.jpg)
Dear etechnews today,
Your weekly security newsletter from theregister.co.uk
for the week ending 22nd September 2014
Advertisement
Nordic IT Security
November 5 2014, Stockholm , Sweden .- http://reg.cx/2c1Z
Claim your Reg reader 30% discount - using code THEREG30 in the booking form: http://reg.cx/2c22
*** Security News ***
Who.is does the Harlem Shake
Blame it on LOLing XSS terroristas
http://www.theregister.co.uk/2014/09/22/whois_does_the_harlem_shake/
Your location info is too revealing: data boffins
Anonymity by a thousand cuts
http://www.theregister.co.uk/2014/09/22/your_location_info_is_too_revealing_data_boffins/
Home Depot ignored staff warnings of security fail laundry list
'Just use cash', former security staffer warns friends
http://www.theregister.co.uk/2014/09/22/home_depot_ignored_staff_warnings_of_security_fail_laundry_list/
CloudFlare ditches private SSL keys for better security
'Sorry, spooks, we can't decrypt this for you'
http://www.theregister.co.uk/2014/09/22/cloudflare_ditches_keys_for_better_security/
New UK.gov DATA SLURPING diplomat to push US telcos to share more
subscriber info
When a DRIP becomes a flood
http://www.theregister.co.uk/2014/09/21/uk_government_appoints_intelligence_and_law_enforcement_data_sharing_special_envoy/
'Kim Kardashian snaps naked selfies with a BLACKBERRY'. *Twitterati
gasps*
More alleged private, nude celeb pics appear online
http://www.theregister.co.uk/2014/09/21/kim_kardashian_naked_selfies_allegedly_leaked_online/
Bargain basement iPhone shoppers BEWARE! eBay exposes users to phishing
vuln
Tat bazaar downplays malicious attack on multiple auctions
http://www.theregister.co.uk/2014/09/21/ebay_phishing_attacks_use_old_iphones_as_bait/
Apple's warrant canary riddle: Cock-up, conspiracy, or anti-Google
point-scoring
Please pick one, Tim
http://www.theregister.co.uk/2014/09/20/apples_warrant_canary_is_either_cockup_conspiracy_or_the_antigoogle_selling_point/
Blood-crazed Microsoft axes Trustworthy Computing Group
Security be not a dirty word, me Satya. But crevice, bigod...
http://www.theregister.co.uk/2014/09/19/ms_shutters_twc/
TOR users become FBI's No.1 hacking target after legal power grab
Be afeared, me hearties, these scoundrels be spying our signals
http://www.theregister.co.uk/2014/09/19/fbi_overseas_hacking_powers/
Russian botnet suspects cuffed over romantic MMS spyware allegs
Avast! Belay that 'RomanticVK' order - there be MONSTERS
http://www.theregister.co.uk/2014/09/19/mobile_botnet_arrests_russia/
Google Apple grapple brings crypto cop block to Android
Belike tears of joy to this old seadog's eyes, laddie
http://www.theregister.co.uk/2014/09/19/google_apple_grapple_brings_crypto_cop_block_to_android/
Samsung unlocks Knox at zero bucks
The race to zero in the mobile device management market has begun
http://www.theregister.co.uk/2014/09/19/samsung_unlocks_knox_at_zero_bucks/
Google bloke Beer buzzes iOS 8, OS X in bug-busting bonanza bash
Apple's turn to get the drinks in, amirite?
http://www.theregister.co.uk/2014/09/19/apple_crushes_bugs_in_ithings_os_x/
Home Depot: 56 million bank cards pwned by malware in our tills
That's about 50 per cent bigger than the Target tills mega-hack
http://www.theregister.co.uk/2014/09/18/home_depot_56m_cards_compromised/
Snowden's NSA leaks have galvanised the storage world
Vendors raise their game after gov securo-busting revealed
http://www.theregister.co.uk/2014/09/18/storage_security/
Early result from Scots indyref vote? NAW, Jimmy - it's a SCAM
Anyone claiming to know before tomorrow is telling porkies
http://www.theregister.co.uk/2014/09/18/scottish_independence_vote_scam_warning/
China hacked US Army transport orgs TWENTY TIMES in ONE YEAR
FBI et al knew of nine hacks - but didn't tell TRANSCOM
http://www.theregister.co.uk/2014/09/18/china_hacked_us_army_twenty_times_in_one_year/
Jihadi terrorists DIDN'T encrypt their comms 'cos of Snowden leaks
Intel bods' analysis concludes 'no significant change' after whistle
was blown
http://www.theregister.co.uk/2014/09/18/jihadist_comms_post_snowden/
Comprehensive guide to obliterating web apps published
Open Web App Security Project releases new app dev opus
http://www.theregister.co.uk/2014/09/18/guide_to_obliterating_web_apps_published/
Apple's Cook: We have never allowed g-men access to Apple servers
Only hackers can see your nude selfies, not feds
http://www.theregister.co.uk/2014/09/18/cook_explains_apple_privacy_policy_denies_helping_feds/
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop
tools are easier?
