Security
Russian infosec firm Positive Technologies trying to stay positive after US sanctions
Company insists it's a legit operator that's here to help
16 Apr 17:25 |
Security
Security
Microsoft received almost 25,000 requests for consumer data from law enforcement over the past six months
25% were rejected, and it's less than 2013's figure... but be wary of what Redmond does with your information
16 Apr 14:41 | 11
Security
Watchdog thinks Google tricked Australians into giving up data, sues. Judge semi-agrees
Filing reveals: Google staff called meeting over data privacy issues the 'Oh Shit' meeting
16 Apr 11:30 | 29
Security
Mobile app security standard for IoT, VPNs proposed by group backed by Big Tech
ioXt Alliance aims to bring 'transparency and visibility'
15 Apr 21:42 | 9
Security
It was Russia wot did it: SolarWinds hack was done by Kremlin's APT29 crew, say UK and US
And Positive Technologies has been slapped with American sanctions
15 Apr 15:49 | 49
Security
University of Hertfordshire pulls the plug on, well, everything after cyber attack
Another UK institution topples at the hands of miscreants
15 Apr 15:04 | 46
Security
Is it still possible to run malware in a browser using JavaScript and Rowhammer? Yes, yes it is (slowly)
Firefox 'fully compromised' in 15 minutes via SMASH attack
15 Apr 00:18 | 10
Security
Nigerian email scammer sent down for 40 months in the US, ordered to pay back $2.7m to victims
Among the victims: the United Nations
14 Apr 22:32 | 18
Security
Report: Aussie biz Azimuth cracked San Bernardino shooter’s iPhone, ending Apple-FBI privacy standoff
Mozilla-authored code in iOS exploited, since patched, it is claimed
14 Apr 21:37 | 25
Updated
What the FLoC? Browser makers queue up to decry Google's latest ad-targeting initiative as invasive tracking
'Federated Learning of Cohorts' groups users together and is already being tested in Chrome
14 Apr 19:33 | 33
Security
Chrome and Chromium updated after yet another exploit is found in browser's V8 JavaScript engine
JS component seems to be focus of researchers and miscreants alike
14 Apr 17:02 | 7
Security
Spy agency GCHQ told me Gmail's more secure than Microsoft 365, insists British MP as facepalming security bods tell him to zip it
Keep using the provided tools, NCSC says
14 Apr 09:16 | 110
Security
FBI deletes web shells from hundreds of compromised Microsoft Exchange servers before alerting admins
Remote-control malware wiped, deployments must still be patched
14 Apr 02:26 | 74
Security
Google Sites blight: Over 100,000 web pages for business form searches overrun with backdoor RATs
eSentire warns of remote-access trojans masquerading as PDFs
14 Apr 01:22 | 8
Security
1Password targets developers with Secrets Automation, acquisition of SecretHub
Existing users covered until 2022
13 Apr 20:53 | 2
Patch Tuesday
NSA helps out Microsoft with critical Exchange Server vulnerability disclosures in an April shower of patches
100+ fixes for the Windows world – plus holes in SAP, Adobe, FreeBSD, etc
13 Apr 19:47 | 21
Security
Cracked copies of Microsoft Office and Adobe Photoshop steal your session cookies, browser history, crypto-coins
It's like the 2000s all over again, sighs Bitdefender
13 Apr 17:12 | 40
Security
Average convicted British computer criminal is young, male, not highly skilled, researcher finds
Analysis of Computer Misuse Act cases also draws heavily on El Reg archives
13 Apr 09:27 | 78
Promo
Want to turbo-charge your cybersec skills? It’s time to put yourself on the SPOT
That’s Self-Paced Online Training, says SANS Institute
13 Apr 02:00 |
Security
Mike Lynch-backed Darktrace to file for London IPO in aftermath of Deliveroo flop
LSE document confirms AI infosec company's plans
12 Apr 16:15 | 11
Popular
Legal
Docking £500k commission from top SAS salesman was perfectly legal, rules judge
Chap brought in $27m deal – so bosses withheld two-thirds of his pay
Software
Ever wondered what it's like working for Microsoft? Leaked survey shines a light on how those at the code coalface feel
Lowest scoring sections were 'performance' and 'deal', but it looks like it could be a lot worse
On Call
To have one floppy failure is unlucky. To have 20 implies evil magic or a very silly user
Not quite what we meant by 'disk capacity'
Security
It was Russia wot did it: SolarWinds hack was done by Kremlin's APT29 crew, say UK and US
And Positive Technologies has been slapped with American sanctions
Databases
Google proposes Logica data language for building more manageable SQL code
COBOL-inspired caps lock English just don't add up when dealing with large SQL codebases
Security
University of Hertfordshire pulls the plug on, well, everything after cyber attack
Another UK institution topples at the hands of miscreants
OSes
Zorin OS 16 beta claims largest built-in app library 'of any open source desktop ever'
Linux for Windows switchers: smooth user experience, if users steer clear of Windows apps on Wine
Bootnotes
Pigeon fanciers in a flap over Brexit quarantine flock-up, seek exemption from EU laws
It won't fly. 'We are collateral damage'
Storage
Microsoft OneDrive for Windows 7 drives off a cliff for business users
Accidental borkage ... or a not-so-subtle hint that it really is time to move on?
