The Register - Anti-Virus

Syndikovat obsah
Biting the hand that feeds IT — sci/tech news and views for the world
Aktualizace: 1 min 19 sek zpět

Merry Xmas, fellow code nerds: Avast open-sources decompiler

15 Prosinec, 2017 - 23:06
RetDec will turn binaries into something more legible

Malware hunting biz and nautical jargon Avast has released its machine-code decompiler RetDec as open source, in the hope of arming like-minded haters of bad bytes and other technically inclined sorts with better analytical tools.…

Kategorie: Viry a Červi

We need to talk about mathematical backdoors in encryption algorithms

15 Prosinec, 2017 - 15:24
Yo, NSA maths chaps, can you hear me? – Black Hat man

Security researchers regularly set out to find implementation problems in cryptographic algorithms, but not enough effort is going towards the search for mathematical backdoors, two cryptography professors have argued.…

Kategorie: Viry a Červi

Russia could chop vital undersea web cables, warns Brit military chief

15 Prosinec, 2017 - 14:05
ACM Sir Stuart Peach is right – but only to a point

The head of the British Armed Forces, Air Chief Marshal Sir Stuart Peach, has warned that Russia could cut off the UK by severing undersea communications cables.…

Kategorie: Viry a Červi

Brit film board proposed as overlord of online pr0nz age checks

15 Prosinec, 2017 - 13:04
Campaigners say body 'will be pushed to block' large number

The British Board of Film Classification will be responsible for regulating age checks for UK users of online porn websites, if the government gets its way.…

Kategorie: Viry a Červi

UK.gov delays biometrics strategy again – but cops will STILL USE the tech

14 Prosinec, 2017 - 12:33
Tech's too 'fast moving' for framework, but not for slurping your face

The Home Office has admitted the UK’s biometrics strategy won't be published until next year, as MPs slam an "unacceptable" delay of more than five years.…

Kategorie: Viry a Červi

OK, OK, MIRA-I DID IT: Botnet-building compsci kid comes clean

13 Prosinec, 2017 - 23:13
Jha rule-breaker and pals confess IoT gadget hack crimes, now facing the slammer

A former New Jersey college student has copped to helping create and run the massive Mirai DDoS botnet.…

Kategorie: Viry a Červi

Barclays bank bod in the cooler for aiding Dridex money launderers

13 Prosinec, 2017 - 16:17
Six years' porridge. Dridex not laundry soap – it's a Trojan

An employee of Barclays Bank who laundered thousands of pounds on behalf of Moldovan cybercriminals was yesterday sentenced to six years and four months behind bars in Blighty.…

Kategorie: Viry a Červi

One per cent of all websites probably p0wned each year, say boffins

13 Prosinec, 2017 - 08:28
Automated account-creator used bad passwords to detect when sites go bad

Researchers working on a technology to detect unannounced data breaches have found, to their dismay, that one per cent of the sites they monitored were hacked over the previous 18 months.…

Kategorie: Viry a Červi

Up to 'ONE BEEELLION' vid-stream gawpers toil in crypto-coin mines

13 Prosinec, 2017 - 08:02
Come for the free movies, stay to dig Monero for a stranger

Security experts claim four extremely popular video-streaming websites have been secretly loaded with crypto-currency-crafting code.…

Kategorie: Viry a Červi

Put down the eggnog, it's Patch Tuesday: Fix Windows boxes ASAP

13 Prosinec, 2017 - 03:13
IE haunted by ghosts of past bugs – plus remote-code exec holes that'll chill your blood

Microsoft has kicked out its December batch of software security fixes, the final Patch Tuesday of 2017.…

Kategorie: Viry a Červi

Intel to slap hardware lock on Management Engine code to thwart downgrade attacks

13 Prosinec, 2017 - 02:49
From version 12 onward, ME-equipped chips will defend against patch rollbacks

Intel's Coffee Lake and Cannon Lake x86 processors can be fortified by computer manufacturers to prevent in hardware attempts to downgrade, exploit and potentially neuter Chipzilla's built-in creepy Management Engine.…

Kategorie: Viry a Červi

I, Robot? Aiiiee, ROBOT! RSA TLS crypto attack pwns Facebook, PayPal, 27 of 100 top domains

13 Prosinec, 2017 - 02:02
Two-decade-old hole lets hackers unlock encrypted data

A 19-year-old vulnerability in the TLS network security protocol has been found in the software of at least eight IT vendors and open-source projects – and the bug could allow an attacker to decrypt encrypted communications.…

Kategorie: Viry a Červi

Tenable's response to folks upset at AWOL features: A 150-emails-a-minute spam storm

13 Prosinec, 2017 - 00:54
Nessus Pro V7 launch fiasco

Tenable Security has given itself two problems, by releasing a product its users don't like, and then adding them all to a support email group that's sending uncomfortable volumes of messages.…

Kategorie: Viry a Červi

Kaspersky dragged into US govt's trashcan as weaponized blockchain agile devops mulled

12 Prosinec, 2017 - 23:25
Trump signs defense law with No Eugenes clause, Kaspersky weighs options

Updated  President Donald Trump has signed the National Defense Authorization Act for 2018, which includes a ban on products from Kaspersky Lab running in US government agencies.…

Kategorie: Viry a Červi

Argy-bargy Argies barge into Starbucks Wi-Fi with alt-coin discharges

12 Prosinec, 2017 - 21:34
Venti vanilla skinny latte with sprinkles of JavaScript and a side of Monero mining, please

Starbucks has joined the long growing list of organizations that have inadvertently and silently mined alt-coins on customers' computers for mystery miscreants.…

Kategorie: Viry a Červi

Brrr! It's a snow day and someone has pwned the chuffin' school heating

12 Prosinec, 2017 - 16:02
Building management systems easily hackable – researchers

Britain's freezing weather has reanimated the issue of insecure building control systems.…

Kategorie: Viry a Červi

Why bother cracking PCs? Spot o' malware on PLCs... Done. Industrial control network pwned

12 Prosinec, 2017 - 11:56
Jumping the air gap

Security researchers have demonstrated a new technique for hacking air-gapped industrial control system networks, and hope their work will encourage the development of more robust defences for SCADA-based systems.…

Kategorie: Viry a Červi

Google's Project Zero reveals Apple jailbreak exploit

12 Prosinec, 2017 - 03:02
Holy Moley! iOS and MacOS were wholly holey

Ian Beer of Google's Project Zero has followed up on a “coming soon” Twitter teaser with a jailbreakable iOS and Mac OS vulnerability.…

Kategorie: Viry a Červi

Archive of 1.4 BEEELLION credentials in clear text found in dark web archive

12 Prosinec, 2017 - 02:05
Find shows people still suck at passwords

A data dump containing over 1.4 billion email addresses, passwords, and other credentials, all in clear text, has been found online by security shop @4iQ.…

Kategorie: Viry a Červi

New Ruski hacker clan exposed: They're called MoneyTaker, and they're gonna take your money

11 Prosinec, 2017 - 18:58
Subtly named group has gone largely unnoticed until now

Security researchers have lifted the lid on a gang of Russian-speaking cybercrooks, dubbed MoneyTaker.…

Kategorie: Viry a Červi