nav search
Data Center Software Security DevOps Business Personal Tech Science Emergent Tech Bootnotes
BOFH
Lectures

Security

Intel didn't tell CERTS, govs, about Meltdown and Spectre because they couldn't help fix it

Letters to Congress detail the plan to keep CPU flaws secret

OpenBSD releases Meltdown patch

And now to see it's an unwelcome imposition or a mere inconvenience

That microchipped e-passport you've got? US border cops still can't verify the data in it

Despite demanding world+dog gets one, Uncle Sam lacks tools to check crypto-signatures

uTorrent file-swappers urged to upgrade after PC hijack flaws fixed

Don't say we didn't warn you

Hey, you. App dev. You like secure software? Let's learn from Tinder, Facebook's blunders

API holes would let miscreants spy on sexting lovers

Guys, you're killing us! LA Times homicide site hacked to mine crypto-coins on netizens' PCs

And they say there's no money to be made in newspapers

Guess who else Spectre is haunting? Yes, it's AMD. Four class-action CPU flaw lawsuits filed

Punters not happy with handling of vulnerability confessions

If at first you don't succeed, you're likely Intel: Second Spectre microcode fix emitted

Updated Mitigations for chip design vulnerabilities, take two

World's cyber attacks hit us much harder in past year – major infosec chief survey

Cisco report: Smacked orgs forked out $500k due to attacks

Bad news: 43% of login attempts 'malicious' Good news: Er, umm...

Also bad: Unpatched systems, unsecured APIs, IoT gear, anthrax candy, bottomless pits

UK local gov: 37 cyber attacks a minute but little mandatory training

Campaigners blame gov bods' growing hunger for big data

Year-old vuln turns Jenkins servers into Monero mining slaves

The hip world of continuous integration meets the dark world of crypto-jacking

Google reveals Edge bug that Microsoft has had trouble fixing

Oh great - because Google's explained how to make Edge run dodgy code

Crims pull another SWIFT-ie, Indian bank stung for nearly US$2m

City Union Bank now reckons it has ‘adequate enhanced security’

Australia's new insta-pay scheme has insta-lookup of any user's phone number

Updated PayID operator says it's a feature that sends money to the right person. It's a bug that harvests data, say others

Global security crackdown, a host of code nasties, Brit cops mocked, and more

Roundup It's the week in security

Hands up who HASN'T sued Intel over Spectre, Meltdown chip flaws

Chipzilla says class-action lawsuit tally stands at 32

Mueller bombshell: 13 Russian 'troll factory' staffers charged with allegedly meddling in US presidential election

Ruskies stole citizen IDs to spread discord – indictment

PM urged to protect data flows post-Brexit ahead of Munich speech

Security services facing 'curtailed' EU info sharing if UK doesn't agree terms

UK.gov: Psst. Belgium. Buy these Typhoon fighter jets from us, will you?

And have some cyber goodness too – just don't mention the Belgacom hack

Russians behind bars in US after nicking $300m+ in credit-card hacks

Pair partly responsible for largest bank-card theft ring in American history

Techno-senator tells Tinder to hook up its app with better security

Swipe-a-shag tool gets the dreaded sternly-worded-letter treatment from Wyden

Former ICE top lawyer raided US govt database to steal aliens' identities

While kicking folks out of 'Murica, Raphael A. Sanchez committed fraud in their names

That terrifying 'unfixable' Microsoft Skype security flaw: THE TRUTH

Oh yeah, we patched that in October, Windows giant yawns

Dell EMC squashes pair of VMAX virtual appliance bugs

vApp Manager contained undocumented default account

Essex black hat behind Cryptex and reFUD gets two years behind bars

Goncalo Esteves sobbed as he was sentenced

UK names Russia as source of NotPetya, USA follows suit

Updated 'Almost certain' assessment enough for official blast from Foreign Office

PCI Council and X9 Committee to combine PIN security standards

One PIN to rule them all, one PIN to find them, one PIN to rule them all and in the darkness bind them

Hate to ruin your day, but... Boffins cook up fresh Meltdown, Spectre CPU design flaw exploits

And upcoming hardware changes may not be enough to kill off these security bugs

US govt staffers use personal gear on work networks, handle biz docs on the reg – study

As in on the regular, not... oh never mind

Hua-no-wei! NSA, FBI, CIA bosses put Chinese mobe makers on blast

No probs, says Huawei: It's a big world, we don't need America

Crypto-gurus: Which idiots told the FBI that Feds-only backdoors in encryption are possible?

Brilliant boffins back bullsh*tting bureau bollocking

Three in hospital after NSA cops open fire on campus ram-raid SUV

Roses are red, spy agencies are black, US g-men don't fsck around when under attack

Roses are red, Kaspersky is blue: 'That ban's unconstitutional!' Boo hoo hoo

New front opens in Russian firm's legal fight with US gov

From tomorrow, Google Chrome will block crud ads. Here's how it'll work

Consider it a wakeup call for websites – it's time to end the scourge of awful banners

South China waters are red, Brit warships are blue, HMS Sutherland's sailing there

And Queen Lizzie will too

Microsoft working to scale Blockchain for grand distributed ID scheme

Someone's got to get it scaling!

OpenSSL alpha adds TLS 1.3 support

Shambling corpse of ancient, shoddy, buggy, crypto shoved towards the grave

Meltdown-and-Spectre-detector comes to Windows Analytics

After flubbing its early responses, Microsoft's thrown sysadmins a bone

Roses are red, Windows error screens are blue. It's 2018, and an email can still pwn you

Patch Tuesday Here's a bumper crop of security fixes you do not want to miss

While Western Union wired customers' money, hackers transferred their personal deets

Outside storage outfit blamed for data leak blunder

Shock horror! Telegram messaging app proves insecure yet again!

Unicode clumsiness allowed months of malware installations

The Register - Independent news and views for the tech community. Part of Situation Publishing