Updated
Log4j RCE: Emergency patch issued to plug critical auth-free code execution hole in widely used logging utility
Prepare to have a very busy weekend of mitigating and patching
10 Dec 2021 16:04 | 65
Security
Security
Revealed: Remember the Sony rootkit rumpus? It was almost oh so much worse
That time Rootkitting for Dummies might as well have been in Microsoft's Plus! Pack
10 Dec 2021 14:02 | 67
Security
Ransomwared payroll provider leaks data on 38,000 Australian government workers
Frontier Software admitted attack three weeks ago, said data was safe … now it's on the dark web
10 Dec 2021 05:58 | 9
Security
A third of you slackers out there still aren't using HTTPS by default
And it's really bad news for EV cert vendors in Top 1 Million report
09 Dec 2021 19:46 | 32
Security
Resistance is ... cheap? Cloudflare, Mandiant, and pals form incident response 'n' cyber insurance borg
Trust us with everything, croons septuple-strong partnership
09 Dec 2021 14:32 | 4
Paid Post
Ransomware giving you sleepless nights? Here’s how to insure a good night’s sleep
This guide to cyber insurance will help you rest easy
09 Dec 2021 07:30 |
Security
Oz Feds reveal distribution model behind backdoored 'An0m' chat app spread by crims
Resellers were given exclusive territories to target, and offered tech support
09 Dec 2021 03:43 | 7
Security
Canadian charged with running ransomware attack on US state of Alaska
Cross-border op nabbed our man, boast cops and prosecutors
08 Dec 2021 19:02 | 11
Webinar
Not all tech disasters are ‘all hands’ events. But how do you tell which is which?
This webinar shows you how to measure the blast radius
08 Dec 2021 18:00 |
Security
Virgin Media fined £50,000 after spamming 451,000 who didn't want marketing emails
Data watchdog shows it's keeping its PECR up
08 Dec 2021 16:37 | 31
Paid Feature
What’s the right amount of trust to build into your network? Less than Zero
It’s tricky but manageable, says Iomart
08 Dec 2021 07:30 |
Security
Microsoft extends Secured-core concept to servers
Certifies hardware with malware-crimping spec, already common in PCs, for Azure Stack and Windows Server
08 Dec 2021 05:15 | 6
Security
Cryptominers aren't just a headache – they're a big neon sign that Bad Things are on your network
So says Sophos in warning about Tor2Mine Monero malware
07 Dec 2021 16:14 | 4
Security
Foreign Office IT chaos: Shocking testimony reveals poor tech support hindered Afghan evac attempts
Contributed to dysfunction as diplomats and soldiers struggled to get Afghan helpers out of reach of Taliban
07 Dec 2021 13:49 | 54
Security
Microsoft wins court approval to take over sites run by Chinese crime gang
'Nickel' back in trouble for trying to lift secrets, often by exploiting Microsoft snafus
07 Dec 2021 05:31 | 10
Security
LINE Pay leaks around 133,000 users' data to GitHub, of all places
Someone just accidentally put it there, says the messaging service company
07 Dec 2021 04:03 | 3
Security
Spar shops across northern England shut after cyber attack hits payment processing abilities
Franchisees' closures also affect petrol stations
06 Dec 2021 18:41 | 27
Security
Miscreants make off with $150m of digital assets in BitMart security breach
Or it might be nearer $200m. Even the amounts stolen seem to be volatile in the crypto world
06 Dec 2021 17:01 | 9
Security
Cuba ransomware gang scores almost $44m in ransom payments across 49 orgs, say Feds
Hancitor is at play
06 Dec 2021 13:02 | 10
Security
American diplomats' iPhones reportedly compromised by NSO Group intrusion software
Reuters claims nine State Department employees outside the US had their devices hacked
04 Dec 2021 01:54 | 51
Security
Utility biz Delta-Montrose Electric Association loses billing capability and two decades of records after cyber attack
All together now - R, A, N, S, O...
03 Dec 2021 22:06 | 25
Security
Feds charge two men with claiming ownership of others' songs to steal YouTube royalty payments
Alleged scheme said to have netted $20m since 2017
03 Dec 2021 21:54 | 29
Paid Feature
Protecting your critical infrastructure is one thing…protecting your backups is the same thing
Do you know what your recovery position really is?
03 Dec 2021 19:43 |
Security
Netgear router flaws exploitable with authentication ... like the default creds on Netgear's website
Don't just install the patch, change your router passwords too
03 Dec 2021 17:30 | 18
Security
BadgerDAO DeFi defunded as hackers apparently nab millions in crypto tokens
Badger, badger, badger, coin theft, coin theft!
02 Dec 2021 22:58 | 20
Security
New UK product security law won't be undercut by rogue traders upping and vanishing, government boasts
El Reg asks about phoenixing – but will answer convince world+dog?
02 Dec 2021 09:15 | 38
Security
European Cybercrime Centre confident it's kicked credit card crims – again
Poised to reveal similar haul to 2020's €40M loss prevention total
02 Dec 2021 08:21 | 4
Updated
Three key ransomware actors changed jobs on October 18 – the same day REvil went dark
Underground industry grows in complexity and sophistication, says Santander Group researcher
02 Dec 2021 05:58 | 4
Paid Feature
Rewriting your disaster recovery plan might just save your company…and could transform it
Just be sure it actually works
01 Dec 2021 21:00 |
Security
Singapore and UK ink digital trade agreements at Future Tech Forum in London
Such memorandums of understanding are all the rage
01 Dec 2021 14:30 |
Security
Pension cold-calling financial services biz cops largest ever fine from UK data watchdog
EB Associates facing £140k penalty for 107,000 illegal calls
01 Dec 2021 13:50 | 50
Security
UK watchdog's punishment for Blackbaud, Easyjet, other big privacy lawbreakers was slap on the wrist in private
Is this what they call light-touch regulation?
