News

Crypto-boffins' paper shows AKA protocol still broken

A protocol meant to protect smartphone users' privacy is vulnerable to fake base station attacks all the way from 3G to 5G, according to a group of international researchers. All the baddies need is a little over €1,100 worth of kit and a laptop.…

The browser comes with a new set of protections to block pop-ups that could lead to 'abusive experiences.'

NRCC says it was hit in run-up to 2018 elections

The National Republican Congressional Committee, the Republican Party's campaigning arm, has confirmed it has fallen victim to a major compromise of its email system.…

Details are so far scant in this latest in a string of data breaches.

Dr Shifro pays ransom, gets discount and adds its own margin, says Check Point

A ransomware decryption service has turned out to be – quelle surprise – a Belarusian middleman who simply pays the ransom and adds his own profit margin to the hapless victim's bill.…

Google’s December Android Security Bulletin tackles 53 unique flaws.

The information is an early Christmas gift for any social engineer.

The group's skimmer has added some capabilities that steals credentials from admins.

Passwords should be safe, but reset just in case

Someone's taken a wander through the systems of question-and-answer website Quora, pilfering account details of 100 million users.…

Customers confused over requests to change credentials

Citrix says there is no reason to panic after it asked customers to reset their passwords on its Sharefile service.…

The lawsuit alleges that NSO Group violated international law by allowing Pegasus to be used by oppressive regimes to hunt dissidents and journalists.

Critical bug brings bevy of patches

The keepers of Kubernetes, the rather popular software container orchestration system, have pushed out three new releases that patch a critical flaw.…

Report claims that from 2016-2017 the FSB was reading agency's emails

The Czech Republic says that Russian government hackers were intercepting and snooping on communications for one of its agencies for more than a year.…

In this Newsmaker Interview, ‘breach hunter’ Chris Vickery explores a recent spate of breaches from Marriott, USPS and Dell EMC.

Prisoners in South Carolina posed convincingly as beautiful women on social media platforms.

The laptop giant will settle a 32-state class-action lawsuit stemming from pre-installing vulnerable ad-targeting software.

The two apps, “Fitness Balance App” and “Calories Tracker app,” were tricking users into payments of $120.

The incident sheds light on just how insecure printers are.

NCC Group discovers network-saving quirk during worm tests

An infosec firm has unleashed a NotPetya-style worm onto a customer’s network – and discovered that a simple Windows Active Directory tweak has a surprising effect on self-spreading malware.…

Plus, South Carolina convicts go catfishing

Roundup  November ended with a week of medical mishaps, near disaster at Dell, and the introduction of Pesky Pepper.…