News

Everything you also need to know in security

Roundup  IT admins aren't always fond of patching. It's like going to the dentist – it needs to be done but it can be a pain to do. Sadly, this week there was a lot of patching to be done.…

If you downloaded and installed stuff from Eltima yesterday, you are totally screwed

It's going to be an unpleasant weekend for some Mac users who are facing a complete system wipe and reinstall – after hackers stashed malware in legitimate applications.…

Spend the money on freezing your brain

Something for the Weekend, Sir?  Flee! Flee! It’s the return of the frozen heads!…

Canuck NSA/GCHQ equivalent open-sources 'Assemblyline', to make us all as safe as Canada

Canada's Communications Security Establishment has open-sourced its own malware detection tool.…

An attempt was made

Google is offering cash to those who can find, exploit and report bugs in its Android apps, or similarly hack other programs in its Play Store.…

Mind the gap

The US is starting to fall well behind China in terms of the speed at which organizations are alerted to reported security vulnerabilities, according to a study out this week by threat intel biz Recorded Future.…

Only to be mysteriously restored hours later

The YouTube account of the researcher behind the KRACK WPA2 Wi-Fi vulnerability was restored early on Thursday hours after it was shut down for violating "community guidelines".…

Also, the US negotiates fighter jet purchase contracts on our behalf

Britain’s F-35B fighter jets currently cost around $123m each – and British officials are quite content that the only engine overhaul facility for the stealth aircraft’s engines is located in Turkey.…

We've got something much more ethical anyway, say devs

Malwarebytes has had enough of Coin Hive's alt-currency-generating browser-side code, and is now automatically blocking it.…

You scratch my PKCS, and I'll scratch yours

The European Commission has proposed that member states help each other break into encrypted devices by sharing expertise around the bloc.…

You've been warned

The Carnegie-Mellon University's Software Engineering Institute has nominated transport systems, machine learning, and smart robots as needing better cyber-security risk and threat analysis.…

Redmond wags its finger

A few weeks ago, Google paid Microsoft $7,500 after Redmond's security gurus found, exploited and reported a vulnerability in the Chrome browser – a flaw that would allow malicious webpages to run malware on PCs.…

Norwegian project exposes worrying lack of security

Tests on smartwatches for children by security firm Mnemonic and the Norwegian Consumer Council have revealed them to be riddled with flaws.…

It's just not a security vulnerability, says Redmond

Features of the Intel MPX designed to prevent memory errors and attacks might be abused to launch assaults on Windows systems, security researchers claim.…

From heading one cyber-attack victim to another

Dido Harding, the woman at the helm during TalkTalk's 2015 mega breach, was yesterday grilled about her move to chair NHS Improvement, the body responsible for overseeing the UK's health service and also famously clobbered by a huge cyber attack.…

Plod say crims now too hard to find and catch online

Europol has asked cellphone networks and other internet providers to stop using Carrier Grade Network Address Translation (CGNAT) – because it’s making life too difficult for cops trying to track cyber-villains across the web.…

Brrrt! Brrrt! Brrrt! Big Red's bug gun targets 252 bugs, and you for not patching fast enough

Hundreds of products, more than 250 vulnerabilities … yes, it's Oracle's quarterly critical patch update day!…

Your personal data was probably already in crims' hands

The United States Internal Revenue Service has said that citizens affected by the Equifax breach need not panic, because it probably didn't reveal anything that hasn't already been stolen and the agency has tooled up to deal with fraudulent tax claims.…

I’ll have a garlic bread, a Supreme and a side of privacy breach by slack partners

Domino's Pizza's Australian outpost has blamed a partner for a security breach, after angry customers went online complaining about finding themselves on spam lists.…

Block all the things! No, wait, not the XSS security alerts

Top ad-blocking plugin uBlock Origin has come under fire for being a little too eager in its quest to murder nasty stuff on the internet: it prevents browsers from thwarting and sounding the alarm on hacking attacks.…