Maritime comms flaws exposed: It's OK cuz we canned it, says vendor AmosConnect v8 vulnerable to 'blind SQL injection' Security26 Oct 2017 | 7
Smart? Don't ThinQ so! Hacked robo-vacuum could spy on your home Security researchers dismantle LG's IoT appliance range Security26 Oct 2017 | 14
Hop on, Average Rabbit: Latest extortionware menace flopped The buck stops... somewhere in Ukraine, Turkey, Japan? Security26 Oct 2017 | 18
Panic of Panama Papers-style revelations follows Bermuda law firm hack Cue incredibly wealthy people calling their PRs Security25 Oct 2017 | 30
Watership downtime: BadRabbit encrypts Russian media, Ukraine transport hub PCs Updated Ransomware breeds through Windows networks via SMB, fake Flash Security24 Oct 2017 | 47
UK financial regulator confirms it is probing Equifax mega-breach Watchdog could ban firm from operating in the country Security24 Oct 2017 | 29
Legacy kit, no antivirus, weak crypto. Yep. They're talking critical industrial networks Report shows they're ripe targets for hackers Security24 Oct 2017 | 19
ROCA 'round the lock: Gemalto says IDPrime .NET access cards bitten by TPM RSA key gremlin Here's what to do if you have an affected badge Security23 Oct 2017 | 2
'We've nothing to hide': Kaspersky Lab offers to open up source code Response to US fretting over alleged ties to Russian snoops Security23 Oct 2017 | 33
Sarahah anonymous feedback app told: 'You're riddled with web app flaws' I'm... going to sit down and think about that. *Sniff* Security23 Oct 2017 | 14
Do fear the Reaper: Huge army of webcams, routers raised from 'one million' hacked orgs Check your cameras, broadband gateways, NAS boxes for latest botnet malware Edge + IoT20 Oct 2017 | 48
Make America late again: US 'lags' China in IT security bug reporting Mind the gap Security20 Oct 2017 | 7
YouTube sin-bins account of KRACK WPA2 researcher Only to be mysteriously restored hours later Security19 Oct 2017 | 25
Hackers can track, spoof locations and listen in on kids' smartwatches Norwegian project exposes worrying lack of security Security18 Oct 2017 | 19
BoundHook: Microsoft downplays Windows systems exploit technique It's just not a security vulnerability, says Redmond Security18 Oct 2017 | 11
uBlock Origin ad-blocker knocked for blocking hack attack squawking Block all the things! No, wait, not the XSS security alerts Security17 Oct 2017 | 57
Never mind the WPA2 drama... Details emerge of TPM key cockup that hits tonnes of devices About a third of all crypto modules globally generate weak, crackable RSA pairs Security16 Oct 2017 | 23
Brit intel fingers Iran for brute-force attacks on UK.gov email accounts Russia, you're off the hook Security16 Oct 2017 | 19
WPA2 KRACK attack smacks Wi-Fi security: Fundamental crypto crapto Updated Key handshake shakedown Security16 Oct 2017 | 121
Android ransomware DoubleLocker encrypts data and changes PINs Nasty activated by home button unless device gets factory reset Security13 Oct 2017 | 52
More and more websites are mining crypto-coins in your browser to pay their bills, line pockets Updated No, Chrome isn't slowing down – you're just silently digging up cyber-cash Security13 Oct 2017 | 62
OnePlus privacy shock: So, the cool Chinese smartphones slurp an alarming amount of data Are we shocked? *Cough* Google, Apple *Cough* Personal Tech12 Oct 2017 | 77
UK Treasury Committee chairman calls on Equifax to answer for breach omnishambles 'People have been left in the dark for too long' Security12 Oct 2017 | 29
North Korean hackers allegedly probing US utilities for weaknesses Spear phishing emails thought to be affiliated with Pyongyang sent to electricity firms Security11 Oct 2017 | 12
When Irish data's leaking: Supermarket shoppers urged to check bank statements SuperValu breached after cyber attack at mega-retailer Security11 Oct 2017 | 10
Hackers in Arab world collaborate more than hoodie-clad Westerners Ideological unity drives 'spirit of sharing' in crimeware market Security10 Oct 2017 | 5
Brit bank fined £75k over 1.5 million text and email spamhammer And London advertising firm spanked for similar campaign Legal10 Oct 2017 | 20
Overdraft-fiddling hackers cost banks in Eastern Europe $100m Mules open forged accounts, crooks clear them out from foreign ATMs Security10 Oct 2017 | 13
Real Mad-quid: Murky cryptojacking menace that smacked Ronaldo site grows They’re taking our processor cycles Security10 Oct 2017 | 18
