Iain Thomson

Contact Mail Follow Twitter RSS feed
An IBM office

One of IBM's latest financial figures was off by four cents today – so down go its shares

Revenues for IBM have risen for its second successive financial quarter – after more than five years of declining sales – but only on a constant currency basis. Profit, however, dropped and Wall Street hammered Big Blue's stock price in after-hours trading. The venerable tech titan reported $19.1bn in global sales in the first …
Iain Thomson, 17 Apr 2018
Lisa Su

Car-crash television: 'Excuse me ma'am, do you speak English?' 'Yes I do,' replies AMD's CEO

Some of us love watching Formula One for the prangs and crashes – but we don't really expect them to happen before the race even begins. Yet, that's the only way to describe a live TV interview at the Chinese Formula One Grand Prix on Sunday, which went embarrassingly wrong. Former Formula One driver and Sky Sports telly …
Iain Thomson, 16 Apr 2018
Password

Android apps prove a goldmine for dodgy password practices

Bsides SF An analysis of free Android apps has shown that developers are leaving their crypto keys embedded in applications, in some cases because the software developer kits install them by default. Will Dormann, software vulnerability analyst at the CERT Coordination Center (CERT/CC), told the BSides conference in San Francisco that …
Iain Thomson, 16 Apr 2018
money

So you’ve got a zero-day – do you sell to black, grey or white markets?

Bsides SF Barely a decade ago the mere idea of selling vulnerabilities was highly controversial. Today the market is mature, but increasingly complicated - researchers can now choose between making lots of money, being moral and making less, or going fully black. The 2015 pwning of Italian surveillance-ware-for-governments vendor …
Iain Thomson, 15 Apr 2018
casino_security_648

Router ravaging, crippling code, and why not to p*ss off IT staff

Roundup It has been a busy week for security, with the CYBERUK 2018 conference in the UK and the industry gearing up for BSides and the RSA conference in San Francisco next week. But there have been a bunch of smaller stories that may have slipped under your radar, plus all the other bits and pieces we've covered this week. Wreckin' …
Iain Thomson, 14 Apr 2018
prostitute

Backpage.com swoop: Seven bods hit with 93 charges as AG Sessions blasts alleged child sex trafficking cyber-haven

After the Feds swooped on the Backpage.com website on Friday, they promised to outline why. Now on Monday, they have unsealed a 93-count indictment of seven of the dot-com's staff and investors, as well as seizing the domain name. Backpage carried classifieds for things like jobs and cars as well as adverts for people of …
Iain Thomson, 10 Apr 2018
man peers at mobile/cell with bewildered expression

T-Mobile Austria stores passwords as plain text, Outlook gets message crypto, and more

Roundup While Facebook caught most of the security-related flak this week, there were other infosec stories out there. Here's a summary of stuff happening, beyond what we've already covered. Don't get pwned. Word. Dude Microsoft, which used to be a byword for insecure software until Bill Gates' trustworthy computing memo that turned …
Iain Thomson, 7 Apr 2018
QueSST

What's silent but violent and costs $250m? Yes, it's Lockheed Martin's super-quiet, supersonic X-plane for NASA

Vid Supersonic air travel over land has been stymied since the 1960s due to the rather annoying sonic booms generated by speedy airplanes. Now, NASA, having given it some thought, has ordered a new airframe that could reduce the noise levels down to those of standard street traffic. If successful, Uncle Sam's boffins want to …
Iain Thomson, 3 Apr 2018
Pennies in a jar. Photo via Shutterstock

Block blocked: Google to banish cryptominers from Chrome Web Store

Google will throw cryptocurrency-mining extensions out of its Chrome Web Store after finding so many were badly behaved. From Monday, no more add-ons that churn out fun bucks will be added to the cyber-store's shelves, and by July, those listed in the code bazaar will be removed. The ads giant allowed plugins onto the browser …
Iain Thomson, 2 Apr 2018
Tiangong-1 on FHR's radar

Doomed Chinese space lab Tiangong-1 crashes into watery Pacific grave

China's first space station flamed out in the atmosphere and any remaining fragments have now been consigned to a watery grave in the South Pacific. The Tiangong-1, which translates to Heavenly Palace, has been tumbling out of control in low-Earth orbit for over a year after an unspecified fault crippled it in 2016. US …
Iain Thomson, 2 Apr 2018
Passenger plane exploding on the gournd

It's baaack – WannaCry nasty soars through Boeing's computers

WannaCry, the Windows ransomware that took off last May around the world, has landed on some computers belonging to US aircraft and weaponry manufacturer Boeing. “All hands on deck,” said Mike VanderWel, chief engineer at Boeing Commercial Airplane production engineering, in a memo seen earlier today by the Seattle Times. “It …
Iain Thomson, 28 Mar 2018
JWST

NASA stalls $8bn James Webb Space Telescope again – this time to 2020

The launch date for the James Webb Space Telescope has been kicked back a year to 2020, NASA confirmed during a press conference on Tuesday. The instrument – a 6,200kg (13,668lb) telescope designed to look at stars formed soon after the Big Bang as well as closer objects – was scheduled to launch into the heavens in October …
Iain Thomson, 27 Mar 2018
Lewis Hamilton, left, and Kimi Raikkonen

