News

20 WebKit flaws among latest batch of bug fixes

On Monday Apple released a fresh round of security fixes for a load of its operating systems and applications.…

US senator dismisses cop-out, suggests jail time for execs

Data-spaffing consumer credit biz Equifax is offering a package of roughly $700m in order to kill off lawsuits regarding its 2017 super-cyber-heist.…

It is but WAF-er thin... – report

Network overlord Cisco is reportedly planning to purchase Signal Sciences, a frequent cybersecurity collaborator and member of the Cisco Security Technical Alliance.…

Sprint Education plugged digit-diddling URL snafu quickly

An education sector marketing firm has committed a data breach – ironically, because it mass-mailed people asking them to update their GDPR communications preferences.…

A summary of computer security news for you, delivered rapid-fire-style

Roundup  Let's catch up with all the recent infosec news beyond what we've already covered.…

Phishing led to shopping spree with victims' credit cards

A man from the US state of Georgia who pleaded guilty in March to breaking into the Apple iCloud accounts of sports and entertainment figures was sentenced on Thursday to three years and one month in federal prison – and ordered to pay almost $700,000 in restitution.…

Contractor Martin sentenced for squirreling away 50TB of hush-hush files, exploits

An ex-NSA contractor who admitted stashing some 50TB of secret US government documents and exploit code at his home was today sentenced to nine years behind bars.…

Defence ministry gets with the Apollo vibes

Roundup  As the world celebrates the 50th anniversary of the Apollo 11 Moon mission, the UK's Ministry of Defence has gone a bit wacky – not only does it have fresh space plans, but it also wants to strap laser zappers to stuff too.…

After report claimed its sales pitches boasted of doing that

Israeli spyware firm NSO Group has denied it developed malware that can steal user data from cloud services run by Amazon, Apple, Facebook, Google and Microsoft.…

Or Sam connecting a vulnerable dev box to production. Here's your gentle guide to risks and threats menacing your IT

Backgrounder  The good news for enterprise security is that the number of reported cyberattacks is going down, in the UK at least.…

A decision must be made as a 'matter of urgency', says Intelligence and Security Committee

Excluding Huawei from the UK's 5G network infrastructure would harm resilience and "lower security standards", the Intelligence and Security Committee (ISC) warned today.…

Yak app still cleaning up after four-year-old cyber-break-in

Slack says a 2015 database theft is to blame for a large-scale reset of stolen passwords.…

Ukrainian civil war a bonanza for dodgy malware hosting firms

A growing crop of so-called bulletproof hosting companies are using the ongoing civil war in Ukraine to host Magecart malware without fear of the police coming knocking.…

Bosses stick up for suspect, claim he's being framed for pinching 5m folks' data

A 20-year-old infosec bod has been arrested in Bulgaria after most of the country's population had their personal and financial details stolen.…

Latest call to halt creepy tech likely to fall on deaf ears

Updated  The UK government should slap a "moratorium on the current use of facial recognition technology, with "no further trials" until there is legal framework in place, a Parliamentary committee has warned today.…

'Defending democracy' initiative to resist nation-state attacks

Microsoft has demonstrated its ElectionGuard electronic vote system at the Aspen Security Forum under way in Colorado and warned that nearly 10,000 of its customers have been targeted by nation-state attacks.…

Click your mouse three times... there's no place like a back door to your machine - ESET

An old-school shadowy malware group believed to operate out of China has been targeting diplomats with what infosec researchers say is a previously undocumented backdoor.…

Accused bloke cuffed after plod swoop on home

A 20-year-old man from the Netherlands accused of building and selling Office macro malware was arrested Wednesday.…

130,000 have already downloaded creepware

Seven new stalkerware apps have been spotted for sale on the Android Play Store, despite Google's policy against the invasive monitoring tools.…

Instead of enriching Google, try making a market for click work

Analysis  Internet companies depend on free labor. Companies like Amazon, Facebook and Google rely upon content creators who give their work away for the sake of platform participation or perhaps naive altruism.…