Smash and grab PoS pwners ready with pre-Xmas malware update Cocky devs don't try to hide malware, export credit card numbers as cleartext Security07 Oct 2016 | 7
Google melts 78 Android security holes, two of which were critical Chinese hackers thanked for help finding flaws Software05 Oct 2016 | 32
Wasted: Kaspersky makes jokers of upstart ransomware VXers MarsJoke ransomware tarred and feathered. Security05 Oct 2016 | 1
Happy VXers get 400 enterprise-popping apps hosted on Google Play Up to half a million downloads clocked for one poision app. Applications04 Oct 2016 | 3
Researchers gut EMC's VMAX, vApp with five god mode hack holes 'Complete compromise': DIY admin, or DoS your victim Security04 Oct 2016 | 1
Security analyst says Yahoo!, Dropbox, LinkedIn, Tumblr all popped by same gang Says five-strong 'Group E' may have lifted a billion Yahoo! records, sells to states Security30 Sep 2016 | 8
Tokyo man arrested for selling jailbroken iPhones Allegedly crocked iKit came preloaded with cracked cheater game app Legal30 Sep 2016 | 13
Want to make US$1.5m this weekend? Just jailbreak iOS Zerodium triples iOS exploit bounty to $1.5M, doubles 'droid to $200k Security30 Sep 2016 | 6
Researchers crack Oz Govt medical data in 'easy' attack with PCs White hat efforts show up Govt's proposed laws to criminalise research Security29 Sep 2016 | 14
Google tries to cross out XSS attacks by releasing its own test tool Just about every content security policy does it wrong Security27 Sep 2016 |
Suspected Russian DNC hackers brew Mac trojan Ruskie space program doc used as spear phish payload. Security27 Sep 2016 | 12
Apple to crunch iOS 10 local backup password brute force hole Research finds faster cracking flaw Security26 Sep 2016 | 17
Dev teaches bot to talk spammers' ears off Crims are so keen to chat they respond to random hipsterisms and send legit discount codes Security26 Sep 2016 | 29
Google rushes in where Akamai fears to tread, shields Krebs after world's-worst DDoS 600 Gbps traffic flood overwhelmed CDN Security26 Sep 2016 | 43
Australian Signals Directorate seeks offensive people Pen testers, devs, and other infosec bods with all skills wanted On-Prem26 Sep 2016 | 5
Safe browsing checks fail as 16,000 WordPress sites hacked this year Google's red screen of death marks half of malcious sites, McAfee only 11 per cent Security23 Sep 2016 | 17
Malware figures out it's running on VMs and refuses to execute If a PC has just a couple of Word files, crooks figure it's a White-Hat's attack machine Security23 Sep 2016 | 21
SWIFT warns of more 'sophisticated' attacks, readies anti-fraud tool Haven't hardened? You're still gunna get hacked, says CISO Security22 Sep 2016 | 2
10-second hijack hole could kill any Facebook profile Shame it wasn't used more before Zuck paid $16k to the uni student who found it Security21 Sep 2016 | 6
Hackers claim they breached Aussie point-of-sale tech firm, try to sell 'customer DB' Exclusive Claim to have backdoored supplier to Woolworths' pub chain Security20 Sep 2016 | 12
Microsoft lets Beijing fondle its bits in new source code audit hub New 'Transparency Centre' comes to Asia, more to open in 'coming weeks' Security20 Sep 2016 | 9
Hackers hijack Tesla Model S from afar, while the cars are moving Video Chinese researchers control brakes, lights and mirrors with wireless attack Software20 Sep 2016 | 62
Dark web drug sellers shutter location-tracking EXIF data from photos But 229 didn't Security19 Sep 2016 | 40
Mozilla will patch zero-day Firefox bug to fizzle man-in-the-middle diddle Cert-pinning cockup can be exploited to identify Tor users Security18 Sep 2016 |
Researcher says Patch Tuesday fix should have been made earlier Alleges attack allowing targeted Trojans was known long before Redmond's wranglers roped it Security16 Sep 2016 | 6
Remote hacker nabs Win10 logins in 'won't-fix' Safe Mode* attack *Turns out to be very unsafe mode thanks to this hack Security16 Sep 2016 | 37
Cisco drops patch for nasty WebEx remote code execution hole Patch, then patch this, this, this, this, this, this, this, and this Security16 Sep 2016 | 1
Gutted: 6.6M cleartext creds, dox, breached in ClixSense site hack Account opening ammo goes up for sale. Security15 Sep 2016 | 7
Double-dipping malware steals iOS creds and roots Android Old Apples, modded Androids, most at risk from Chinese DualToy trojan Security15 Sep 2016 | 11