01 Dec 2021 07:28 | 22
Security
UK intel chief says MI6 must outsource innovation – and James Bond's in-house 'Q' is nonsense
China is on the march, Russia loves to destabilise, no intelligence agency can stop 'em without help
01 Dec 2021 03:56 | 39
Security
It's the flu season – FluBot, that is: Surge of info-stealing Android malware detected
And a bunch of bank-account-raiding trojans also identified
30 Nov 2021 20:11 | 5
Security
Visiting a booby-trapped webpage could give attackers code execution privileges on HP network printers
Patches available for 150 affected products
30 Nov 2021 15:59 | 27
Video
Leaked footage shows British F-35B falling off HMS Queen Elizabeth and pilot's death-defying ejection
Parachute snagged on ship's bows
30 Nov 2021 14:55 | 167
Security
Lloyd's of London suggests insurers should not cover 'retaliatory cyber operations' between nation states
And they might attribute cyber attacks if governments won't
30 Nov 2021 14:02 | 20
Security
Panasonic admits intruders were inside its servers for months
Spotted the crack after it ended – still not sure what was lost
30 Nov 2021 04:27 | 10
Security
Wind turbine maker Vestas confirms recent security incident was ransomware
10 days after attack 'almost all systems' up and running, refuses to say if ransom was paid
29 Nov 2021 14:29 | 10
Security
Australia will force social networks to identify trolls, so they can be sued for defamation
At the same time, will overrule court decision that traditional publishers are liable for comments on social media
29 Nov 2021 01:15 | 55
Security
EU needs more cybersecurity graduates, says ENISA infosec agency – pointing at growing list of master's degree courses
Skills gap needs filling somehow
26 Nov 2021 16:37 | 6
Security
Privacy Sandbox saga continues: UK watchdog extracts more commitments from Google over ad tech
Roll up, roll up. Come and be the CMA-approved trustee to keep an eye on the Chocolate Factory's antics
26 Nov 2021 13:33 | 11
Security
Government-favoured child safety app warned it could violate the UK's Investigatory Powers Act with message-scanning tech
Redesigned SafeToNet feature highlights tech law mess
26 Nov 2021 12:23 | 63
Security
Microsoft Defender for Endpoint laid low. Not by malware, but by another buggy Windows patch
Only affects Windows Server Core, so that's alright then
25 Nov 2021 18:01 | 12
Advertorial
It’s about the survival of the fittest – CISOs must be brave enough to throw away their security playbook, or suffer the consequences
The Vectra Masked CISO series gives security leaders a place to expose the biggest issues in security and advise peers on how to overcome them.
25 Nov 2021 17:00 |
Security
UK.gov emits draft IoT and smartphone security law for Parliamentary scrutiny
Mandatory vuln reporting, hefty fines for non-compliance
25 Nov 2021 09:30 | 53
Security
Google advises passwords are good, spear phishing is bad, and free clouds get attacked
Ad giant's first stab at providing the 'world's premier security advisory' starts with the obvious
25 Nov 2021 06:59 | 11
Updated
Huawei's AppGallery riddled with malware-infected games
Cynos.7 trojan found its way into 9.3 million downloads
25 Nov 2021 04:58 | 20
Security
US bans Chinese firms – including one linked to HPE’s China JV – for feeding tech to Beijing's military
Other additions to Entity List are accused of helping Pakistan, North Korea make nukes, missiles
25 Nov 2021 01:11 | 33
Security
Max Schrems hits Irish Data Protection Commissioner with corruption complaint
Watchdog argues 'fairness' in process should keep some documents confidential
24 Nov 2021 15:05 | 17
Security
Apple's Pegasus lawsuit a 'declaration of war' against offensive software developers, says Kaspersky director
Regional exec says Apple wants offensive researchers out of the field because they are harmful to the reputation of the company
24 Nov 2021 13:12 | 75
Security
How a malicious Android app could covertly turn the DSP in your MediaTek-powered phone into an eavesdropping bug
Millions of devices potentially vulnerable, we're told
24 Nov 2021 11:00 | 24
Advertorial
Yes, ransomware is your number one security nightmare. But here’s how to sleep easy
Here’s a clue … it involves encryption
24 Nov 2021 07:30 |
Security
China trying to export its Great Firewall and governance model
Beware of Communists bearing internet governance proposals, says Australian Strategic Policy Institute
24 Nov 2021 02:56 | 31
Security
Apple sues 'amoral 21st century mercenaries' NSO for infecting iPhones with Pegasus spyware
iGiant pledges any damages plus $10m to anti-cybersurveillance groups
23 Nov 2021 20:58 | 84
Security
Zero-day proof-of-concept exploit lands for Windows make-me-admin vulnerability
InstallerFileTakeOver code pops up on GitHub
23 Nov 2021 20:21 | 9
Poll
Crypto for cryptographers! Infosec types revolt against use of ancient abbreviation by Bitcoin and NFT devotees
Complaints abound that yoof use it to mean 'digital currency'
23 Nov 2021 18:45 | 86
Security
Alleged Brit SIM-swapper will kill himself if extradited to US for trial, London court told
'Exceptional' case involves 100 BTC payoff, judge told
23 Nov 2021 16:10 | 71
Security
UK Ministry of Justice secures HVAC systems 'protected' by passwordless Wi-Fi after Register tipoff
There's a default admin password online too
23 Nov 2021 10:15 | 35
In brief
Infosec bods: After more than a year, Sky gets round to squashing hijacking bug in 6m home broadband routers
Plus: DNS cache poisoning again, cops probe property conveyancing group's IT outage, Azure hole addressed, and more
23 Nov 2021 07:31 | 15