http://www.theregister.co.uk/2014/09/18/spies_arent_superheroes/
Boffins plot global (browser) cookie crumb trail
Patchwork regulation creates silos of data and worldwide web of data
bakers
http://www.theregister.co.uk/2014/09/18/boffins_grapple_with_tracker_geography/
BitTorrent's peer-to-peer chat app Bleep goes live as public alpha
A good day for privacy as invisble.im also reveals its approach to
untraceable chats
http://www.theregister.co.uk/2014/09/18/bleep_goes_live_as_public_alpha/
Critical Adobe Reader and Acrobat patches FINALLY make it out
Eight vulns healed, including XSS and DoS paths
http://www.theregister.co.uk/2014/09/17/adobe_reader_delayed_patch_released/
UK.gov lobs another fistful of change at SME infosec nightmares
Senior Lib Dem in 'trying to be relevant' shocker. It's only taxpayers'
money, after all
http://www.theregister.co.uk/2014/09/17/sme_cyber_crime_fund_uk/
Citadel Trojan phishes its way into petrochem firm's webmail
Middle Eastern webmail servers popped
http://www.theregister.co.uk/2014/09/17/petrochem_citadel_falls/
Credit card cutting flaw could have killed EVERY AD on Twitter
Party-pooper gets $2800 for ad-busting bug
http://www.theregister.co.uk/2014/09/17/credit_card_cutting_flaw_could_have_killed_every_ad_on_twitter/
Cisco sprinkles Sourcefire goodies on ASA firewalls
FirePOWER can be licensed into existing kit
http://www.theregister.co.uk/2014/09/17/cisco_sprinkles_sourcefire_goodies_on_asa_firewalls/
Amazon REINTRODUCES Kindle swindle vulnerability
Malware gives book thief grief
http://www.theregister.co.uk/2014/09/17/kindle_swindle_makes_book_thief_grief/
Got your NUDE SELFIES in the cloud? Two-factor auth's your best bet for
securing them
Infosec made simple: 2FA, its good points and bad points
http://www.theregister.co.uk/2014/09/16/in_defence_of_two_factor_authentication/
Rejoice, Blighty! UK is the TOP of the WHOLE WORLD ... for PHISHING
Thanks, gullible chumps - now everyone knows we're a soft touch
http://www.theregister.co.uk/2014/09/16/study_finds_uk_worlds_top_phishing_spot/
Israeli spies rebel over mass-snooping on innocent Palestinians
'Disciplinary treatment will be sharp and clear' vow spy-chiefs
http://www.theregister.co.uk/2014/09/16/idf_spy_refuseniks/
Attackers tapping on SNMP door to see if it's open
SANS spots new, dumb attack
http://www.theregister.co.uk/2014/09/16/attackers_tapping_on_snmp_door_to_see_if_its_open/
THREE QUARTERS of Android mobes open to web page spy bug
Metasploit module gobbles KitKat SOP slop
http://www.theregister.co.uk/2014/09/16/three_quarters_of_droid_phones_open_to_web_page_spy_bug/
'Speargun' program is fantasy, says cable operator
We just might notice if you cut our cables
http://www.theregister.co.uk/2014/09/16/speargun_program_is_fantasy_says_cable_operator/
Hackers-for-hire raided 300 banks, corporates for TWELVE YEARS
Phony cracker biz looked legit
http://www.theregister.co.uk/2014/09/16/hackersforhire_raided_300_banks_corporates_for_twelve_years/
I saved Bitcoin and the PERFECT DRAFT OF HISTORY, says Assange
Heat:kitchen equation saw WikiLeaks decide not to accept BTC donations
until currency could flourish
http://www.theregister.co.uk/2014/09/16/i_saved_bitcoin_and_the_perfect_draft_of_history_says_assange/
Bank IT bod accused of stealing $40 MEEELLION from employer
Turns out there may actually be a Nigerian 'prince' out there with cash
http://www.theregister.co.uk/2014/09/16/nigerian_banks_it_worker_accused_of_stealing_40_meeellion_from_employer/
Chinese 'Sogou Explorer' browser sends URLs to parts unknown
APNIC sniffs the digital exhaust and finds 1 in 400 'net users have
stalkers
http://www.theregister.co.uk/2014/09/16/sniffing_the_digital_exhaust_1_in_400_net_users_have_stalkers/
Yawn, Wikileaks, we already knew about FinFisher. But these software
binaries...
Latest Assange leakgasm includes full copies of spyware
http://www.theregister.co.uk/2014/09/15/wikileaks_leaks_finfisher_docs_binaries/
Freenode IRC users told to change passwords after securo-breach
Miscreants probably got in, you guys know the drill by now
http://www.theregister.co.uk/2014/09/15/freenode_irc_users_warned_breach/
Hey, scammers. Google's FINE with your dodgy look-a-like apps
Google Apps scripts could fool ANYONE, warns engineer
http://www.theregister.co.uk/2014/09/15/attention_scammers_googles_fine_with_your_dodgy_lookalike_apps/
Infosec geniuses hack a Canon PRINTER and install DOOM
Internet of Stuff securo-cockups strike yet again
http://www.theregister.co.uk/2014/09/15/hacking_printers_to_play_doom/
Snowden, Dotcom, throw bombs into NZ election campaign
Claim of tapped undersea cable refuted by Kiwi PM as Kim claims
extradition plot
http://www.theregister.co.uk/2014/09/15/snowden_dotcom_throw_bombs_into_nz_election_campaign/
*** Whitepaper ***
Protecting users from Firesheep and other Sidejacking attacks with SSL
Discussing the vulnerabilities inherent in Wi-Fi networks, and how using TLS/SSL for your entire site will assure security.
http://whitepapers.theregister.co.uk/d/da4/9e7f3/7b2/1d692798?td=week_sec_e
------------------------------------------------------------------------
This email was sent to garn14.tech@blogger.com
To change your email or your email subscriptions
http://account.theregister.co.uk/login/
To unsubscribe from all The Register newsletters
http://account.theregister.co.uk/unsubscribe/649203/acc978a1
The Register and its contents are Copyright © 2014 Situation Publishing.
All rights reserved.
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment