Security News • The Register

Security

Apple warns of arbitrary code execution zero-day being actively exploited on Macs

Remember iPods? The same bug can bite them, and plenty of older iPhones and iPads too

UK Ministry of Defence apologises – again – after another major email blunder in Afghanistan

This time affecting candidates for potential relocation

23 Sep 13:00 | 25

Researchers finger new APT group, FamousSparrow, for hotel attacks

Espionage motive mooted in attacks which hit industry, government too

23 Sep 10:00 | 7

Zoom's $15bn merger with Five9 probed by Uncle Sam for national security risks

Vid-chat giant's ties to China under the microscope by AG-led panel

22 Sep 23:46 | 5

Apple tried to patch this security hole in macOS Finder but didn't consider upper and lowercase characters

file:// is blocked? Oh OK, we'll just use File:// or fiLE://...

22 Sep 23:07 | 30

Lithuania tells its citizens to throw Xiaomi mobile devices in the bin

Baltic state's cyber security centre uncovers remote censorship blocklist function in Mi 10T handset

22 Sep 20:36 | 63

Microsoft Exchange Autodiscover protocol found leaking hundreds of thousands of credentials

Email clients fail over to unexpected domains if they can't find the right resources

22 Sep 13:00 | 48

Break out your emergency change process and patch this ransomware-friendly bug ASAP, says VMware

File upload vuln lets miscreants hijack vCenter Server

22 Sep 00:45 | 8

Database containing personal info on 106m people who traveled to Thailand found open to the internet – report

Misconfigured Elasticsearch server blamed

21 Sep 23:36 | 5

Suex to be you: Feds sanction cryptocurrency exchange for handling payments from 8+ ransomware variants

Russia-based biz targeted in Uncle Sam's crack down on cyber-extortion

21 Sep 19:59 | 8

Fix network printing or keep Windows secure? Admins would rather disable PrintNightmare patch

'Our >3,000 customers had to print again'

21 Sep 13:00 | 50

UK Ministry of Defence apologises after Afghan interpreters' personal data exposed in email blunder

We joke about lethal consequences of failure but this isn't funny

21 Sep 11:30 | 58

Mafia works remotely, too, it seems: 100+ people suspected of phishing, SIM swapping, email fraud cuffed

Dare we say, these Euro cops ran mobprobe

21 Sep 05:16 | 10

You’ve trained at the cutting edge, here’s how to keep your DFIR skills razor sharp

Sometimes the most important tool is a bookmark

Apache OpenOffice can be hijacked by malicious documents, fix still in beta

If you need another reason to try an alternative software suite

20 Sep 20:52 | 34

Ransomware recovery: Start getting back up before you’re even hit

Here’s how to put your plan together

Tick, tick, tick … TikTok China just limited kids to 40 minutes' use each day

And added a bug bounty program to detect any holes in its 'youth mode'

20 Sep 01:14 | 25

Yes, of course there's now malware for Windows Subsystem for Linux

Once dismissed proof-of-concept attack on Microsoft OS through WSL detected in the wild

17 Sep 22:06 | 57

Something phishy: Tech recruiters jabbed by fake COVID-19 Passport scam

Tells clients it is tackling the issue

17 Sep 16:42 | 15

Is it OK to use stolen data? What if it's scientific research in the public interest?

Not always, but Swiss team says you can manage the risks

17 Sep 13:02 | 51

Popular

Microsoft Exchange Autodiscover protocol found leaking hundreds of thousands of credentials

Email clients fail over to unexpected domains if they can't find the right resources

Google emits Chrome 94 with 'Idle Detection' API to detect user inactivity amid opposition

Mozilla, Apple register dismay as worries surface over privacy, potential crypto mining behind user's back

Lithuania tells its citizens to throw Xiaomi mobile devices in the bin

Baltic state's cyber security centre uncovers remote censorship blocklist function in Mi 10T handset

First RISC-V computer chip lands at the European Processor Initiative

EPAC accelerator runs its first 'Hello, World!' in-silico

Navigating without GPS is one thing – so let's jam it and see what happens to our warship

Meaconing, loss of position, and the Royal Navy's response

Apple tried to patch this security hole in macOS Finder but didn't consider upper and lowercase characters

file:// is blocked? Oh OK, we'll just use File:// or fiLE://...

