Forums → Security

Tin foil hats, black hats and bald men

State Forum Posts Latest Post
open Beijing twirls ban-hammer at 84 more apps it says need to stop slurping excess data 7
open South Korea orders urgent review of energy infrastructure cybersecurity 11
open Tech industry quietly patches FragAttacks Wi-Fi flaws that leak data, weaken security 4
open SolarWinds CEO describes overhauled Orion build system after that 'very small, unique' security breach 14
By gerdesj
open Microsoft emits more fixes for Exchange Server plus patches for remote-code exec holes in HTTP stack, Visual Studio 14
open UK's Computer Misuse Act to be reviewed, says Home Secretary as she condemns ransomware payoffs 20
By Cederic
open NHS App gets go-ahead for vaccine passport use despite protest from privacy groups 51
open App Tracking: Apps plead for users to press allow, but 85% of Apple iOS consumers are not opting in 44
By KBeee
open Compsci boffin publishes proof-of-concept code for 54-year-old zero-day in Universal Turing Machine 59
open Train operator phlunks phishing test by teasing employees with non-existent COVID bonus 153
open Tencent research team scores free powerups for electric cars with Raspberry Pi-powered X-in-the-middle attack 8
By DrXym
open Indian government says 5G doesn’t cause COVID-19. Also points out India has no 5G networks 23
open Trend Micro hosted email service is down, inboxes still stuck in cloudy limbo 5
By Stork
open Uncle Sam wants 'ethical hackers' to crack its planetary defenses, but don't expect a pay-day from this bug bounty 24
open Namecheap hosted 25%+ of fake UK govt phishing sites last year – NCSC report 38
open US declares emergency after ransomware shuts oil pipeline that pumps 100 million gallons a day 185
open Russian cyber-spies changed tactics after the UK and US outed their techniques – so here's a list of those changes 26
open Privacy activist Max Schrems on Microsoft's EU data move: It won't keep the NSA away 19
open Cisco HyperFlex web interface has critical flaw that lets attackers get root and execute arbitrary commands 4
open Kids in Hong Kong and other highly surveilled states worry infosec careers are just asking for trouble 9
open Google Play to require privacy labels on apps in 2022, almost two years after Apple 11
open Google will make you use two-step verification to login 87
open Qualcomm Snapdragon 855 modem code flaw exposed Android smartphones to possible snooping 9
By Cuddles
open Crane horror Reg reader uses his severed finger to unlock Samsung Galaxy phone 75
open Chrome on Windows turns on Intel, AMD chip-level defenses against malicious websites 3
By s_simp
open JET engine flaws can crash Microsoft's IIS, SQL Server, say Palo Alto researchers 17
open 21 nails in Exim mail server: Vulnerabilities enable 'full remote unauthenticated code execution', millions of boxes at risk 30
open East London council blurts thousands of residents' email addresses in To field blunder 26
By hoola
open Twilio's private GitHub repositories cloned by Codecov attacker, cloud comms platform confirms 3
By HildyJ
open What not to expect when you're expecting: Fertility apps may be selling intimate health secrets 23
open 'Millions' of Dell PCs will grant malware, rogue users admin-level access if asked nicely 50
open Apple patches iOS, macOS, iPadOS, watchOS, kitchen-sinkOS bugs said to be exploited in the wild 19
open Bill to protect UK against harmful foreign investment becomes law 48
open Happy Friday? Darktrace gets 40 per cent boost on London IPO debut 3
open Australia proposes teaching cyber-security to five-year-old kids 16
open Stealthy Linux backdoor malware spotted after three years of minding your business 44
open BadAlloc: Microsoft looked at memory allocation code in tons of devices and found this one common security flaw 52
open Vivaldi update unleashes the 'Cookie Crumbler' to simply block any services asking for consent (sites may break) 84
open Billions in data protection lawsuits rides on Google's last-ditch UK Supreme Court defence for Safari Workaround sueball 35
open 48 ways you can avoid file-scrambling, data-stealing miscreants – or so says the Ransomware Task Force 37
By batfink
open Digital Ocean springs a leak: Miscreant exploits hole to peep on unlucky customers' billing details for two weeks 5
open Ransomware crooks who broke into Merseyrail used director's email address to brag about it – report 19
open Brit MPs and campaigners come together to oppose COVID status certificates as 'divisive and discriminatory' 128
open Here's what Russia's SVR spy agency does when it breaks into your network, says US CISA infosec agency 22
open Washington DC police force confirms data breach after ransomware upstart Babuk posts trophies to Tor blog 19
By Tempest
open HashiCorp reveals exposure of private code-signing key after Codecov compromise 3
open Security vendor Proofpoint snapped up by private equity for $12.3bn but still in search of profit 2
open Scam victims find same fraudulent ads lurking on Facebook and Google even after flagging them up 32
open Ethics isn't a county east of London, but it's the only way to look at security 21
By ThatOne
open GCHQ boss warns China can rewrite 'the global operating system' in its own authoritarian image 121
By s_simp

SUBSCRIBE TO OUR WEEKLY TECH NEWSLETTER

Biting the hand that feeds IT © 1998–2021