GCHQ opens kimono for infosec world to ogle its vuln disclosure process

The Register - Thu, 29/11/2018 - 14:25
Plus: State-backed hacks now need permission from a judge

On the same day that certain types of British state-backed hacking now need a judge-issued warrant to carry out, GCHQ has lifted the veil and given the infosec world a glimpse inside its vuln-hoarding policies.…

Categories: News

Sorry, we haven't ACLU what happened in sealed 'Facebook decryption' case, but let's find out

The Register - Thu, 29/11/2018 - 12:15
American Civil Liberties Union wants to know what govt asked for, and why court refused

The American Civil Liberties Union (ACLU) has filed a motion to find out what went on in a court case in which the US Department of Justice allegedly tried to make Facebook give it unencrypted access to Messenger calls.…

Categories: News

Symantec comes out in swinging in bitter legal battle over security bug audit conspiracy claims

The Register - Thu, 29/11/2018 - 08:03
Profit driving NSS claims of industry boycott, antivirus makers swear

Symantec says the biz that accused it of conspiring with others to avoid independent security audits is "less than honest" and driven by a "thirst for profits."…

Categories: News

Oh my chord! Sennheiser hits bum note with major HTTPS certificate cock-up

The Register - Thu, 29/11/2018 - 01:11
Audiophiles could get played like a fiddle, have their web traffic snooped by son-of-a-pitch scammers

Headphone maker Sennheiser is facing the music after being caught compromising the security of its customers.…

Categories: News

Dell Warns of Attempted Breach on Network

Kapersky Labs - Thu, 29/11/2018 - 00:03
The company said it has reset passwords for all customers.
Categories: News

What the Dell? Customer passwords reset after miscreants break into Big Mike's IT emporium

The Register - Wed, 28/11/2018 - 23:59
Round Rock insists no data actually swiped after intruder spotted on internal network

Dell is resetting all customer passwords on its website after a hacker or hackers unknown infiltrated its internal network.…

Categories: News

Microsoft Warns of Two Apps That Expose Private Keys

Kapersky Labs - Wed, 28/11/2018 - 22:22
The two apps are created by headset software company Sennheiser HeadSetup.
Categories: News

WhamWham, bambam, no thank you, SamSam: Iranians accused by the Feds of orchestrating ransomware outbreak

The Register - Wed, 28/11/2018 - 22:01
Duo raked in $6m in extortion payments after scrambling victims' files, it is claimed

US prosecutors have this week charged two people believed to be behind the notorious SamSam ransomware outbreak.…

Categories: News

ThreatList: Cryptominers Dominate Malware Growth in 2018

Kapersky Labs - Wed, 28/11/2018 - 20:02
The rise of piracy has helped drive the spike in attacks.
Categories: News

FBI Sinkholes $38M Global Ad Fraud Operation

Kapersky Labs - Wed, 28/11/2018 - 17:44
The multi-year campaign used malware and botnets to falsify billions of webpages and "site users."
Categories: News

The Nature of Mass Exploitation Campaigns

Kapersky Labs - Wed, 28/11/2018 - 14:05
Examples of how attackers carry out mass exploitation campaigns and how to defend against them.
Categories: News

US told to quit sharing data with human rights-violating surveillance regime. Which one, you ask? That'd be the UK

The Register - Wed, 28/11/2018 - 13:15
Nonprofits urge Congress not to sign deal under CLOUD Act

UK authorities should not be granted access to data held by American companies because British laws don't meet human rights obligations, nine nonprofits have said.…

Categories: News

It's a patch bonanza as Microsoft showers its OS platforms with update love

The Register - Wed, 28/11/2018 - 12:40
Administrators really hate this one weird bug in Windows Server 2016, but MS plays nice with iCloud again

Microsoft issued a whole bunch of updates last night, including one to deal with an alarming bug in Windows Server 2016.…

Categories: News

Hot fuzz: Bug detectives whip up smarter version of classic AFL fuzzer to hunt code vulnerabilities

The Register - Wed, 28/11/2018 - 08:03
Flaw-spotting toolkit already has 42 zero-days to its name

A group of university researchers from around the globe have teamed up to develop what they say is a powerful new tool to root out security flaws.…

Categories: News

3ve Offline: Countless Windows PCs using 1.7m IP addresses hacked to 'view' up to 12 billion adverts a day

The Register - Wed, 28/11/2018 - 01:32
Feds, Google, security orgs dismantle fraud botnet, eight people charged

A collection of cybersecurity companies, Google, and the Feds are sharing details on how they uncovered and dismantled a massive ad-fraud operation known as "3ve" (pronounced "Eve".)…

Categories: News

Pegasus Spyware Targets Investigative Journalists in Mexico

Kapersky Labs - Tue, 27/11/2018 - 22:57
Colleagues of slain Javier Valdez Cárdenas, known for investigating drug cartels, were targeted just days after his death.
Categories: News

Cisco Re-Issues Patch For High-Severity WebEx Flaw

Kapersky Labs - Tue, 27/11/2018 - 20:03
The patch addresses a flaw in Cisco's WebEx platform that lets hackers gain elevated privileges.
Categories: News

Cheetah Mobile Blames SDKs for Rampant Ad Fraud in Its Android Apps

Kapersky Labs - Tue, 27/11/2018 - 19:55
Eight popular Android apps are embezzling from the ad ecosystem on a widespread basis, according to allegations.
Categories: News

Widespread Malvertising Campaign Hijacks 300 Million Sessions

Kapersky Labs - Tue, 27/11/2018 - 17:12
Researchers say the bad actor behind the malvertising campaign is still active.
Categories: News

Baroness Trumpington, former Bletchley Park clerk, dies aged 96

The Register - Tue, 27/11/2018 - 12:00
They don't make them like her any more

Obit  Baroness Trumpington, a wartime Bletchley Park transcriber who was part of the push to posthumously pardon Alan Turing, has died aged 96.…

Categories: News


Subscribe to Sec Tec Limited aggregator - News