MPs charged with analysing Online Safety Bill say end-to-end encryption should be called out as 'specific risk factor'

The Register - Tue, 14/12/2021 - 16:00
Too far? Committee thinks it doesn't go far enough

Britain's Online Safety Bill is being enthusiastically endorsed in a "manifesto" issued today by MPs who were tasked with scrutinising its controversial contents.…

Categories: News

Log4j RCE latest: In case you hadn't noticed, this is Really Very Bad, exploited in the wild, needs urgent patching

The Register - Mon, 13/12/2021 - 23:07
This might be the bug that deserves the website, logo and book deal

Miscreants are wasting no time in using the widespread Log4j vulnerability to compromise systems, with waves and waves of live exploit attempts focused mainly – for now – on turning infected devices into cryptocurrency-mining botnet drones.…

Categories: News

When disaster strikes, data recovery really is a race against time

The Register - Mon, 13/12/2021 - 18:00
But exactly how much time are we talking about?

Webinar  When it comes to recovering after a catastrophic event such as a ransomware attack or data center failure, time is necessarily of the essence.…

Categories: News

Is VPOTUS Bluetooth-phobic or sensible? The answer's pretty clear

The Register - Mon, 13/12/2021 - 17:01
Plus: bugs found on Mars! Of the software kind, of course

In Brief  The vice president of the US, Kamala Harris, was mocked by commentators this week for her aversion to Bluetooth on security grounds. Security professionals think she has a point – given her position.…

Categories: News

Timekeeping biz Kronos hit by ransomware and warns customers to engage biz continuity plans

The Register - Mon, 13/12/2021 - 15:07
Big implications for millions of Britons' Christmas pay packets

Kronos Private Cloud has been hit by a ransomware attack. The company, also known as Ultimate Kronos Group (UKG), provides timekeeping services to companies employing millions across the UK.…

Categories: News

Ooh, an update. Let's install it. What could possibly go wro-

The Register - Mon, 13/12/2021 - 08:30
Patching the patch

Who, Me?  Welcome to another Who, Me? confession from the Register readership, and a reminder of the unexpected side effects of software updates.…

Categories: News

Irish Health Service ransomware attack happened after one staffer opened malware-ridden email

The Register - Fri, 10/12/2021 - 21:05
PWC report shows long list of missed opportunities to shut out extortion crims

Ireland's Health Service Executive (HSE) was almost paralysed by ransomware after a single user opened a malicious file attached to a phishing email, a consultancy's damning report has revealed.…

Categories: News

Log4j RCE: Emergency patch issued to plug critical auth-free code execution hole in widely-used logging utility

The Register - Fri, 10/12/2021 - 16:04
Prepare to have a very busy weekend of mitigating and patching

An unauthenticated remote code execution vulnerability in Apache's Log4j Java-based logging tool is being actively exploited, researchers have warned after it was used to execute code on Minecraft servers.…

Categories: News

Revealed: Remember the Sony rootkit rumpus? It was almost oh so much worse

The Register - Fri, 10/12/2021 - 14:02
That time Rootkitting for Dummies might as well have been in Microsoft's Plus! Pack

Retired Microsoft engineer, Dave Plummer, offered a blast from the past last week with a look back at the infamous Sony Windows "rootkit" scandal.…

Categories: News

Ransomwared payroll provider leaks data on 38,000 Australian government workers

The Register - Fri, 10/12/2021 - 05:58
Frontier Software admitted attack three weeks ago, said data was safe … now it's on the dark web

Personal information describing names, addresses, bank account details, and taxation IDs of 38,000 Australian government employees has been leaked to the dark web after a ransomware attack.…

Categories: News

A third of you slackers out there still aren't using HTTPS by default

The Register - Thu, 09/12/2021 - 19:46
And it's really bad news for EV cert vendors in Top 1 Million report

Almost a third of the world wide web's top million sites are still not using HTTPS by default, according to infosec researcher Scott Helme's analysis.…

Categories: News

Resistance is ... cheap? Cloudflare, Mandiant, and pals form incident response 'n' cyber insurance borg

The Register - Thu, 09/12/2021 - 14:32
Trust us with everything, croons septuple-strong partnership

Cyber insurance premiums are increasing and so is infosec's determination to get a slice of that pie: Cloudflare is partnering with Mandiant, Secureworks, and Crowdstrike in a "rapid referral" partnership for under-attack companies.…

Categories: News

Ransomware giving you sleepless nights? Here’s how to insure a good night’s sleep

The Register - Thu, 09/12/2021 - 07:30
This guide to cyber insurance will help you rest easy

Paid Post  Why do CISOs and CIOs endure so many sleepless nights? Because they’re either worrying about cyber attacks in general, and ransomware in particular, or because they’re actually dealing with them.…

Categories: News

Oz Feds reveal distribution model behind backdoored 'An0m' chat app spread by crims

The Register - Thu, 09/12/2021 - 03:43
Resellers were given exclusive territories to target, and offered tech support

Australia's Federal Police force has revealed more about how it distributed a backdoored chat app to criminals.…

Categories: News

Canadian charged with running ransomware attack on US state of Alaska

The Register - Wed, 08/12/2021 - 19:02
Cross-border op nabbed our man, boast cops and prosecutors

A Canadian man is accused of masterminding ransomware attacks that caused "damage" to systems belonging to the US state of Alaska.…

Categories: News

Not all tech disasters are ‘all hands’ events. But how do you tell which is which?

The Register - Wed, 08/12/2021 - 18:00
This webinar shows you how to measure the blast radius

Webinar  This isn’t surprising. The prospect of having all your data and applications compromised, whether due to ransomware or other cyberattacks, or any of the more traditional disaster scenarios is so horrifying, that it’s natural to throw everything you have at it.…

Categories: News

Virgin Media fined £50,000 after spamming 451,000 who didn't want marketing emails

The Register - Wed, 08/12/2021 - 16:37
Data watchdog shows it's keeping its PECR up

British telco Virgin Media is facing a £50k financial penalty after spamming more than 400,000 opted-out customers urging them to sign back up to receive marketing bumf.…

Categories: News

What’s the right amount of trust to build into your network? Less than Zero

The Register - Wed, 08/12/2021 - 07:30
It’s tricky but manageable, says Iomart

Paid Feature  “The trust of the innocent is the liar's most useful tool,” Stephen King wrote. At least that’s what the internet claims.…

Categories: News

Microsoft extends Secured-core concept to servers

The Register - Wed, 08/12/2021 - 05:15
Certifies hardware with malware-crimping spec, already common in PCs, for Azure Stack and Windows Server

Microsoft has extended the Secured-core concept it applied to PCs in 2019 to servers, and to Windows Server and Azure Stack HCI.…

Categories: News

Cryptominers aren't just a headache – they're a big neon sign that Bad Things are on your network

The Register - Tue, 07/12/2021 - 16:14
So says Sophos in warning about Tor2Mine Monero malware

Cryptominer malware removal is a routine piece of the cybersecurity landscape these days. Yet if criminals are hijacking your compute cycles to mine cryptocurrencies, chances are there's something worse lurking on your network too.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News