Something for the Weekend, Sir?
How not to apply for a new job: Apply for it on a job site
Watch as I channel my digital Yosser Hughes, violence included
STORIES
Security
Stuxnet sibling theory surges after Iran says nuke facility shut down by electrical fault
Evidence is thin, but Natanz enrichment facility is offline
12 Apr 06:57 | 29
Security
United States' plan to beat China includes dominating tech standards groups – especially for 5G
'Strategic Competition Act' calls for appointment of a new ambassador-at-large for tech
12 Apr 01:40 | 35
Security
Texan's alleged Amazon bombing effort fizzles: Militia man wanted to take out 'about 70 per cent of the internet'
Someone hasn't heard of redundancy
09 Apr 21:57 | 131
Security
UK's National Cyber Security Centre recommends password generation idea suggested by El Reg commenter
Who says everything below the line is a cesspit of useless filth?
09 Apr 15:58 | 144
Security
CyberBattleSim: Microsoft's open-source Holodeck in which autonomous attackers, defenders battle it out
Very 2021 to have AI bots fight in simulated networks for our entertainment (and science)
09 Apr 11:06 | 2
Security
How do we stamp out the ransomware business model? Ban insurance payouts for one, says ex-GCHQ director
New laws needed to cut off incentive to crooks, argues Marcus Willett
09 Apr 10:02 | 113
Security
India uses controversial Aadhaar facial biometrics to identify COVID vaccination recipients
Safer than eyeballs or fingerprints, apparently
09 Apr 05:01 | 2
Security
Belgian police seize 28 tons of cocaine after 'cracking' Sky ECC's chat app encryption
Euro cops take $1.65bn of blow off the streets after poring over messages
08 Apr 10:39 | 84
Webcast
There’s a whole wide world of web application firewall options – so how do you choose the right one?
Take the heat out of your firewall deployment
08 Apr 07:30 |
Video
Indian defense chief admits China’s cyber-weapons would ‘disrupt large number of systems’ whenever Beijing presses the button
Working to improve 'cyberwalls', but for now swift recovery is main strategy
08 Apr 04:14 | 14
Security
Another supply-chain attack? Android maker Gigaset injects malware into victims' phones via poisoned update
Software nasty also 'persists after a factory reset'
07 Apr 20:11 | 12
Security
Update on PHP source code compromise: User database leak suspected
Possible culprit: Ancient code running in production. A vuln 'would not be terribly surprising' says maintainer
07 Apr 14:38 | 27
Security
Cybercrooks targeting UK organisations started 2020 strong only for attacks to wither away by Christmas
Aww, did the big bad criminals get a little lockdown burnout too?
07 Apr 13:58 | 7
Security
Atheists appeal to higher power for intercession over alleged sins against privacy
Membership data row ascends to desk of California attorney-general
07 Apr 06:58 | 42
Security
SAP: It takes exploit devs about 72 hours to turn one of our security patches into a weapon against customers
So please don't delay in applying updates, says, well, everyone
06 Apr 21:04 | 17
Security
Their 'next job could be in cyber': UK Cyber Security Council launches itself by pointing world+dog to domain it doesn't own
Shouting cyber cyber cyber, mega mega fail thing
06 Apr 13:50 | 109
Sponsored
What is operations-centric security?
Let’s find out... with Cybereason CEO Lior Div
06 Apr 07:30 |
in Brief
'Anomalous surge in DNS queries' knocked Microsoft's cloud off the web last week
Plus: Top universities hit by data-stealing extortionists
06 Apr 02:41 | 5
Updated
Facebook says dump of 533m accounts is old news. But my date of birth, name, etc haven't changed in years, Zuck
Account info swiped in 2019, sold online, now given away for free
05 Apr 21:05 | 88
