Articles about Anonymous

US DNC hackers blew through SIX zero-days vulns last year alone

Security researchers have shone fresh light on the allegedly Russian state-sponsored hacking crew blamed for ransacking the US Democratic National Committee's computers. Sednit – also known as APT28, Fancy Bear and Sofacy – has been operating since 2004. The cyber-mob has reportedly infiltrated machines operated by targets as …
John Leyden, 20 Oct 2016

GPS spoofing can put Yik Yak in a flap

A little machine learning can de-anonymise Yik Yak users, according to researchers from American and Chinese universities. Yik Yak is an anonymous messaging app that raised US$70 million, acts like a location-aware Twitter and has become a preferred tool of trolls on US College campuses. The researchers didn't attack the Yik …

DIY storage startup: Tech, check. Techies, check... Er, credibility?

Part Four You need customers, but credibility too. One begets the other. But which comes first? We are now in the final, challenging chapter of early start up mode: of getting paying customers and leveraging them to your advantage in the world to gain more. As Tech 3.0 launches the dance for the B round starts. Everything here depends …
Trevor Pott, 17 Oct 2016

Euro Patent Office staff demand new rights to deal with terrifying boss

Staff at the European Patent Office (EPO) have asked its administrative council to adopt new guidelines to protect them from the organization's rampaging president. The open letter [PDF] urges the council – which meets this week in Munich – to adopt the same rules for disciplinary proceedings and internal investigations that …
Kieren McCarthy, 14 Oct 2016

Google splats 21 bugs in Chrome 54 patch run

Google has patched 21 bugs in its Chrome web browser, closing six high-severity holes along the way. Mountain View paid US$29,133 for the bugs including a top pay out of US$7500 (CVE-2016-5181) for a universal cross-site scripting hole in Blink, and US$5500 (CVE-2016-5182) for a heap overflow in the same web browser engine. …
Darren Pauli, 14 Oct 2016
Acer XR341CKA gaming monitor

Time to crack down on sales of dragon's gold - securobods

Security researchers have urged gaming companies to crack down on virtual currency auction and sales sites, reckoning criminals are cashing in to launder stolen money. The research team at Trend Micro says most black hats steal the currency using online game exploits or by using malware and phishing to compromise players, …
Darren Pauli, 13 Oct 2016

Adobe on patch parade to march out 83 bugs

Adobe has patched 83 vulnerabilities in its Reader, Acrobat, and Flash offerings including remote code execution holes. The former apps soaked up 71 patches centred on use-after-free, memory corruption, and buffer overflow vulnerabilities that lead to code execution. A dozen remote code execution flaws are plugged in Flash …
Darren Pauli, 12 Oct 2016

Social media flame wars to be illegal, says top Crown prosecutor

Social media users who engage in flame wars or retweet the doxing of others will be treated in the same way as those making fake bomb threats over social media, British prosecutors have announced. Released this morning, the Crown Prosecution Service (CPS)'s latest “Guidelines on prosecuting cases involving communications sent …
Gareth Corfield, 10 Oct 2016

Invasion of the virus-addled lightbulbs (and other banana stories)

Something for the Weekend, Sir? Yikes, all I have to do is go away for a couple of weeks and all hell breaks loose. But at least it’s the right kind of hell: that is, the veritable technological hell that I’ve been predicting in these columns for years. First off as I sit back in my late-vacation sun lounger to read the news on my tablet is that the Krebs on …
Alistair Dabbs, 07 Oct 2016
Fancy Bear Anonymous bear logo

Fancy Bears' who-takes-what in sports hack list ‘manipulated’ before leak

Hackers may have doctored athletes’ data prior to leaking it, according to the World Anti-Doping Agency (WADA). The "Fancy Bear" hacking group has been releasing details of athletes' Therapeutic Use Exemptions (TUE*) after breaking into the systems of the fair play enforcement agency, as previously reported. WADA, which …
John Leyden, 06 Oct 2016

Is Apple's software getting worse or what?

