMT

If you can access them in California, so can the Feds

Google has been ordered by a US court to cough up people's private Gmail messages stored overseas – because if that information can be viewed stateside, it is subject to American search warrants, apparently.…




'We should have done better' – the feeble words of a CEO caught using real hospital IT in infosec product demos

Thu, 20 Apr 2017 20:54:24 GMT

Understatement of the month: 'Mistakes were made'

The CEO of computer security biz Tanium has admitted his staff logged into hospital networks and accessed live IT systems during product demos with potential customers.…




Trump's self-imposed cybersecurity deadline is up: What we got?

Thu, 20 Apr 2017 19:42:33 GMT

Quick clue: President Snowflake is a compulsive liar

Analysis On January 6, president-elect Donald Trump had a meeting with the heads of the intelligence services and came out with one action point: cybersecurity.…




Online ad scam launders legions of pirates and pervs into 'legit' surfing

Thu, 20 Apr 2017 16:00:09 GMT

Traffic Alchemist turns base metal into gold

An elaborate online ad scam that disguised junk traffic as views on reputable sites has been costing advertisers as much as $7m per month.…




Mastercard launches card that replaces PIN with fingerprint sensor

Thu, 20 Apr 2017 13:35:09 GMT

Sweet MFA... but there's no documentation available for users

Mastercard has unveiled its new biometric card which adds a fingerprint sensor to the chip as a replacement security measure to the four-digit PIN.…




Flaws found in Linksys routers that could be used to create a botnet

Thu, 20 Apr 2017 13:00:04 GMT

Engineers working on firmware updates

Multiple models of Linksys Smart Wi-Fi Routers have vulnerabilities that might be exploited to create a botnet, security researchers at IOActive warn.…




Microsoft shrugs off report that Edge can expose user identities from JS Fetch requests

Thu, 20 Apr 2017 10:05:05 GMT

La la la nothing to patch here la la la

Updated An independent researcher claims to have uncovered a security flaw in Microsoft Edge.…