Software gremlin robs Formula 1 world champ of season's first win

Formula One world champion Lewis Hamilton was left fuming after a software glitch denied him an easy win in the first race of the 2018 season on Sunday. Hamilton held a comfortable lead in Australia's Melbourne grand prix from the start. Then third-place Ferrari driver Sebastian Vettel was able to temporarily take pole …
Iain Thomson, 26 Mar 2018
spy

Guccifer 2.0 outed, Kaspersky slammed, Oz radio hacker in the slammer, and more

Roundup Here's your easy-to-digest round up of information security news beyond everything we've already covered this week. DNC hacker outed as Russian 007 Guccifer 2.0, the hacker busy stealing and leaking emails from US Democratic Party servers amid the 2016 presidential elections, turned out, surprise, surprise, to be a Russian …
Iain Thomson, 24 Mar 2018
cloud

US Congress quietly slips cloud-spying powers into page 2,201 of spending mega-bill

Updated For months now, US Congress has mulled new laws to strengthen Feds' powers to access American citizens' private messages and files stored on computers overseas. Now, rather than actually debate and refine such legislation, lawmakers have decided to tack it onto the massive 2018 Omnibus Spending Bill [PDF] and seek to pass it …
Iain Thomson, 23 Mar 2018
Hawking

Prof Stephen Hawking's ashes will be interred alongside Sir Isaac Newton, Charles Darwin

The ashes of British physics ace Professor Stephen Hawking will be placed in Westminster Abbey after a special service of thanksgiving for his life. Hawking died at the age of 76 last week after a long struggle with motor neuron disease and was cremated. His ashes will be placed in the abbey, in London, England, between the …
Iain Thomson, 22 Mar 2018
theft

Now that's a bad trip: 880k credit cards 'likely' stolen by Orbitz hackers

Vacation-booking biz Orbitz has warned that sensitive details on as many as 880,000 credit cards have "likely" been stolen from its servers by hackers. In a statement today, US-based Orbitz said it discovered evidence of an intrusion on one of its legacy platforms on March 1, and called in a third-party forensics team. It now …
Iain Thomson, 20 Mar 2018
raid

FBI raids home of spy sat techie over leak of secret comms source code on Facebook

The FBI has raided the home of US intelligence contractor John Weed who is suspected of leaking classified blueprints online via a fake Facebook account. On Monday, the Feds confirmed to The Register they have executed a search warrant at the Virginia home of John Glenn Weed, who worked for the National Reconnaissance Office …
Iain Thomson, 20 Mar 2018

Facebook confirms Cambridge Analytica stole its data; it’s a plot, claims former director

Analysis Facebook has “suspended” any business with controversial analytics firm Cambridge Analytica (CA) and its holding company, following claims by CA’s former director that the social media ad slinger’s data was purloined and used for political dirty tricks. In a statement Facebook said that in April 2015 Dr Aleksandr Kogan, a …
Iain Thomson, 18 Mar 2018

AMD security flaw saga, browsers broken, Lamo dead at 37, and more

Roundup The lingering fallout of security flaws in AMD processor chipsets has dominated the news this week, and it ain't over yet. The initial flaw disclosure on Tuesday was short on details and high on hype, and some thought that either the issue was massively overhyped or was being used to try and manipulate AMD's stock price. The …
Iain Thomson, 17 Mar 2018
fire

Chemical burns, explosive fires, they all come free with Amazon power packs

The US Consumer Product Safety Division has issued a recall notice for six types of lithium-ion battery packs sold by AmazonBasics. The batteries were sold by Bezos' bunch between December 2014 and July 2017 for prices ranging from $9 to $40 and range from larger 16,100 mAh power bricks with integrated USB cables down to …
Iain Thomson, 14 Mar 2018
Stupid computer

Russian anti-antivirus security tester pleads guilty to certifying attack code

A Russian coder who ran and franchised a dark web service that optimized malware and checked it against antivirus engines has pled guilty to one charge of conspiracy and one charge of aiding and abetting computer intrusion. Jurijs Martisevs was arrested while on a trip to Latvia and extradited to the US after the authorities …
Iain Thomson, 14 Mar 2018
airplane just kidding shot

Air Canada's network soars back up after Monday morning death dive

The famed politeness of Canadians was put to the test on Monday after the nation's largest airline suffered a massive computer outage, leaving travelers stranded. The outage occurred during the Monday morning rush hour and left staff unable to check-in passengers or their luggage, and communications with the airline's call …
Iain Thomson, 12 Mar 2018
Car crash

Auto manufacturers are asleep at the wheel when it comes to security

Cars are getting smarter every year but their increasing computational power isn’t being backed up by good IT security practices – hacking them is child’s play. That’s the conclusion of a series of speakers at the Kaspersky Security Analyst Summit. These security researchers have demonstrated how easy it is to introduce …
Iain Thomson, 10 Mar 2018

Slingshot malware uses cunning plan to find a route to sysadmins

If you’re trying to hack an organization then pwning the sysadmin's machine gives you the keys to the kingdom, and an advanced malware writer has found a clever way to do just that. The malware, dubbed Slingshot by researchers at Kaspersky Lab and showcased at the firm’s Security Analyst Summit, resides in Mikrotik routers – …
Iain Thomson, 9 Mar 2018

Biting the hand that feeds IT © 1998–2018