Security
Frustrated dev drops three zero-day vulns affecting Apple iOS 15 after six-month wait
Security Bounty program slammed over 'broken promises'
24 Sep 19:43 | 12
Security
Security
Stop worrying that crims could break the 'net, say cyber-diplomats – only nations have tried
Global Commission on the Stability of Cyberspace is a bit miffed its 'Don't attack the internet core' norm is misunderstood
24 Sep 07:28 | 9
Security
Apple warns of arbitrary code execution zero-day being actively exploited on Macs
Remember iPods? The same bug can bite them, and plenty of older iPhones and iPads too
24 Sep 05:01 | 10
Security
UK Ministry of Defence apologises – again – after another major email blunder in Afghanistan
This time affecting candidates for potential relocation
23 Sep 13:00 | 34
Security
Researchers finger new APT group, FamousSparrow, for hotel attacks
Espionage motive mooted in attacks which hit industry, government too
23 Sep 10:00 | 8
Security
Zoom's $15bn merger with Five9 probed by Uncle Sam for national security risks
Vid-chat giant's ties to China under the microscope by AG-led panel
22 Sep 23:46 | 7
Security
Apple tried to patch this security hole in macOS Finder but didn't consider upper and lowercase characters
file:// is blocked? Oh OK, we'll just use File:// or fiLE://...
22 Sep 23:07 | 34
Updated
Lithuania tells its citizens to throw Xiaomi mobile devices in the bin
Baltic state's cyber security centre uncovers remote censorship blocklist function in Mi 10T handset
22 Sep 20:36 | 63
Security
Microsoft Exchange Autodiscover protocol found leaking hundreds of thousands of credentials
Email clients fail over to unexpected domains if they can't find the right resources
22 Sep 13:00 | 57
Update
Break out your emergency change process and patch this ransomware-friendly bug ASAP, says VMware
File upload vuln lets miscreants hijack vCenter Server - and is being exploited in the wild
22 Sep 00:45 | 8
Security
Database containing personal info on 106m people who traveled to Thailand found open to the internet – report
Misconfigured Elasticsearch server blamed
21 Sep 23:36 | 5
Security
Suex to be you: Feds sanction cryptocurrency exchange for handling payments from 8+ ransomware variants
Russia-based biz targeted in Uncle Sam's crack down on cyber-extortion
21 Sep 19:59 | 8
Security
Fix network printing or keep Windows secure? Admins would rather disable PrintNightmare patch
'Our >3,000 customers had to print again'
21 Sep 13:00 | 51
Security
UK Ministry of Defence apologises after Afghan interpreters' personal data exposed in email blunder
We joke about lethal consequences of failure but this isn't funny
21 Sep 11:30 | 58
Security
Mafia works remotely, too, it seems: 100+ people suspected of phishing, SIM swapping, email fraud cuffed
Dare we say, these Euro cops ran mobprobe
21 Sep 05:16 | 10
Sponsored
You’ve trained at the cutting edge, here’s how to keep your DFIR skills razor sharp
Sometimes the most important tool is a bookmark
21 Sep 04:00 |
Security
Apache OpenOffice can be hijacked by malicious documents, fix still in beta
If you need another reason to try an alternative software suite
20 Sep 20:52 | 34
Sponsored
Ransomware recovery: Start getting back up before you’re even hit
Here’s how to put your plan together
20 Sep 17:30 |
Security
Tick, tick, tick … TikTok China just limited kids to 40 minutes' use each day
And added a bug bounty program to detect any holes in its 'youth mode'
20 Sep 01:14 | 25
Updated
Yes, of course there's now malware for Windows Subsystem for Linux
Once dismissed proof-of-concept attack on Microsoft OS through WSL detected in the wild
17 Sep 22:06 | 57
Popular
Security
Frustrated dev drops three zero-day vulns affecting Apple iOS 15 after six-month wait
Security Bounty program slammed over 'broken promises'
Boatnotes II
'Nobody in their right mind would build a naval base here today': Navigating in and out of Devonport
Twisting and turning like a twisty-turny thing
Security
Apple warns of arbitrary code execution zero-day being actively exploited on Macs
Remember iPods? The same bug can bite them, and plenty of older iPhones and iPads too
Updated
