The Register - Anti-Virus

Syndikovat obsah
Biting the hand that feeds IT — sci/tech news and views for the world
Aktualizace: 23 min 49 sek zpět

DDoS sueball, felonious fonts, leaky Android file manager, blundering building security, etc etc

19 Leden, 2019 - 14:37
Plus, Safari security foiled by… a finger swipe?

Roundup  This week we wrangled with alleged Russian election meddling, hundreds of millions of username-password combos spilled online, Oracle mega-patches, and claims of RICO swap-gangs.…

Kategorie: Viry a Červi

The Iceman cometh, his smartwatch told the cops: Hitman jailed after gizmo links him to Brit gangland slayings

19 Leden, 2019 - 09:01
Killer jailed for life after fitness kit data tips off plod

Avid runner and hitman Mark Fellows was this week found guilty of murder after being grassed up by his Garmin watch.…

Kategorie: Viry a Červi

US midterms barely over when Russians came knocking on our servers (again), Democrats claim

18 Leden, 2019 - 21:05
Лучшая защита – нападение?

Russian hackers attempted to infiltrate the Democratic National Committee (DNC) just after the US midterm elections last year, according to a new court filing.…

Kategorie: Viry a Červi

Microsoft partner portal 'exposes 'every' support request filed worldwide' today

18 Leden, 2019 - 14:47
No customer data visible but hell's bells, Redmond, what have you borked now?

Exclusive  Alarmed Microsoft support partners can currently view support tickets submitted from all over the world, in what appears to be a very wide-ranging blunder by the Redmond-based biz.…

Kategorie: Viry a Červi

I used to be a dull John Doe. Thanks to Huawei, I'm now James Bond!

18 Leden, 2019 - 11:25
We'll know for sure when Huawei reveals a shoe-shaped smartphone

Something for the Weekend, Sir?  The name's McLeod. Alessandro McLeod. I am a spy for the secret services.…

Kategorie: Viry a Červi

Microsoft blue biz bug bounty bonanza beckons

18 Leden, 2019 - 07:22
Azure DevOps Services invites hackers to test its limits

There's more money to be made from bug hunting in Microsoft code after Redmond announced its 10th active bug hunting reward scheme, the Azure DevOps Bounty Program.…

Kategorie: Viry a Červi

Old bugs, new bugs, red bugs … yes, it's Oracle mega-update day again

18 Leden, 2019 - 03:56
Out of 284 flaws, 33 are rated critical. Big Red admins have big patches ahead

Oracle admins, here's your first critical patch advisory for 2019, and it's a doozy: a total of 284 vulnerabilities patched across Big Red's product range, and 33 of them are rated “critical”.…

Kategorie: Viry a Červi

Got a Drupal-powered website? You may want to get patching now...

18 Leden, 2019 - 02:45
Open-source CMS gets a pair of critical fixes

Drupal has issued a pair of updates to address two security vulnerabilities in its online publishing platform. The vulns are a little esoteric, and will not affect most sites, but it's good to patch just in case you later add functionality that can be exploited.…

Kategorie: Viry a Červi

Twitter. Android. Private tweets. Pick two... Account bug unlocked padlocked accounts

18 Leden, 2019 - 01:01
Cock-up went unnoticed for two Olympics, one World Cup, an EU referendum, and a US presidential election

Twitter has fessed up to a flaw in its Android app that, for more than four years, was making twits' private tweets public. The programming blunder has been fixed.…

Kategorie: Viry a Červi

Top GP: Medical app Your.MD's data security wasn't my remit

17 Leden, 2019 - 18:15
Prof Maureen Baker told tribunal info security and clinical safety are two separate things

The founders of medical symptom-checker app Your.MD knew that a number of key medical information databases were "open to anyone who knows the URL", emails seen by a London tribunal have revealed.…

Kategorie: Viry a Červi

Happy Thursday! 770 MEEELLLION email addresses and passwords found in yuge data breach

17 Leden, 2019 - 12:50
Now is a good time to get a password manager app

Infosec researcher Troy Hunt has revealed that more than 700 million email addresses have been floating around “a popular hacker forum” - along with a very large number of plain text passwords.…

Kategorie: Viry a Červi

South Korea reckons mystery hackers cracked open advanced weapons servers

17 Leden, 2019 - 09:01
No idea who could have been behind this one...

The South Korea Ministry of National Defense says 10 of its internal PCs have been compromised by North Korea unknown hackers.…

Kategorie: Viry a Červi

$24m in fun bux stolen from crypto-mogul. Now he fires off huge fraud charge. Like, RICO, say?

17 Leden, 2019 - 01:29
Lawsuit claims coin thief was part of a gang targeting crypto whales

The victim of a $24m cryptocurrency heist is suing his assailants in what is believed to be the first ever RICO claim involving digital currency.…

Kategorie: Viry a Červi

Lowjax city: Researchers crack open notorious Fancy Bear rootkit

16 Leden, 2019 - 19:04
UEFI malware has been in the wild for more than two years

The Fancy Bear hacking group's Lojax rootkit is far from a one-off tool, and may have been active in the wild for years before it was first reported.…

Kategorie: Viry a Červi

Epic's Fortnite fail: Ancient UT2004 server used for login-stealing proof-of-concept

16 Leden, 2019 - 15:13
A tale of XSS, SQL injection and OAuth implementation

Crafty infosec bods exploited XSS vulns on dusty corners of Epic Games’ web infrastructure to steal Fortnite gamers’ login tokens and compromise their accounts – using a genuine Epic Games URL to phish their marks.…

Kategorie: Viry a Červi

Microsoft sends a raft of Windows 10 patches out into the Windows Update ocean

16 Leden, 2019 - 14:35
Whoa - is that an Access 97 iceberg dead ahead?

Microsoft has released a second raft of fixes for Windows 10 following the monthly Patch Tuesday excitement last week. It has also issued some fixes for its latest Windows Insider build.…

Kategorie: Viry a Červi

EDGAR Wrong: Ukrainians hacked SEC, stole docs for inside trading, says Uncle Sam

16 Leden, 2019 - 00:55
Crooks banked $270,000 in just one move, it is claimed

A pair of Ukranian hackers broke into America's financial watchdog to swipe insider info for stock traders, it is claimed.…

Kategorie: Viry a Červi

'It's like they took a rug and covered it up': Flight booking web app used by scores of airlines still vuln to attack – claim

15 Leden, 2019 - 23:26
Security hole can still be exploited to tamper with journeys, warn infosec bods

Exclusive  A security hole in a widely used airline reservation system remains open to exploit, allowing miscreants to edit strangers' travel details online, The Register has learned. A fix to close the vulnerability was incomplete, and thus ineffective, it is claimed.…

Kategorie: Viry a Červi

Yes, you can remotely hack factory, building site cranes. Wait, what?

15 Leden, 2019 - 17:36
Authentication is simply AWOL for remote RF control equipment, says Trend Micro

Did you know that the manufacturing and construction industries use radio-frequency remote controllers to operate cranes, drilling rigs, and other heavy machinery? Doesn't matter: they're alarmingly vulnerable to being hacked, according to Trend Micro.…

Kategorie: Viry a Červi

Want to get rich from bug bounties? You're better off exterminating roaches for a living

15 Leden, 2019 - 06:54
Before you outsource security to strangers, try boosting internal cybersecurity skills

Security researchers looking to earn a living as bug bounty hunters would to do better to pursue actual insects.…

Kategorie: Viry a Červi