Comment For over a year, Apple's software has been the subject of more derision than might be expected for a company of its size. Developer Marco Arment took Apple to task early last year, arguing that OS X (recently rebranded macOS) is full of embarrassing bugs and that the company is trying to do too much on unrealistic deadlines. …
Thomas Claburn, 05 Oct 2016
SAN DIEGO COMIC CON: July 20, 2016. A lifelike replica of Bryan Cranston's Breaking Bad character Walter White on display at the annual pop culture and comic book convention in San Diego, California. photo by Lauren Elizabeth/Shutteretsock - EDITORIAL USE ONLY AND MUST ATTRIBUTE AND LINK

Building your own storage startup: Whatever you do, don't let lead dev be CEO

Part Two You like the idea of “doing” a startup, but what about actually starting a startup? You can see the end point - success, hopefully - but what of the hoops and hurdles? In part one, I looked at funding, executives and staff. But now you’ve got the money and the people, what happens next? What about team composition and product …
Trevor Pott, 03 Oct 2016
Crown courtroom. Pic: Shutterstock

Ex-army sergeant pleads guilty to using private browsing mode

A disgraced former Territorial Army sergeant convicted of making indecent images of children has pleaded guilty to using private browsing mode on his iPhone and iPad. Paul Martin McGarrity, a 56-year-old of Mirabel House, Wandsworth Bridge Road, Fulham, appeared at Hammersmith Magistrates’ Court this morning to be sentenced, …
Gareth Corfield, 30 Sep 2016

BOFH: There are no wrong answers, just wrong questions. Mmm, really wrong ones

Episode 12 "Look, all we want you to do is take this simple test which will tell us your personality type and the things you respond to," the Boss burbles. "Angry, and Free Beer!" the PFY chips, strolling into the conversation. "Oh good, I was hoping to catch you," the Boss says, turning to the PFY after a fruitless 10 minutes trying …
Simon Travaglia, 30 Sep 2016

Ever seen a storage startup and thought: 'Pshaw. I could do that?'

Part One You read The Register about people getting ahead with the most ridiculous startup ideas and ask: "Why that can't be you?" How is the game played? Well, let's design a storage startup from scratch and find out. I'm picking storage as the market for my hypothetical startup in part because I have worked closely with a number of …
Trevor Pott, 29 Sep 2016
Man in an orange jumpsuit clutches prison bars. Image by Shutterstock

Australia wants law to ban de-anonymisation of anonymous data

Yet again, the Australian government has announced a proposal that could outlaw academic research. In the wake of the privacy concerns that surrounded Australia's 2016 Census, attorney-general George Brandis has said the government will make it illegal to de-anonymise data sets that have been de-identified. In the lead-up to …
Credit card fraud

Urgent! Log in for spear-phisher survey or your account will be deleted

Europol’s annual cyber-crime survey warns that the quality of spearphishing and other "CEO fraud" is continuing to improve and "cybercrime-as-a-service" means an ever larger group of fraudsters can easily commit online attacks. Many threats remain from last year – banking trojan attacks are still an issue for businesses and …
John Oates, 28 Sep 2016
Woman on phone waits for signal against countryside backdrop. Photo by Shutterstock

Ofcom punts network-sniffing Android app

Telecoms regulator Ofcom has written a network tracking Android app so the great British public can help it sniff out not-spots. The app runs in the background gathering anonymous data on network performance, voice call success, mobile data performance and app usage. It downloads a small amount of data every 15 minutes, less …
John Oates, 28 Sep 2016
Mark Zuckerberg photo by Bangkokhappiness via Shutterstock

Mark Zuckerberg and the $3bn cash fling: He's not your father's tech kingpin

Lou Gerstner, Ray Noorda, Lew Platt. Remember them? Ever even heard of them? Anybody with a memory or knowledge of the tech industry will know them as former, if anonymous, leaders of IBM, Novell and Hewlett-Packard. Newbies and the average person outside tech won’t without a quick Google. I recently visited the London …
Gavin Clarke, 27 Sep 2016
Windows Server