35,000 ARRIS cable modems at risk from firmware dumper bot Backdoor-within-a-backdoor enables significant naughtiness Security15 Sep 2016 | 15
French hackers selling hidden .22 calibre pen guns on secret forums Other nations' crackers deal in code only, but in France things are seriously nasty Security15 Sep 2016 | 43
Logins for US Navy, NASA's JPL among US gov logins sold on deepweb Just US$2132 gets you half a dozen live Navy.mil accounts Security14 Sep 2016 | 4
Top infosec vendors, cops, liberate thousands from ransomware 'No More Ransom' alliance gives users decryption and defence tools Security14 Sep 2016 | 2
Infected Android phones could flood America's 911 with DDoS attacks One killer trojanised app or $100k of hardware is enough. Security13 Sep 2016 | 21
Dropbox apologies for clunky administrator account access on Macs Users kind of, almost told just how deep Dropbox goes into their accounts Security13 Sep 2016 | 11
Israeli Pentagon DDoSers explain their work, get busted by FBI There's not much more than fine print between stress testing and DDoS-as-a-service Security12 Sep 2016 | 18
33 million CLEARTEXT creds for Russian IM site dumped by chap behind Last.FM mess Leaker tells El Reg his dumps are justified because they trigger password resets Security12 Sep 2016 | 14
US-CERT tells network operators to pay attention and harden up Recent exploits and golden oldies are making packets perilous Software09 Sep 2016 | 4
Boffins ID bug behind London's Great Plague of 1665 Yersinia pestis fingered as slayer of 10,000 victims Science09 Sep 2016 | 48
Microsoft wearable makes lazy lardies pay to play on the couch Shake your tail feather or Redmond wrist-job will dip into your pocket Personal Tech09 Sep 2016 | 13
Kaspersky to 1337 haxors: take down our power grid. We dare you Capture the flag romp will offer chance to do the thing governments everywhere fear Security08 Sep 2016 | 24
Ten-year-old Windows Media Player hack is the new black, again Why bother buying a zero-day when casual piracy and old code can p0wn thousands? Security08 Sep 2016 | 44
Mr Chow plates up sticky ransomware Global Chinese restaurant chain serves old recipe of Darkleech with exploit kit sauce Security07 Sep 2016 | 3
Hacker takes down CEO wire transfer scammers, sends their Win 10 creds to the cops HITB 'Whaling' attackers fall for poison PDF 'invoices' Security06 Sep 2016 | 64
Pokémon-loving VXer targets Linux with 'Umbreon' rootkit We told you Pokémon are evil, but no, you wouldn't listen OSes06 Sep 2016 | 11
98.1 million CLEARTEXT passwords pasted as Rambler.ru rumbled 'Яussian Yahoo!' may just have become world's biggest breach Security06 Sep 2016 | 28
Sundown exploit kit authors champions of copy-paste hacking Pay peanuts, get monkeys. Security05 Sep 2016 | 2
Microsoft thought of the children and decided to ban some browsers Redmond's Family Settings now block browsers-without-filters by default, but which ones? Security05 Sep 2016 | 118
Extra Bacon? Yes please, even though the Cisco bug of this name is bad for you Probably-NSA-sourced bug isn't being patched, even by UK government users Security05 Sep 2016 | 11
Google swats Nexus 5X vulnerable fastboot memory dump flaw Hacker stole your phone? Time to OEM panic. Security04 Sep 2016 | 4
Lightspeed PoS vendor breached, sensitive database tapped Vendor: 'We've applied new patches and access controls!' Sys admin: 'Whaddya mean NEW?!' Security02 Sep 2016 | 8
Google crushes 33 Chrome bugs, pays boffins more than $56k Uni kid's turn to shout. Security02 Sep 2016 | 7
L0phtCrack's back! Crack hack app whacks Windows 10 trash hashes Get ready to crack passwords up to 500x times faster Security01 Sep 2016 | 56
Angler's obituary: Super exploit kit was the work of Russia's Lurk group Kaspersky's chief malware sleuth solves the mystery of the doomed exploit juggernaut Security31 Aug 2016 | 5
More banks plundered through SWIFT attacks Shape up, cause the Bangladesh Bank hack is just the start, SWIFT warns Security31 Aug 2016 | 13
OneLogin breached, hacker finds cleartext credential notepads 'Store your firewall password here' notes pillaged Security31 Aug 2016 | 24
Ripper! Boffins find malware thought behind $347k Thai ATM raids Evil EMV card pwns NCR ATMs, sets dispensary to max Security30 Aug 2016 | 10