News

Judges frown upon fishing for incriminating data on phones

It's a ruling sending shockwaves through the worlds of privacy, device security, and law enforcement in America.…

Machine learning and code to detect and alert attempts to extract passwords from staff

Security researchers from UC Berkeley and the Lawrence Berkeley National Laboratory in the US have come up with a way to mitigate the risk of spear-phishing in corporate environments.…

Pen-testers face new challenges as defences evolve

BSides  The opening talk at BSides Manchester on Thursday examined how red team tactics are evolving beyond phishing to include a wider variety of methods.…

But the MoD will happily tell you how many manned jets we're using to do that exact thing

The Information Tribunal has rejected an appeal by campaigners trying to find out how many British Reaper drones are being used for warlike missions in the Middle East.…

Security researchers pick up angle grinder, drop £2k-plus in B-sides chat

BSides  Weighing in at 800kg secondhand, freestanding ATMs - a “safe with a computer on top” - are a logistical nightmare to own and research, security boffin Leigh-Anne Galloway warned delegates at the BSides Manchester infosec conference yesterday.…

Federal agency addresses the new world of Alexa, smart cameras and IoT

A draft of new IT security measures by the US National Institute of Standards and Technology (NIST) has for the first time pulled privacy into its core text as well as expanded its scope to include the internet of things and smart home technology.…

Verizon says basestation dumps increasingly popular

US telecoms giant Verizon says police are increasingly asking it to cough up massive dumps of cellphone data rather than individual records.…

Ladies and gentlemen, start your ARM disassemblers

Apple's Secure Enclave, an ARM-based coprocessor used to enhance iOS security, became a bit less secure on Thursday with the publication of a firmware decryption key.…

Personal info spills from another poorly secured Amazon service

A voting machine supplier for dozens of US states left records on 1.8 million Americans unsecured, in public view for anyone to download, in a misconfigured AWS storage system.…

Authority fined £70k after missing URL manipulation

A London council has been fined £70,000 after design faults in its TicketViewer app allowed unauthorised access to 119 documents containing sensitive personal information.…

Contract ignores lack of strategy, growing criticism

The UK Home Office has put out to tender a £4.6m ($5.9m) contract for facial recognition software – despite the fact its biometrics strategy and retention systems remain embroiled in controversy.…

Consultant was all too app-y to break law, claim investigators

A banking IT expert orchestrated an insider-trading caper that raked in millions of dollars for him and his pals, it was claimed on Wednesday.…

Project Zero's two-year-old dog learns a new trick

It's Rowhammer, Jim, but not as we know it: IBM boffins have taken the DRAM-bit-flipping-as-attack-vector trick found by Google and applied it to MLC NAND Flash.…

IT crippled so badly firm relied on WhatsApp

The world's largest container shipping biz has revealed the losses it suffered after getting hit by the NotPetya ransomware outbreak, and the results aren't pretty.…

Fox, meet henhouse

An ex-Secret Service agent who stole Bitcoins from the Silk Road dark web drugs bazaar he was supposed to be investigating has admitted stealing even more sacks of the digital currency.…

GoT suspects cuffed

Four arrests connected with the leak of an unaired Game of Thrones episode have been made in India.…

65,000 tonnes and 4.5 acres of British sovereign territory - but is she worth it?

Pics  Britain’s newest warship, its biggest warship of all time, HMS Queen Elizabeth, entered Portsmouth Harbour for the first time this morning.…

Unidentified hackers attempt to bust open email accounts

Hackers are trying to break into Scottish Parliament email accounts weeks after similar campaigns against Westminster.…

Wannacry is just the beginning

Yet 'alternative' UK financial service has complied with law

Customers of UK financial services firm FFrees said they were unaware of a breach that took place there four months ago until a security researcher got in touch with them.…