Windows Server 2016 will cost more on big servers, but discounts can be found

Windows Server 2016 has finally been shoved out the door today, albeit only for evaluation purposes. Which is a very good thing because the software will cost a lot of users more than they paid for Windows Server 2012, especially if they're slow to talk to Microsoft about their upgrade. Microsoft revealed its Windows Server …
Simon Sharwood, 27 Sep 2016

Smelly toilets, smokers and the Kardashians. Virgin Media staff grill top brass

Smelly toilets, smoking outside and questions as to who is the best Kardashian: these were just some of the issues Virgin Media top brass were grilled on in a Q&A session with staff seen by The Register. Many of Virgin Media's staff are worried about their future following its mega merger with US biz Liberty Global - as …
Kat Hall, 24 Sep 2016

Cops blasted for relying on IP addresses to hunt down suspects

A new white paper from the Electronic Frontier Foundation argues that police rely too heavily on IP addresses when conducting criminal investigations. The paper [PDF], written by EFF executive director Cindy Cohn along with legal fellow Aaron Mackey and senior staff technologist Seth Schoen, argues that the numerical addresses …
Shaun Nichols, 23 Sep 2016
A man chasing a plane

Moron is late for flight, calls in bomb threat

A Canadian idiot has been sentenced to a year behind bars after he was found guilty of calling in a bomb threat because he was running late for his flight. Michael Howells, 37, pleaded guilty to two counts of criminal mischief and received 12 months in jail along with a fine of CA$3,844.88 (US$3,000, £2,200). Howells was …
Shaun Nichols, 23 Sep 2016

Alleged hacker Lauri Love loses extradition case. Judge: Suicide safeguards in place

It was ruled today that Lauri Love, the alleged hacktivist from Stradishall, Suffolk, should be extradited to the United States to face charges of crimes carried out as part of online protests following the suicide of Aaron Swartz. Handing down her judgment at Westminster Magistrates’ Court this afternoon, District Judge Nina …
Fancy Bear Anonymous bear logo

Sports doping agency WADA says hackers lifted Olympic athletes' medical records

The World Anti-Doping Agency (WADA) has confirmed that its Anti-Doping Administration and Management System (ADAMS) database has been accessed by a “Russian cyber espionage group operator by the name of Tsar Team (APT28), also known as Fancy Bear.” The breach was made possible by spear phishing of an “International Olympic …
Simon Sharwood, 14 Sep 2016

Israeli Pentagon DDoSers explain their work, get busted by FBI

Two Israeli men have been arrested for running a distributed-denial-of service-as-a-service site, after one seemingly claimed to attack the Pentagon. Itay Huri and Yarden Bidani, released on US$10,000 bonds, were arrested following a tip off from the FBI, local news site TheMarker reports. A Twitter account using Bidani's …
Darren Pauli, 12 Sep 2016

SOHOpeless Seagate NAS boxen become malware distributors

Update Sophos researchers say they've uncovered a malware strain that targets Seagate's network-attached storage appliances and turns them into distribution points for cryptocurrency-mining malware. Attila Marosi, a senior threat researcher, explains the attack in a document titled Cryptomining malware on NAS servers (PDF). “Attack …
Simon Sharwood, 12 Sep 2016
Bitcoin, photo via Shutterstock

Brave idea: Ex Mozilla man punts Bitcoin adblocking browser

Browser upstart Brave is now letting you contribute Bitcoin to websites in return for ad-blocking. Beta version 0.11.6 of Brave has activated its Brave Payments, which lets you send micropayments to websites as a reward for not hitting you with ads or trackers. You turn on Brave Payments from within the open-source browser’s …
Gavin Clarke, 02 Sep 2016
image by Alexander_P

Google crushes 33 Chrome bugs, pays boffins more than $56k

Google has patched 33 Chrome vulnerabilities, including 13 rated high severity, with the release of verison 53 of the world's most popular web browser. Six high-severity bugs were reported in Google's native Adobe Reader wrecker PDFium, namely a use after free and five heap overflows of which three were reported by GiWan Go of …
Darren Pauli, 02 Sep 2016

