Security
Laptops given to British schoolkids came preloaded with malware and talked to Russia when booted
Department for Education says 'we believe this is not widespread'
21 Jan 17:32 | 23
Security
Security
Microsoft SolarWinds analysis: Attackers hid inside Windows systems by wearing the skins of legit processes
Thorough counter-detection methods laid bare by Redmond
21 Jan 16:58 | 9
Webcast
Wherever your apps, users and data are heading, is your backup keeping up?
Let’s think about what data management should look like in the future – tune in here next week
20 Jan 17:00 |
Security
Malwarebytes says its Office 365, Azure tenancies invaded by SolarWinds hackers, insists its tools are still safe to use
Points finger at privilege escalation via application rights in Azure AD, which Microsoft says is as designed
20 Jan 14:44 | 7
Security
Slack has entered the Matrix: Element builds a bridge to realm of encrypted, decentralised comms
Element Matrix Services adds to the messaging interoperability toolbox
20 Jan 12:29 | 9
Sponsored
Open banking is the future, so let’s secure the APIs
Equinix levels the playing field for all fintechs
20 Jan 08:30 |
Security
Dnsmasq, used in only a million or more internet-facing devices globally, patches not-so-secret seven spoofing, hijacking flaws
Get your updates when you can for gear from scores of manufacturers
20 Jan 01:49 | 13
Security
FireEye publishes details of SolarWinds hacking techniques, gives out free tool to detect signs of intrusion
Instructions for spotting and keeping suspected Russians out of systems
19 Jan 20:42 | 17
Security
Labour Party urges UK data watchdog to update its Code of Employment Practices to tackle workplace snooping
Key doc hasn't been updated since 2018, warn politicos and trade union
19 Jan 14:21 | 14
Updated
AnyVan confirms digital break-in, says customer names, emails and hashed passwords exposed
Burglary took place 3 months before biz discovered unauthorised entry
19 Jan 08:45 | 20
Security
Scottish Environment Protection Agency refuses to pay ransomware crooks over 1.2GB of stolen data
Which is exactly what you should do
18 Jan 18:35 | 68
Security
Bye bye, said Trump admin to Huawei: You give a cheque-ie to our techies, but there's no licence to ply
And them good ol' boys revokin' sanction to buy, singin', 'Soon will come the day that we fly'
18 Jan 17:00 | 38
In brief
Hallowed Bugtraq infosec list killed then resurrected over the weekend: We heard your feedback, says Accenture
Plus: Watch out for NTFS-corrupting folder, Mimecast hack, and more
18 Jan 07:05 | 8
Updated
Signal boost: Secure chat app is wobbly at the moment. Not surprising after gaining 30m+ users in a week, though
Install base explodes following WhatsApp 'privacy' update, Musk endorsement
15 Jan 19:30 | 122
Security
Coming in at number 5, it's a blast from the past! Tenable's 2020 security flaw chart show features hits of yesteryear
You know that update thing? JFDI
14 Jan 18:37 | 3
Security
Ministry of Defence's cyber warfare drive is helping burn a hole through its budget, warns UK's National Audit Office
All that counter-China stuff costs a pretty penny, y'know
14 Jan 14:56 | 25
Webcast
Is a remote workforce making your organisation less secure?
And can SASE save us?
