The Register - Anti-Virus

Syndikovat obsah
Biting the hand that feeds IT — sci/tech news and views for the world
Aktualizace: 29 min 9 sek zpět

Leaving your admin interface's TLS cert and private key in your router firmware in 2020? Just Netgear things

35 min 33 sek zpět
Finding sparks debate over bug disclosure – and how do you secure a local gateway's web control panel

Netgear left in its router firmware key ingredients needed to intercept and tamper with secure connections to its equipment's web-based admin interfaces.…

Kategorie: Viry a Červi

As miscreants prey on thousands of vulnerable boxes, Citrix finally emits patches to fill in hijacking holes in Gateway and ADC

4 hodiny 19 min zpět
SD-WAN WANOP will have to wait a few days, though

Citrix has rushed out official fixes for the well-publicised vuln in some of its server products after miscreants were seen deploying their own custom patches that left a backdoor open for later exploitation.…

Kategorie: Viry a Červi

Ubisoft sues handful of gamers for DDoSing <i>Rainbow Six: Siege</i>

5 hodin 35 min zpět
Two Germans, a Nigerian, and a Dutchman walk into a bar. What happens next? A lawsuit, of course

Game developer Ubisoft has lodged a claim against the owners of a website that allegedly sells DDoS attacks against the servers of its best-selling game, Tom Clancy's Rainbow Six: Siege (R6S).…

Kategorie: Viry a Červi

LastPass stores passwords so securely, not even its users can access them

8 hodin 34 min zpět
Login management service sulks in days-long TITSUP* for some

Updated  Password manager LastPass appears to have had a big night out on Friday, to the point where the service needed a lengthy lie down over the weekend. In fact, for some users it is still horizontal.…

Kategorie: Viry a Červi

Hospital hacker spared prison after plod find almost 9,000 cardiac images at his home

10 hodin 28 min zpět
NHS working with cops and ICO to determine if patients must be told

A Stoke-on-Trent hospital administrator has avoided prison after hacking his NHS trust and helping himself to almost 9,000 heart scan images.…

Kategorie: Viry a Červi

To catch a thief, go to Google with a geofence warrant – and it will give you all the details

18 Leden, 2020 - 15:06
Investigators ask Chocolate Factory to help them connect the geographic dots

At 1030 on April 27, 2019, four unidentified individuals attempted to rob a Brinks armored truck parked outside of Michaels, an art supply and home decor store at the Point Loomis Shopping Center in Milwaukee, Wisconsin. To find out who they are, local authorities plan to ask Google.…

Kategorie: Viry a Červi

It's Friday, the weekend has landed... and Microsoft warns of an Internet Explorer zero day exploited in the wild

18 Leden, 2020 - 02:17
Plus, WeLeakInfo? Not anymore!

Roundup  Welcome to another Reg roundup of security news.…

Kategorie: Viry a Červi

'Friendly' hackers are seemingly fixing the Citrix server hole – and leaving a nasty present behind

17 Leden, 2020 - 20:49
Congratulations, you've won a secret backdoor

Hackers exploiting the high-profile Citrix CVE-2019-19781 flaw to compromise VPN gateways are now patching the servers to keep others out.…

Kategorie: Viry a Červi

Stolen creds site WeLeakInfo busted by multinational cop op for data reselling

17 Leden, 2020 - 15:31
One Irishman and one Dutchman both nicked

Two men have been arrested after Britain’s National Crime Agency and its international pals claimed the takedown of breached credentials-reselling website WeLeakInfo.…

Kategorie: Viry a Červi

Unlocking news: We decrypt those cryptic headlines about Scottish cops bypassing smartphone encryption

17 Leden, 2020 - 09:34
New perspective on FBI, Interpol demands for backdoors

Vid  Police Scotland to roll out encryption bypass technology, as one publication reported this week, causing some Register readers to silently mouth: what the hell?…

Kategorie: Viry a Červi

Bad news: Windows security cert SNAFU exploits are all over the web now. Also bad: Citrix gateway hole mitigations don't work for older kit

17 Leden, 2020 - 00:13
Good news: There is none. Well, apart from you can at least fully patch the Microsoft blunder

Vid  Easy-to-use exploits have emerged online for two high-profile security vulnerabilities, namely the Windows certificate spoofing bug and the Citrix VPN gateway hole. If you haven't taken mitigation steps by now, you're about to have a bad time.…

Kategorie: Viry a Červi

Spanking the pirates of corporate security? Try a Plimsoll

16 Leden, 2020 - 11:00
Execs don't care to keep things shipshape if they don't see a return.... so let's MAKE them

Column  On New Year's Eve 2019, the good ship Travelex struck the iceberg of ransomware. That's not a good metaphor, to be honest: when the SS Titanic hit its frozen nemesis, it had the good taste to unambiguously sink in two hours and 40 minutes. Not so Travelex.…

Kategorie: Viry a Červi

Attention security startup founders: Give your fledgling Brit biz a boost with Tech Nation’s free Cyber 2.0 school

16 Leden, 2020 - 09:00
Sign up now: The UK government's scheme to help new companies grow and scale is back

Promo  If you need your new security company to get noticed, Tech Nation’s Cyber programme is back, opening its doors for another cohort of infosec companies looking to scale at speed.…

Kategorie: Viry a Červi

Top Euro court advised: Cops, spies yelling 'national security' isn’t enough to force ISPs to hand over massive piles of people's private data

16 Leden, 2020 - 07:03
Opinion is preliminary, though a good start

Analysis  In a massive win for privacy rights, the advocate general advising the European Court of Justice (ECJ) has said that national security concerns should not override citizens’ data privacy. Thus, ISPs should not be forced to hand over personal information without clear justification.…

Kategorie: Viry a Červi

What do Brit biz consultants and X-rated cam stars have in common? Wide open... AWS S3 buckets on public internet

16 Leden, 2020 - 00:54
Exposed: Intimate... personal details belonging to thousands of folks

A pair of misconfigured cloud-hosted file silos have left thousands of peoples' sensitive info sitting on the open internet.…

Kategorie: Viry a Červi

Yo, sysadmins! Thought Patch Tuesday was big? Oracle says 'hold my Java' with huge 334 security flaw fix bundle

15 Leden, 2020 - 22:33
House of Larry delivers massive update for 93 products

Oracle has released a sweeping set of security patches across the breadth of its software line.…

Kategorie: Viry a Červi

Today's webcast: Hackers don't care if you're big or small. Tune in to find out how to protect your mid-sized biz

15 Leden, 2020 - 09:00
EDR is an SMB's best friend, says F-Secure

Webcast  We don’t want to spook anyone, but… cyber-criminals have been busy.…

Kategorie: Viry a Červi

Updated your WordPress plugins lately? Here are 320,000 auth-bypassing reasons why you should

15 Leden, 2020 - 01:15
Another day, another critical set of flaws

A pair of widely used WordPress plugins need to be patched on more than 320,000 websites to close down vulnerabilities that can be exploited to gain admin control of the web publishing software.…

Kategorie: Viry a Červi

Welcome to the 2020s: Booby-trapped Office files, NSA tipping off Windows cert-spoofing bugs, RDP flaws...

14 Leden, 2020 - 22:33
Grab your Microsoft, Adobe, SAP, Intel, and VMware fixes now

Patch Tuesday  In the first Patch Tuesday of the year, Microsoft finds itself joined by Adobe, Intel, VMware, and SAP in dropping scheduled security updates.…

Kategorie: Viry a Červi

Apple calls BS on FBI, AG: We're totally not dragging our feet in murder probe iPhone decryption. PS: No backdoors

14 Leden, 2020 - 21:28
This isn't the way to make the Cook(ie) crumble

Analysis  Apple has responded to a demand from the United States' Attorney General William Barr that it grant the FBI access to two iPhones used in a recent shooting by carefully calling bullshit on his claims.…

Kategorie: Viry a Červi