How much does your kid hate exams? This lad hacked his government to skip them

A teenager from Sri Lanka is in hot water after he admitted to hacking the website of the nation's president in order to get his exams cancelled. The local Daily News reports that the 17-year-old, whose name was not released, accessed the official site of President Maithripala Sirisena – – and replaced the …
Shaun Nichols, 01 Sep 2016
Photo by Krista Kennell / Shutterstock

IBM swings axe through staff, humming contently about cloud and AI

More IBM staffers found out they are losing their jobs this week in another wave of layoffs at the IT giant. According to insiders, workers in IBM's Business Transformations Organization, Systems Group, Global Technology Services, Global Business Services, Technology Support Services, and Storage Presales were told on …
Chris Williams, 01 Sep 2016
Manchester BSOD

BSODs at scale: We laugh at your puny five storeys, here's our SIX storey #fail

It's an easy drive-by troll, isn't it? Last week, we asked readers to top the five-storey Blue Screen of Death spotted in Thailand, and examples big and small flooded the inbox. Manchester Piccadilly Station is either vying for the crown with last week's entry, or perhaps it's a display from the same maker. Thanks to James for …
Pinball flipper and ball

He's a p0wnball Wizard, and he's twisted one Ubuntu-powered game

Security pro Mark Lachniet has stamped himself as a p0wnball wizard by cracking a commercial pinball machine. Lachniet, who goes by the handle “Bede”, was able to crack a pinball titled The Hobbit. Detailed here, the hack saw Bede find his way inside the Jersey Jack production. Inside he found a Celeron-powered PC running …
Simon Sharwood, 17 Aug 2016

London cops waste £2.1m on thought crime unit – and they want volunteer informers

+ Comment The Metropolitan Police is to spend £2.1m of public money funding a unit that will actively investigate “offensive” comments on Twitter and Facebook, according to reports. Backed by a team of “volunteers”, the Met's new unit will actively seek out anything “deemed inappropriate” on social media services, according to the …
Gareth Corfield, 15 Aug 2016

Meet DDoSCoin, the cryptocurrency that pays when you p0wn

A curious proof-of-work project built on cryptocurrency has emerged that offers a means to prove participation in distributed denial of service (DDoS) attacks. University of Colorado assistant professor Eric Wustrow and University of Michigan phD student Benjamin VanderSloot create the platform that allows TLS web servers to …
Darren Pauli, 12 Aug 2016
FreeBSD logo

FreeBSD devs ponder changes to security processes

The developers of FreeBSD have announced they'll change the way they go about their business, after users queried why known vulnerabilities weren't being communicated to users. This story starts with an anonymous GitHub post detailing some vulnerabilities in the OS, specifically in freebsd-update, libarchive, bspatch and …
Simon Sharwood, 11 Aug 2016
Embarrassed/exhausted man sits in front of laptop in hipstery office. Photo by Shutterstock

FireEye admits filtering out legitimate emails in sniffer snafu

FireEye has admitted that a snafu involving its email filtering technology meant harmless messages were shuffled off to quarantine for no good reason. The glitch persisted for around two hours during during Monday morning before the problem was resolved, as a statement by the security vendor supplied to El Reg explains. At …
John Leyden, 02 Aug 2016

Pass the hash for peace, love and security in the quantum computing age

Digital signatures, one of the fundamental parts of cryptography, may one day be threatened by quantum computers – so crypto-boffins are busy devising schemes that can survive a post-quantum world. In a paper that's just landed at the International Association for Cryptologic Research, a group of UK and Belgian researchers are …
Facepalm from Shutterstock

The Australian Bureau of Statistics has made a hash of the census

Bootnoted The Australian Bureau of Statistics (ABS) has so badly mishandled the question of retaining names that its senior leadership need to consider their futures. The ABS is – sorry, was – probably one of Australia's most trusted bureaucracies, alongside the Bureau of Meteorology, the Australian Electoral Commission, and Geosciences …
Spy on the pope with your Jesus phone

