Security
Won't somebody please think of the children!!! UK to mount fresh assault on end-to-end encryption in Facebook
Change the record, nobody's fooled by this now
19 Apr 18:45 | 2
Security
Security
Codecov dev tool warns of stolen credentials from compromised script, undiscovered for two months
Environment variables full of secrets uploaded to attacker server
19 Apr 16:03 | 1
In Brief
Sysadmin for FIN7 criminal cracking group gets 10 years in US prison for managing card slurping malware scam
Plus Pwn2Own faces fire and update Chrome immediately
19 Apr 14:15 | 1
Comment
Brit authorities could legally do an FBI and scrub malware from compromised boxen without your knowledge
Would move for The Greater Good™ actually be good, though?
19 Apr 09:39 | 28
Security
Pakistan cut off Facebook, Twitter, WhatsApp, and Telegram – for just four hours
To stop protests by far-right party that wants France’s ambassador expelled
19 Apr 05:58 | 6
Security
Russian infosec firm Positive Technologies trying to stay positive after US sanctions
Company insists it's a legit operator that's here to help
16 Apr 17:25 | 1
Security
Microsoft received almost 25,000 requests for consumer data from law enforcement over the past six months
25% were rejected, and it's less than 2013's figure... but be wary of what Redmond does with your information
16 Apr 14:41 | 13
Security
Watchdog thinks Google tricked Australians into giving up data, sues. Judge semi-agrees
Filing reveals: Google staff called meeting over data privacy issues the 'Oh Shit' meeting
16 Apr 11:30 | 38
Security
Mobile app security standard for IoT, VPNs proposed by group backed by Big Tech
ioXt Alliance aims to bring 'transparency and visibility'
15 Apr 21:42 | 10
Security
It was Russia wot did it: SolarWinds hack was done by Kremlin's APT29 crew, say UK and US
And Positive Technologies has been slapped with American sanctions
15 Apr 15:49 | 60
Security
University of Hertfordshire pulls the plug on, well, everything after cyber attack
Another UK institution topples at the hands of miscreants
15 Apr 15:04 | 50
Security
Is it still possible to run malware in a browser using JavaScript and Rowhammer? Yes, yes it is (slowly)
Firefox 'fully compromised' in 15 minutes via SMASH attack
15 Apr 00:18 | 10
Security
Nigerian email scammer sent down for 40 months in the US, ordered to pay back $2.7m to victims
Among the victims: the United Nations
14 Apr 22:32 | 18
Security
Report: Aussie biz Azimuth cracked San Bernardino shooter’s iPhone, ending Apple-FBI privacy standoff
Mozilla-authored code in iOS exploited, since patched, it is claimed
14 Apr 21:37 | 26
Updated
What the FLoC? Browser makers queue up to decry Google's latest ad-targeting initiative as invasive tracking
'Federated Learning of Cohorts' groups users together and is already being tested in Chrome
14 Apr 19:33 | 33
Security
Chrome and Chromium updated after yet another exploit is found in browser's V8 JavaScript engine
JS component seems to be focus of researchers and miscreants alike
14 Apr 17:02 | 7
Security
Spy agency GCHQ told me Gmail's more secure than Microsoft 365, insists British MP as facepalming security bods tell him to zip it
Keep using the provided tools, NCSC says
14 Apr 09:16 | 113
Security
FBI deletes web shells from hundreds of compromised Microsoft Exchange servers before alerting admins
Remote-control malware wiped, deployments must still be patched
14 Apr 02:26 | 74
Security
Google Sites blight: Over 100,000 web pages for business form searches overrun with backdoor RATs
eSentire warns of remote-access trojans masquerading as PDFs
14 Apr 01:22 | 8
Security
1Password targets developers with Secrets Automation, acquisition of SecretHub
Existing users covered until 2022
13 Apr 20:53 | 2
Popular
Who, me?
You want a reboot? I'll give you a reboot! Happy now?
Two windows, one tetchy techie – what could possibly go wrong?
OSes
Linus Torvalds reluctantly issues one more release candidate for Linux kernel 5.12
We gotta do this again? Really? Oh, alright then. But this eight release candidates thing is not great
Software
Debian devs decide best response to Richard Stallman controversy is … nothing
Two-week vote dismissed options to back or sack controversial FOSS figure
Comment
Brit authorities could legally do an FBI and scrub malware from compromised boxen without your knowledge
Would move for The Greater Good™ actually be good, though?