One-size-fits-all chargers? What a great idea! Of course Apple would hate it
Cupertino thinks EU USB-C plan 'stifles innovation rather than encouraging it'
Review
CutefishOS: Unix-y development model? Check. macOS aesthetic? Check (if you like that sort of thing)
Also a range of homegrown apps. Still in beta, so plenty of rough edges, though
On Call
Check your bits: What to do when Unix decides to make a hash of your bill printouts
Symbol shenanigans turned out to be the least of the government's problems
Episode 17
BOFH: You'll find there's a company asset tag right here, underneath the monstrously heavy arcade machine
Flame purifies all
On-Prem
Dell bids adieu to the era of big acquisitions, concentrates on paying down debt and Michael's new book
Partnerships are our future, says tycoon
Networks
Japanese boffins say they've created plastic optical fibres to reach places that might break glass
Polymers can transmit at 53Gbps without error correction overheads, and could be just the thing for electric cars
OSes
GNOME 41: Slick with heaps of new features for users and devs – but annoyances remain
It'll take time for desktop environment to make its way into Linux distros anyway
STORIES
Security
Something phishy: Tech recruiters jabbed by fake COVID-19 Passport scam
Tells clients it is tackling the issue
17 Sep 16:42 | 15
Security
Is it OK to use stolen data? What if it's scientific research in the public interest?
Not always, but Swiss team says you can manage the risks
17 Sep 13:02 | 51
Security
WTF? Microsoft makes fixing deadly OMIGOD flaws on Azure your job
Clouds usually fix this sort of thing before bugs go public. This time it's best to assume you need to do this yourself
17 Sep 04:58 | 32
Security
Aviation-themed phishing campaign pushed off-the-shelf RATs into inboxes for 5 years
Not all promises of international flight itineraries are real, warns Cisco Talos
16 Sep 20:35 | 2
Sponsored
Hack yourself before someone else does it for you
Breach and attack simulation tools help you raise your game, Keysight says
16 Sep 18:00 |
Security
Ransomware-hit law firm secures High Court judgment against unknown criminals
You tell 'em, 4 New Square chambers
16 Sep 15:15 | 31
DSEI 2021
Computer and data scientists should be as highly regarded as 'warriors' says top UK cybergeneral
Translation: Skills shortage here!
16 Sep 12:14 | 42
Feature
De-identify, re-identify: Anonymised data's dirty little secret
Jeffrey Singh, stamp-collecting bachelor (35) of Milwaukee, Wisconsin – is that you?
16 Sep 08:28 | 76
Security
It's time to delete that hunter2 password from your Microsoft account, says IT giant
And go passwordless, use auth app, keys, Windows Hello, or codes to login
16 Sep 05:58 | 76
Security
This is AUKUS for China – US, UK, Australia reveal defence tech-sharing pact
Will build nuke-powered subs together and share cyber, AI, quantum and mysterious 'undersea capabilities' tech
16 Sep 03:27 | 135
Security
Ransomware crims saying 'We'll burn your data if you get a negotiator' can't be legally paid off anyway
Grief Corp are already under US sanctions, says Emsisoft
15 Sep 11:33 | 60
Security
Ex-US intel, military trio were cyber-mercenaries for UAE, say prosecutors
Three men charged with breaking export, security laws, agree to deal after infiltrating smartphones with zero-click exploits
15 Sep 06:45 | 22
Patch Tuesday
Microsoft's end-of-summer software security cleanse crushes more than 80 bugs
Hole in Azure Linux guest agent, MSHTML exploit tackled, and much more – Plus: Adobe and SAP issue updates
15 Sep 00:00 | 3
Security
Krita art app users targeted by ransomware posing as paid 'collaboration' opportunities
Artists advised to delete emails asking them to download 'media bundle'
14 Sep 19:27 | 2
Security
Security bods boost Apple iPhone hardware attack research with iTimed toolkit
'The first complete infrastructure to enable general-purpose hardware security experiments on the Apple iPhone SoCs,' they claim
14 Sep 16:45 |
Security
Brits open doors for tech-enabled fraudsters because they 'don't want to seem rude'
Impersonation scams and smishing rocket, say UK Finance and Which?
14 Sep 15:15 | 24
