News

UK data watchdog has been told and 'forensic' probe is ongoing

Players' managers looking to lift salaries by a couple of million pounds or so better check their email read receipts: a full week after Manchester United was hit by hackers, many of its systems remain offline, with at least one report claiming the club is being shaken down for ransom.…

Sign up and make your voice heard

A UK infosec bod has launched a petition asking the government if it would please drop its plans to install backdoors in end-to-end encryption.…

Watching, always watching

Microsoft's Productivity Score has put in a public appearance in Microsoft 365 and attracted the ire of privacy campaigners and activists.…

Lawyers for fined firm make eyebrow-raising claim to irate ex-customer

Ticketmaster is claiming that the ICO's £1.25m data breach fine clears it of any responsibility for its network being infected by card-skimming malware, according to correspondence seen by The Register.…

Palo Alto Networks spotted subscriber IDs and MAC addresses on the move

Infosec researchers at Palo Alto Networks’ Unit 42 threat intelligence unit spotted a pair of prominent Chinese apps leaking personal data, and after it informed Google the ad giant dumped the apps from its Play store.…

If you've been pwned in the past, pay special attention to this one

VMware has published a series of workarounds for critical command injection vulnerabilities in its Workspace One Access, Access Connector, Identity Manager and Identity Manager Connector products.…

Leaky data systems fixed now, but the issue affected millions

Feature  Two separate internet affiliate networks have closed vulnerabilities that exposed potentially millions of records in one of the most sensitive areas: payday loans.…

Group claims adtech 'has nothing to do with privacy' but is rather an attempt 'to take control of the web'

Google's Privacy Sandbox took another knock today as Marketers for an Open Web (MOW) wrote to the UK's Competition and Markets Authority (CMA) requesting a block on the technology's launch.…

Web traffic, email redirected, personal info exposed in DNS hijacking

Miscreants were able to hijack traffic and email destined for various cryptocurrency-related websites this month – by hoodwinking GoDaddy employees.…

Exec, two officers, one other charged

Apple's head of global security tried to bung cops hundreds of free iPads in exchange for special gun permits, it is claimed.…

SANS Institute expands course lineup to help you think like a hacker

Promo  When it comes to cyber attacks, it’s not enough to just sit there, hoping miscreants will pass you by. You have to think like a hacker, stress testing your own systems to ensure they are as tight as possible.…

Do they byte?

In Brief  Tyndall Air Force Base in Florida is now guarded by robotic canines that will patrol the area before popping back to their kennels for a recharge.…

Cyber House Party charity event scheduled for 17 December – just bring your dosh and (maybe) some ear plugs

Locked up indoors with nothing to do as the evenings draw closer? If lighthearted chats about cyber security are your thing, followed up by some banging dance tunes, then we have just the event – all in the name of charity, of course.…

No incident response plan? We can help you there…

Promo  You know the symptoms – a sinking feeling in the pit of the stomach, tingling in the fingers, blood thumping in the temples as time slows to a crawl. Realizing you’re facing a full-on cyber attack can feel horribly visceral, even if the attackers are virtual.…

No data leaked, says football club

Manchester United is working with infosec pros to “minimize the ongoing IT disruption” that it says was caused by an assault on its tech systems.…

Fix available, but Big Blue's chips get slower as a result

IBM Power9 processors, intended for data centers and mainframes, are potentially vulnerable to abuse of their speculative execution capability. The security shortcoming could allow a local user to access privileged information.…

RCS throws the dice

Analysis  Google is rolling out end-to-end encryption in the unloved and unwanted Android Rich Communication Services, as part of a renewed hope people might use messaging services controlled by the Chocolate Factory.…

Tech hipsters? On our doorstep? The Silicon what?

The National Cyber Security Centre picked its London HQ building not because it was the best or most cost-efficient location – but because the agency "prioritised image over cost", a Parliamentary committee has said.…

Combined Ministry of Defence and GCHQ team has worked since April to 'transform cyber capabilities'

The United Kingdom has announced £16.5 billion ($22bn) of new defence spending, some of which has gone towards a newly revealed National Cyber Force and some earmarked to create a Space Command and agency dedicated to AI.…

Spear-phishers love the executive suite. Here’s how to stop them getting in

Webcast  If you’ve ever wondered what the CEO does all day, you’re not the only one. Cyber-attackers give the matter a lot of thought, which is why a well-crafted spear-phishing attack can be so hard to defend against.…