14 Jan 07:00 |
Security
World’s largest dark-web marketplace shuttered after Euro cybercops cuff Aussie
20 DarkMarket servers seized and probed in international raids
13 Jan 08:26 | 23
Patch Tuesday
Microsoft emits 83 security fixes – and miscreants are already exploiting one of the vulns in Windows Defender
Redmond keeps us hanging with on-premises Exchange flaw still to be fixed
12 Jan 21:11 | 12
Security
SolarWinds malware was sneaked out of the firm's Orion build environment 6 months before anyone realised it was there – report
Crowdstrike tech analysts explain how they think it slipped under the radar
12 Jan 19:35 | 13
Popular
Cloud
On his way out, Trump emits exec order suggesting US cloud giants must verify ID of all foreign customers
Know-your-client demand may just be ignored by incoming Biden admin
Personal Tech
Loser Trump's last financial disclosure docs reveal Tim Cook gave him $5,999 Mac Pro, the 'first' made in Texas
But that's fake news
Software
If my calculations are correct, when Google Chrome hits version 88, you're gonna see some serious... security
Manifest v3 plus JavaScript timer throttling, vuln fixes, FTP killed off, etc
Security
FireEye publishes details of SolarWinds hacking techniques, gives out free tool to detect signs of intrusion
Instructions for spotting and keeping suspected Russians out of systems
Software
Windows Product Activation – or just how many numbers we could get a user to tell us down the telephone
A confession from ex-Microsoft engineer Dave Plummer. Also: WPA fun in the Registry
Analysis
With depressing predictability, FCC boss leaves office with a list of his deeds... and a giant middle finger to America
A last gasp for the era of alternate facts
Personal Tech
Raspberry Pi Foundation moves into microcontrollers with the $4 Pi Pico using homegrown silicon
Dual-core Arm Cortex-M0+ board for hobbyists and power users alike
Security
Malwarebytes says its Office 365, Azure tenancies invaded by SolarWinds hackers, insists its tools are still safe to use
Points finger at privilege escalation via application rights in Azure AD, which Microsoft says is as designed
Security
Dnsmasq, used in only a million or more internet-facing devices globally, patches not-so-secret seven spoofing, hijacking flaws
Get your updates when you can for gear from scores of manufacturers
DevOps
Over long US weekend, GitHub HR boss quit after firing Jewish staffer who warned Nazis were at the Capitol
Microsoft-owned code silo admits 'significant errors of judgment and procedure'
STORIES
Security
Microsoft's beefed-up take on Linux server security has hit general availability
Endpoint Detection and Response added. For servers, not standalone Linux desktops, mind
12 Jan 13:00 | 8
Security
Kaspersky Lab autopsies evidence on SolarWinds hack
In a brave move, Russian firm fingers its own govt as one possible source of cyber badness
12 Jan 06:56 | 21
Security
How I found a bug in YouTube that let me watch private videos I wasn't allowed to, says compsci student
Theft-by-a-thousand-cuts flaw fixed
12 Jan 05:55 | 9
Security
Ubiquiti iniquity: Wi-Fi box slinger warns hackers may have peeked at customers' personal information
Salted password hashes, addresses, phone numbers may have been exposed in cloud security snafu
12 Jan 02:42 | 27
Security
That's it. It's over. It's really over. From today, Adobe Flash Player no longer works. We're free. We can just leave
Post-Flashpocalypse, we stumble outside, hoping no one ever creates software as insecure as that ever again
12 Jan 01:41 | 141
Security
Thou shalt not hack indiscriminately, High Court of England tells Britain's spy agencies
Choke chain tightened on 'general warrants' after Privacy International wins judicial review
11 Jan 16:16 | 32
Security
Unauthorised RAC staffer harvested customer details then sold them to accident claims management company
8-month suspended sentence for conspiracy to secure unauthorised access to computer data
11 Jan 14:45 | 46
In Brief
SolarWinds takes a leaf out of Zoom's book, hires A-Team of Stamos and Krebs to sort out its security woes
The week's other security news
11 Jan 12:36 | 9
Security
US courts system fears SolarWinds snafu could have let state hackers poke about in sealed case documents
Problems for charging spies in future? Probably not, says ex-NCSC chief
08 Jan 19:30 | 15
Security
Red Hat snaps up Kubernetes security specialist StackRox
Onward to OpenShift
08 Jan 16:30 |
Security
How good are you at scoring security vulnerabilities, really? Boffins seek infosec pros to take rating skill survey
Real-world CVSS figures are a little variable, or so these folks reckon
08 Jan 09:30 | 10
Security
Intel wheels out new face authentication product that works a lot like Apple's FaceID
Chipzilla joins facial-recog race
07 Jan 15:45 | 9
Analysis
What happens when a Chrome extension with 2m+ users changes hands, raises red flags, doesn't document updates? Let's find out
Oh yes, I'm the Great Suspender, pretending I'm doing well
07 Jan 07:55 | 35
Security
JetBrains' build automation software eyed as possible enabler of SolarWinds hack
Maker of developer tools says it played no role in the attack, hasn't heard from investigators
07 Jan 05:53 | 18
Updated
United States Congress stormed by violent followers of defeated president, Biden win confirmation halted
Images of evacuated and invaded offices, Senate PCs still left switched on shared online
06 Jan 21:38 | 303
Webcast
Are security and connectivity on your 2021 to do list, yes? Here’s what to do first
With Fortinet, we'll help you weigh up your SASE options
06 Jan 18:00 |
Security
Trump administration bans eight Chinese apps
Alipay, WeChat and friends ‘threaten national security, foreign policy, and economy of the United States’
06 Jan 04:57 | 17
Security
Ah, right on time: Hacker-slammed SolarWinds sued by angry shareholders
Plus: US intelligence names and shames Russia as probable culprit
05 Jan 23:03 | 27
Security
Blackberry Cylance's consumer antivirus product won't work with macOS Big Sur until end of January
Only three months after latest OS version released
05 Jan 21:25 | 12
