Iain Thomson

Contact Mail Follow Twitter RSS feed
fingers

Global security crackdown, a host of code nasties, Brit cops mocked, and more

Roundup Here's a summary of this week's security news beyond what we've already reported. At the Munich Security Conference in Germany, major companies, including Siemens, Airbus, Allianz, Daimler Group, IBM, NXP, SGS and Deutsche Telekom, signed a Charter of Trust for cybersecurity. The signatories were joined by Elżbieta Bieńkowska …
Iain Thomson, 17 Feb 2018
shooter

Kentucky gov: Violent video games, not guns, to blame for Florida school massacre

The governor of the US state of Kentucky, Matt Bevin, has blamed violent video games for the Florida high-school shooting that left 17 people dead this week. In an interview Bevin, who is – quelle surprise – endorsed by the National Rifle Association, said that the shooting wasn't linked to the ability of the shooter to …
Iain Thomson, 16 Feb 2018
jail

Russians behind bars in US after nicking $300m+ in credit-card hacks

Two Russian criminals have been sent down in America after pleading guilty to helping run the largest credit-card hacking scam in US history. Muscovites Vladimir Drinkman, 37, and Dmitriy Smilianets, 34, ran a massive criminal ring that spent months hacking companies to get hold of credit and debit card information. They then …
Iain Thomson, 16 Feb 2018
pockets

Oh sh-itcoin! Crypto-dosh swap-shop Coinbase empties punters' bank accounts

Digital currency exchange Coinbase said it inadvertently charged punters for transactions they never made, effectively draining money from their bank accounts. It has promised to refund the money taken. For the last few days, netizens have been complaining that funds had vanished from bank accounts linked to Coinbase without …
Iain Thomson, 16 Feb 2018
passport

When it absolutely, positively needs to be leaked overnight: 120k FedEx customer files spill from AWS S3 silo

Another day, another unsecured Amazon Web Services S3 storage bucket spilling secrets onto the public internet. This time it's a misconfigured AWS cloud silo belonging to FedEx, which openly exposed an archive of more than 119,000 scanned documents – including passports and drivers licenses – plus customer records including …
Iain Thomson, 15 Feb 2018

Roses are red, Ajit Pai is tickled. Broadband from SpaceX gets him out of a pickle

SpaceX's plans to become a global ISP took a big step forward after Ajit Pai – the boss of America's comms watchdog, the FCC – gave his blessing for Elon Musk's biz to pop broadband-beaming satellites into orbit. The rocketry upstart wants to build a network of low-Earth orbit birds named Starlink that will provide high-speed …
Iain Thomson, 15 Feb 2018
Wray

Hua-no-wei! NSA, FBI, CIA bosses put Chinese mobe makers on blast

Don't trust the Chinese – that seemed to be the theme at Tuesday's open US Senate Intelligence Committee hearings on Capitol Hill. The directors of the NSA, CIA, FBI, National Intelligence, Defense Intelligence Agency and National Geospatial-Intelligence Agency were asked if they would personally use a smartphone from Huawei …
Iain Thomson, 14 Feb 2018
suv

Three in hospital after NSA cops open fire on campus ram-raid SUV

Three people are in hospital after a car rammed a barrier at the NSA headquarters in Fort Meade, Maryland, today at around 0655 ET (0355 PT, 1155 UTC). A trio of blokes tried to drive onto the US intelligence agency's campus in a rented SUV, and were intercepted by spy cops, according to the FBI. The vehicle's driver was hurt …
Iain Thomson, 14 Feb 2018
Train crash

Rogue IT admin goes off the rails, shuts down Canadian train switches

A former IT administrator at the Canadian Pacific Railway has been jailed for 366 days for sabotaging the organization's computer network. Christopher Victor Grupe, 46, had a rocky relationship with his employers: in December 2015, he was suspended for 12 days for insubordination and just not making the grade as a sysadmin. …
Iain Thomson, 14 Feb 2018
Western Union

While Western Union wired customers' money, hackers transferred their personal deets

Western Union has confirmed one of its IT suppliers was hacked, and that customer information was exposed to miscreants. A Register reader, who wished to remain anonymous, showed us a copy of a letter dated January 31 that he received from the money-transfer outfit. The missive admitted that a supposedly secure data storage …
Iain Thomson, 13 Feb 2018
hacker

Shock horror! Telegram messaging app proves insecure yet again!

Telegram has fixed a security flaw in its desktop app that hackers spent several months exploiting to install remote-control malware and cryptocurrency miners on vulnerable Windows PCs. The programming cockup was spotted by researchers at Kaspersky in October. It is believed miscreants have been leveraging the bug since at …
Iain Thomson, 13 Feb 2018
Doh image via Shutterstock

Equifax hack worse than previously thought: Biz kissed goodbye to card expiry dates, tax IDs etc

Last year, Equifax admitted hackers stole sensitive personal records on 145 million Americans and hundreds of thousands in the UK and Canada. The outfit already said cyber-crooks "primarily" took names, social security numbers, birth dates, home addresses, credit-score dispute forms, and, in some instances, credit card numbers …
Iain Thomson, 13 Feb 2018
lightfoot

NASA budget shock: Climate studies? GTFO. We're making the Moon great again, says Trump

President Trump's administration has handed down a budget for 2019 to NASA – and it effectively kills off key projects in exchange for a vague promise to go back to the Moon. For the year, America's space agency has been awarded $19.9bn, around $500m more than the previous year, albeit with significant changes of focus. The …
Iain Thomson, 12 Feb 2018
hacker