Fending off cyber attacks as important as combatting terrorism, says new GCHQ chief Director Jeremy Fleming sets out priorities for intel agency Security09 Oct 2017 | 27
Video games used to be an escape. Now not even they are safe from ads VB2017 Devs seduced by the dark arts of data collection and product placement Security09 Oct 2017 | 98
Avast urges devs to secure toolchains after hacked build box led to CCleaner disaster VB2017 Timeline of compromise goes back to April Security06 Oct 2017 | 23
Hey, IoT vendors. When a paediatric nurse tells you to fix security, you definitely screwed up VB2017 Jelena Milosevic says what we're all thinking Edge + IoT05 Oct 2017 | 33
Spy vs spy vs hacker vs... who is THAT? Everyone's hacking each other VB2017 And it's making threat intel much, much harder, say researchers Security05 Oct 2017 | 22
Bulletproof hosts stay online by operating out of disputed backwaters VB2017 Russian Business Network alumni still very much in business, research suggests Security05 Oct 2017 | 6
Un-Delled SonicWall beefs up firewall to wrestle ransomware Newly-freed security vendor thinks it can drag users into cloudy security analytics Security03 Oct 2017 | 8
UK lotto players quids in: Website knocked offline by DDoS attack It could be you* Security02 Oct 2017 | 57
Apple Mac fans told: Something smells EFI in your firmware Fully up to date for OS and apps, but there's a hidden hack threat Security29 Sep 2017 | 58
Dildon'ts of Bluetooth: Pen test boffins sniff out Berlin's smart butt plugs You've heard of wardriving – say hello to screwdriving Security29 Sep 2017 | 61
Ouch: Brit council still staggering weeks after ransomware bit its PCs 'Unable to process planning applications and land searches' Security29 Sep 2017 | 30
Patch alert! Easy-to-exploit flaw in Linux kernel rated 'high risk' Urgent security triage needed OSes28 Sep 2017 | 55
Microsoft downplays alarm over Windows Defender 'flaw' Says you'd hafta click through a *boatload* of warnings Security28 Sep 2017 | 39
Equifax CEO falls on his sword weeks after credit biz admits mega-breach Well, what else could he do? Security26 Sep 2017 | 43
Mobile stock trading apps riddled with security holes Did someone just nick your shares? Security26 Sep 2017 | 9
Sensitive client emails, usernames, passwords exposed in Deloitte hack Oops, did someone forget to turn on 2FA? Security25 Sep 2017 | 25
Insteon and Wink home hubs appear to have a problem with encryption Which is to say neither do it Security25 Sep 2017 | 10
IoT botnet Linux.ProxyM turns its grubby claws to spam rather than DDoS I don't know which is worse Security22 Sep 2017 | 14
Finance sector is littered with vulns, and guess what – most can be resolved by patching But pen-testers have questioned the figures Security22 Sep 2017 | 11
Mini-Heartbleed info leak bug strikes Apache, airborne malware, NSA algo U-turn, and more Roundup The security week in review Security22 Sep 2017 | 9
Nothing to see here, folks, literally... Citrix mysteriously pulls NetScaler downloads Builds yanked offline for a week in bug riddle Networks21 Sep 2017 | 9
SEC 'fesses to security breach, says swiped info likely used for dodgy stock-market trading EDGAR database a veritable goldmine of financial tips Security21 Sep 2017 | 11
Researchers claim ISPs are 'complicit' in latest FinSpy snooping rounds Dictators' favourite spyware is working at the top, says report Security21 Sep 2017 | 22
You lost your ballpoint pen, Slack? Why's your Linux version unsigned? No digital signature on hipster collab app means it's easy to make dangerous fakes OSes21 Sep 2017 | 39
FedEx: TNT NotPetya infection blew a $300m hole in our numbers File-scrambling malware put a bomb under shipping giant's sales growth Security20 Sep 2017 | 15
More data lost or stolen in first half of 2017 than the whole of last year That's 1.9 BEEELLION records – and just you wait till GDPR Security20 Sep 2017 | 15
Equifax's disastrous Struts patching blunder: THOUSANDS of other orgs did it too Those are just the ones known to have downloaded outdated versions Security20 Sep 2017 | 65
What's that, Equifax? Most people expect to be notified of a breach within hours? Go on, you're the breach expert Security19 Sep 2017 | 74
European Commission proposes more powers for EU's infosec agency Cross-border cybersecurity certification scheme planned Security19 Sep 2017 | 13
Someone checked and, yup, you can still hijack Gmail, Bitcoin wallets etc via dirty SS7 tricks Two-factor authentication by SMS? More like SOS Security18 Sep 2017 | 16