The Register

Syndicate content
Biting the hand that feeds IT — sci/tech news and views for the world
Updated: 5 hours 46 min ago

Mini-Heartbleed info leak bug strikes Apache, airborne malware, NSA algo U-turn, and more

11 hours 49 min ago
The security week in review

Roundup  As ever, it's been a doozy of a week for cybersecurity, or lack thereof. The Equifax saga just keeps giving, the SEC admitted it was thoroughly pwned, and Slack doesn't bother to sign its Linux versions. We do spoil you so, Reg readers. And that was only yesterday. Here's the rest of the week's shenanigans we didn't get round to.…

Categories: Security Articles

IT plonker stuffed 'destructive' logic bomb into US Army servers in contract revenge attack

Thu, 2017-09-21 19:34
He's now facing 10 years in prison for act of spite

An IT contractor is facing a possible decade behind bars in America for planting a ticking "destructive" time bomb in US military systems.…

Categories: Security Articles

Slain: Unions' US OPM mega-hack lawsuit against Uncle Sam

Thu, 2017-09-21 13:09
You have to get shafted before you can sue, says court

A lawsuit brought against the hacker-ransacked Office of Personnel Management on behalf of US federal employees has been killed.…

Categories: Security Articles

SEC 'fesses to security breach, says swiped info likely used for dodgy stock-market trading

Thu, 2017-09-21 12:34
EDGAR database a veritable goldmine of financial tips

The US Securities and Exchange Commission (SEC) has admitted that hackers broke into its corporate filling system last year.…

Categories: Security Articles

Researchers claim ISPs are 'complicit' in latest FinSpy snooping rounds

Thu, 2017-09-21 10:31
Dictators' favourite spyware is working at the top, says report

A surveillance campaign utilising a new variant of FinFisher, the infamous spyware also known as FinSpy, has been tracked by security researchers.…

Categories: Security Articles

Equifax fooled again! Blundering credit biz directs hack attack victims to parody site

Thu, 2017-09-21 09:15
Tim on the social media team will need a new job

You'd have thought that Equifax staff would be on their toes ever since the megahack that exposed the private data of over 143 million Americans but the corporation's social media certainly haven't got the message.…

Categories: Security Articles

You lost your ballpoint pen, Slack? Why's your Linux version unsigned?

Thu, 2017-09-21 04:04
No digital signature on hipster collab app means it's easy to make dangerous fakes

Slack is distributing versions of its chatroom app for Linux machines that are not digitally signed, contrary to industry best practice.…

Categories: Security Articles

CCleaner targeted top tech companies in attempt to lift IP

Wed, 2017-09-20 23:04
Infected Avast tool's payload went after the likes of Microsoft, Intel and Cisco, hit 20 targets

Cisco's security limb Talos has probed the malware-laden CCleaner utility that Avast so kindly gave to the world and has concluded its purpose was to create secondary attacks that attempted to penetrate top technology companies. Talos also thinks the malware may have succeeded in delivering a payload to some of those firms targeted.…

Categories: Security Articles

Orland-whoa! Chap cops to masterminding $100m Microsoft piracy racket

Wed, 2017-09-20 17:02
Chinese national pleads guilty to running a massive counterfeiting ring

A Chinese national has admitted he coordinated a massive piracy ring that shifted more than $100m in bootleg Microsoft gear.…

Categories: Security Articles

FedEx: TNT NotPetya infection blew a $300m hole in our numbers

Wed, 2017-09-20 14:25
File-scrambling malware put a bomb under shipping giant's sales growth

FedEx has estimated this year's NotPetya ransomware outbreak cost it $300m in lost business and cleanup costs.…

Categories: Security Articles

IT fraudster facing four years' bird time for $10k blackmail

Wed, 2017-09-20 12:47
Blackmailed former employer, redirected company website for porn portal

An IT contractor who sabotaged a client's website and demanded $10,000 to restore it was this week convicted of wire fraud and sentenced to four years behind bars.…

Categories: Security Articles

Manchester plod still running 1,500 Windows XP machines

Wed, 2017-09-20 07:48
Issue 'endemic' across public sector, shriek experts

Cops in Manchester, England, have 1,518 PCs running on Microsoft's dusty operating system Windows XP, according to a Freedom of Information response.…

Categories: Security Articles

Lloyds Bank payments glitch frustrates merchants

Wed, 2017-09-20 06:48
C'mon, you POS... >:(

Lloyds Bank has admitted that unspecified technical problems affected the operation of its Cardnet payment system on Tuesday. The UK bank denied suggestions that it had suffered a cyber attack.…

Categories: Security Articles

More data lost or stolen in first half of 2017 than the whole of last year

Wed, 2017-09-20 04:58
That's 1.9 BEEELLION records – and just you wait till GDPR

More data records were leaked or stolen by miscreants during the first half of 2017 (1.9 billion) than all of 2016 (1.37 billion).…

Categories: Security Articles

Equifax's disastrous Struts patching blunder: THOUSANDS of other orgs did it too

Wed, 2017-09-20 03:03
Those are just the ones known to have downloaded outdated versions

Thousands of companies may be susceptible to the same type of hack that recently struck Equifax.…

Categories: Security Articles

Inept bloke who tried to sell military sat secrets to Russia gets 5 years

Tue, 2017-09-19 18:12
Bumbling fool not so much Jason Bourne as Johnny English

A contractor who tried to sell trade secrets on military communication satellites to the Russians has been sent down for five years. Incredibly, it could have been longer after prosecutors alleged that he was also planning to kill his wife.…

Categories: Security Articles

Viacom exposes crown jewels to world+dog in AWS S3 bucket blunder

Tue, 2017-09-19 14:59
Passwords, server schematics and encryption keys up for grabs in open file store

Updated  Media monster Viacom has been caught with its security trousers down. Researchers found a wide-open, public-facing misconfigured AWS S3 bucket containing pretty much everything a hacker would need to take down the company's IT systems.…

Categories: Security Articles

What's that, Equifax? Most people expect to be notified of a breach within hours?

Tue, 2017-09-19 04:46
Go on, you're the breach expert

Equifax hasn't found time for a houseclean and is making claims of authority and competence about security breaches that, following its own recent high profile breach, come off as pretty cringeworthy.…

Categories: Security Articles

European Commission proposes more powers for EU's infosec agency

Tue, 2017-09-19 03:11
Cross-border cybersecurity certification scheme planned

The European Commission has proposed an expansion in the role of ENISA, the EU's cybersecurity agency.…

Categories: Security Articles

Pirate Bay digs itself a new hole: Mining alt-coin in slurper browsers

Tue, 2017-09-19 01:02
Would you trade your CPU time and electricity bill for pirated content?

Bittorrent search engine and mortal enemy of intellectual property lawyers, The Pirate Bay, has upset the one group of people that actually likes it: its users.…

Categories: Security Articles