Science
On a dusty red planet almost 290 million km away... NASA's Ingenuity Mars Helicopter flies
NASA’s JPL lab speaks to The Reg
Security
Pakistan cut off Facebook, Twitter, WhatsApp, and Telegram – for just four hours
To stop protests by far-right party that wants France’s ambassador expelled
Software
Adobe co-founder and PostScript co-creator Charles Geschke dies, aged 81
Mathematician and massive figure in digital publishing lives on in every PDF
Networks
India appoints ‘IP Guru’ to push nation towards IPv6
Three-pronged adoption drive includes cut-price courseware
Networks
Huawei could have snooped on the Dutch prime minister's phone calls thanks to KPN network core access
Nobody caught – er, held us responsible, says Chinese firm
Column
Truth and consequences for enterprise AI as EU know who goes legal: GDPR of everything from chatbots to machine learning
Regulations On A European Approach For Artificial Intelligence
STORIES
Patch Tuesday
NSA helps out Microsoft with critical Exchange Server vulnerability disclosures in an April shower of patches
100+ fixes for the Windows world – plus holes in SAP, Adobe, FreeBSD, etc
13 Apr 19:47 | 21
Security
Cracked copies of Microsoft Office and Adobe Photoshop steal your session cookies, browser history, crypto-coins
It's like the 2000s all over again, sighs Bitdefender
13 Apr 17:12 | 41
Security
Average convicted British computer criminal is young, male, not highly skilled, researcher finds
Analysis of Computer Misuse Act cases also draws heavily on El Reg archives
13 Apr 09:27 | 78
Promo
Want to turbo-charge your cybersec skills? It’s time to put yourself on the SPOT
That’s Self-Paced Online Training, says SANS Institute
13 Apr 02:00 |
Security
Mike Lynch-backed Darktrace to file for London IPO in aftermath of Deliveroo flop
LSE document confirms AI infosec company's plans
12 Apr 16:15 | 11
Security
Stuxnet sibling theory surges after Iran says nuke facility shut down by electrical fault
Evidence is thin, but Natanz enrichment facility is offline
12 Apr 06:57 | 33
Security
United States' plan to beat China includes dominating tech standards groups – especially for 5G
'Strategic Competition Act' calls for appointment of a new ambassador-at-large for tech
12 Apr 01:40 | 35
Security
Texan's alleged Amazon bombing effort fizzles: Militia man wanted to take out 'about 70 per cent of the internet'
Someone hasn't heard of redundancy
09 Apr 21:57 | 131
Security
UK's National Cyber Security Centre recommends password generation idea suggested by El Reg commenter
Who says everything below the line is a cesspit of useless filth?
09 Apr 15:58 | 146
Security
CyberBattleSim: Microsoft's open-source Holodeck in which autonomous attackers, defenders battle it out
Very 2021 to have AI bots fight in simulated networks for our entertainment (and science)
09 Apr 11:06 | 2
Security
How do we stamp out the ransomware business model? Ban insurance payouts for one, says ex-GCHQ director
New laws needed to cut off incentive to crooks, argues Marcus Willett
09 Apr 10:02 | 113
Security
India uses controversial Aadhaar facial biometrics to identify COVID vaccination recipients
Safer than eyeballs or fingerprints, apparently
09 Apr 05:01 | 2
Security
Belgian police seize 28 tons of cocaine after 'cracking' Sky ECC's chat app encryption
Euro cops take $1.65bn of blow off the streets after poring over messages
08 Apr 10:39 | 84
Webcast
There’s a whole wide world of web application firewall options – so how do you choose the right one?
Take the heat out of your firewall deployment
08 Apr 07:30 |
Video
Indian defense chief admits China’s cyber-weapons would ‘disrupt large number of systems’ whenever Beijing presses the button
Working to improve 'cyberwalls', but for now swift recovery is main strategy
08 Apr 04:14 | 14
Security
Another supply-chain attack? Android maker Gigaset injects malware into victims' phones via poisoned update
Software nasty also 'persists after a factory reset'
07 Apr 20:11 | 12
Security
Update on PHP source code compromise: User database leak suspected
Possible culprit: Ancient code running in production. A vuln 'would not be terribly surprising' says maintainer
07 Apr 14:38 | 27
Security
Cybercrooks targeting UK organisations started 2020 strong only for attacks to wither away by Christmas
Aww, did the big bad criminals get a little lockdown burnout too?
07 Apr 13:58 | 7
Security
Atheists appeal to higher power for intercession over alleged sins against privacy
Membership data row ascends to desk of California attorney-general
07 Apr 06:58 | 42