An easier way to Flutter? Custom functions improve visual code builder but devs may still be frustrated

FlutterFlow is a visual application builder for the popular framework

Google experiments with user-choice-defying Android search box

Apple-flavored approach running as test 'for a small percentage of users'

More than three years after last release, X.Org Server 21.1.0 RC1 appears

Back from the brink with new features

Senior IBMer hit with £290k demand from Big Blue in separate case as unfair dismissal claim rolls on

High Court and Employment Tribunal cases to be heard soon

MORE
STORIES

WTF? Microsoft makes fixing deadly OMIGOD flaws on Azure your job

Clouds usually fix this sort of thing before bugs go public. This time it's best to assume you need to do this yourself

17 Sep 04:58 | 32

Aviation-themed phishing campaign pushed off-the-shelf RATs into inboxes for 5 years

Not all promises of international flight itineraries are real, warns Cisco Talos

16 Sep 20:35 | 2

Hack yourself before someone else does it for you

Breach and attack simulation tools help you raise your game, Keysight says

Ransomware-hit law firm secures High Court judgment against unknown criminals

You tell 'em, 4 New Square chambers

16 Sep 15:15 | 31

Computer and data scientists should be as highly regarded as 'warriors' says top UK cybergeneral

Translation: Skills shortage here!

16 Sep 12:14 | 42

De-identify, re-identify: Anonymised data's dirty little secret

Jeffrey Singh, stamp-collecting bachelor (35) of Milwaukee, Wisconsin – is that you?

16 Sep 08:28 | 75

It's time to delete that hunter2 password from your Microsoft account, says IT giant

And go passwordless, use auth app, keys, Windows Hello, or codes to login

16 Sep 05:58 | 76

This is AUKUS for China – US, UK, Australia reveal defence tech-sharing pact

Will build nuke-powered subs together and share cyber, AI, quantum and mysterious 'undersea capabilities' tech

16 Sep 03:27 | 135

Ransomware crims saying 'We'll burn your data if you get a negotiator' can't be legally paid off anyway

Grief Corp are already under US sanctions, says Emsisoft

15 Sep 11:33 | 60

Ex-US intel, military trio were cyber-mercenaries for UAE, say prosecutors

Three men charged with breaking export, security laws, agree to deal after infiltrating smartphones with zero-click exploits

15 Sep 06:45 | 22

Microsoft's end-of-summer software security cleanse crushes more than 80 bugs

Hole in Azure Linux guest agent, MSHTML exploit tackled, and much more – Plus: Adobe and SAP issue updates

15 Sep 00:00 | 3

Krita art app users targeted by ransomware posing as paid 'collaboration' opportunities

Artists advised to delete emails asking them to download 'media bundle'

14 Sep 19:27 | 2

Security bods boost Apple iPhone hardware attack research with iTimed toolkit

'The first complete infrastructure to enable general-purpose hardware security experiments on the Apple iPhone SoCs,' they claim

Brits open doors for tech-enabled fraudsters because they 'don't want to seem rude'

Impersonation scams and smishing rocket, say UK Finance and Which?

14 Sep 15:15 | 24

Thousands of internet-connected databases contain high or critical CVEs, says report by cloud security biz

Put your data on someone else's computer to keep it safe, urges Imperva

14 Sep 11:30 | 14

ExpressVPN bought for $1bn by Brit biz with an intriguing history in adware

'Kape has moved on from those times'

14 Sep 07:39 | 23

ABOUT US

MORE CONTENT

SITUATION PUBLISHING

The Register - Independent news and views for the tech community. Part of Situation Publishing

SIGN UP TO OUR DAILY NEWSLETTER

Biting the hand that feeds IT © 1998–2021

Do not sell my personal information Cookies Privacy Ts&Cs