NSA code backported, crims cuffed, leaky AWS S3 buckets, and more

Roundup Here's a roundup of this week's security news, beyond what we've already covered, to kickstart your weekend. You dirty RAT Scumbags could, once upon a time, buy a remote access trojan called Luminosity Link for about $40, and get a piece of malware that, when installed on victims' PCs, would spy on their activities, disable …
Iain Thomson, 10 Feb 2018
clench

No sh*t, Sherlock! Bloke suspected of swallowing drug stash keeps colon schtum for 22 DAYS

A suspected drug dealer accused of swallowing his stash has become internet famous – after refusing to take a dump, and thus provide the cops their evidence, for 22 DAYS and counting. The 24-year-old fella was arrested by Essex police on January 17 in Harlow, England. He is believed to have wolfed down several packages of …
Iain Thomson, 9 Feb 2018
Dr Strangelove bomb

Ruskie boffins blasted for using nuke bomb lab's supercomputer to mine crypto-rubles

Engineers at Russia's top nuclear weapons lab have been arrested – after the eggheads were caught using one of the supercomputers to mine cryptocurrency. The government-run research facility at Sarov, southeast of Moscow, has been developing nuke bomb technology since the 1940s. It is a closed town, meaning you need a permit …
Iain Thomson, 9 Feb 2018
wifi

Wish you could log into someone's Netgear box without a password? Summon a &genie=1

If you're using a Netgear router at home, it's time to get patching. The networking hardware maker has just released a tsunami of patches for a couple of dozen models of its kit. The flaws were found by Martin Rakhmanov at infosec shop Trustwave, which has spent over a year hunting down programming gremlins in Netgear's …
Iain Thomson, 9 Feb 2018
waterworks

Now that's taking the p... Sewage plant 'hacked' to craft crypto-coins

Updated Infosec bods say they have uncovered what's thought to be the first case of a major industrial control system network infected with cryptocurrency-mining malware. SCADA security outfit Radiflow claimed today it found the software nasty lurking in computer systems at a water treatment facility. Several operational servers used …
Iain Thomson, 8 Feb 2018
Elon Musk

What did we say about Tesla's self-driving tech? SpaceX Roadster skips Mars, steers to asteroids

Pic The final rocket burn of the SpaceX craft carrying Elon Musk's personal Tesla Roadster into the cosmos pushed the billionaire's flash jalopy much further than anticipated. It's now heading out toward the Solar System's asteroid belt rather than swinging close by Mars as planned. Yesterday, SpaceX launched its powerful Falcon …
Iain Thomson, 7 Feb 2018

Registrar Namecheap let miscreants slap spam, malware on unlucky customers' web domains

Updated Namecheap has admitted it accidentally let miscreants set up and control fraudulent subdomains on websites belonging to other customers. These hijacked sites were subsequently used to host dodgy material. This caused them to be flagged up as malicious by Google's search engine, blocking netizens from visiting them, and piling …
Iain Thomson, 7 Feb 2018
falcon heavy

MY GOD, IT'S FULL OF CARS: SpaceX parks a Tesla in orbit (just don't mention the barge)

Video After years of setbacks, SpaceX today successfully launched its Falcon Heavy three-in-one rocket and delivered into orbit its cherry-red payload – Elon Musk's very own Tesla Roadster. After a morning of delays due to high winds, the mighty rocket lifted off from the Kennedy Space Center Launch Complex 39, in Florida, USA, at …
Iain Thomson, 6 Feb 2018

Adobe: Two critical Flash security bugs fixed for the price of one

Adobe has issued an emergency security patch for two bugs in its Flash player – after North Korea's hackers were spotted exploiting one of the flaws to spy on people investigating the creepy hermit nation. At the start of the month, South Korea's Computer Emergency Response Team put the world on alert after it found miscreants …
Iain Thomson, 6 Feb 2018
Mike Hughes

A Hughes failure: Flat Earther rocketeer can't get it up yet again

Video An American bloke, who reckons Earth is flat as a frisbee, is on a quest to send himself into space to verify his theory. And on Sunday, he failed to even launch a rocket to a few hundred feet. Limousine driver, self-taught rocket maker, and headline generator "Mad" Mike Hughes hoped to blast off his homemade rocket from …
Iain Thomson, 5 Feb 2018

Don't worry, it'll be all Reich! Googler saves Grammarly nazis from hacker invasion

Updated A critical flaw in the Chrome extension of Grammarly – the grammar-checking software with online ads second only to Geico in terms of their ability to annoy – has left all 22 million users' personal records available to all. The vulnerability, spotted on February 2 by Google Project Zero's Tavis Ormandy – allows any website to …
Iain Thomson, 5 Feb 2018
Spectre, photo Metro Goldwyn Mayer Studios Danjaq and Columbia Pictures Industries

Spectre shenanigans, Nork hackers upgrade, bad WD drives and more

Roundup Here's a summary of this week's infosec news beyond what we've already covered in detail. Exploits for chip blunders spook antivirus land First up, January's Meltdown and Spectre processor security design flaws continue to haunt the IT world. Fortinet put out an advisory on Tuesday warning 119 variants of code that exploit …
Iain Thomson, 3 Feb 2018

Biting the hand that feeds IT © 1998–2018