All roads lead to Rome as Irish seminary gripped by Grindr scandal

A group of Irish trainee priests are being packed off to Roma, after claims some fathers-in-training at their existing berth in the Emerald Isle had developed a predilection for gay hookup site Grindr. Catholic archbishop of Dublin Diarmuid Martin, has reportedly pulled the diocese’s three trainees from St Patrick’s College, …
Joe Fay, 01 Aug 2016

Cyberpunks might not be crooks but they're really very rude

FotW An innocuous El Reg story about Russian web miscreants provoked an entirely unexpected reaction when an offended cyberpunk took it upon himself to tell us how the headline hurt his feelings. The sensitive individual - who used the mail service - took objection to a piece entitled Oh Cyberpunks using one-stop …
Gareth Corfield, 29 Jul 2016
Cookie Monster

BBC will ‘retain your viewing history’

Last week the BBC launched a mobile app, called BBC+, delivering “customisable content collections” to your phone or tablet. It’s a personalised service which requires an email address. Last year, when the corporation announced its plans for personalised services, it made several data protection promises. Specifically, Phil …
Andrew Orlowski, 25 Jul 2016

Apple, Facebook and Coinbase coughed data to finger alleged pirate king

The United States case against alleged Kickass Torrents (KAT) boss Artem Vaulin is built on data obtained from Apple, Facebook and Coinbase. The criminal complaint (PDF) against Vaulin details how the U.S. Department of Homeland Security, Immigration and Customs Enforcement conducted a lengthy online probe into the alleged …
Simon Sharwood, 22 Jul 2016

DDoS, the cloud and you

Private cloud computing can be a useful way to offload some computing overhead and manage your costs effectively. The switch to operating expenses from capital expenses, the elasticity, the business continuity benefits – they're all real. But so are the dangers of DDoS disaster. There's a problem with moving your servers and …
Danny Bradbury, 21 Jul 2016

DDoS trends: Bigger, badder but not longer

DDoS attacks once again escalated in both size and frequency during the first six months of 2016. Netscout's DDoS mitigation arm Arbor Networks warns that attacks greater than 100Gbps are far from uncommon. The security firm has monitored 274 attacks over 100Gbps in the first half of 2016, versus 223 in all of 2015. The …
John Leyden, 19 Jul 2016
Data breach

World-Check terror suspect DB hits the web at just US$6750

The World-Check database that lists "heightened risk individuals and organizations" is reportedly up for sale on the dark web. The database is a commercial product offered by Thomson Reuters, which bills it as a useful tool for those fighting money laundering, "organized crime, sanctions, Countering the Financing of Terrorism …
Darren Pauli, 19 Jul 2016

Microsoft silently kills dev backdoor that boots Linux on locked-down Windows RT slabs

Microsoft has quietly killed a vulnerability that can be exploited to unlock ARM-powered Windows RT tablets and boot non-Redmond-approved operating systems. The Register has learned that one of the security holes addressed this week in the July edition of Microsoft's Patch Tuesday closes a backdoor left in Windows RT by its …
Shaun Nichols, 15 Jul 2016
Cheesy pic of man holding face in shame as accusatory finger emerges from display. Photo via Shutterstock

Trial to store benefits claimants' personal data on blockchain slammed

A government experiment to store the information of benefits claimants using blockchain tech has been slammed by experts, who have warned it could expose highly sensitive personal data. London-based fintech company GovCoin Systems has partnered with Barclays, RWE npower and University College London to trial blockchain …
Kat Hall, 12 Jul 2016
Wordpress logo

Nasty session stealing hole filled in WordPress All in One SEO plugin

The developers have patched a hole in the popular All in One search engine optimisation WordPress plugin, a tool that's been downloaded by some 30 million users and is used on a million sites. Flaws exist in the Bot Blocker component which can be exploited to steal administrator tokens and conduct actions through cross-site …
Darren Pauli, 12 Jul 2016
Cymmetria report

Copy paste slacker hackers pop corp locks in ode to stolen code

The ultimate copy paste slacker hacker group has busted security controls in some 2500 corporates and government agencies using nothing but stolen code. The targets focus on those affiliated with military and political assignments around Southeast Asia and the contentious South China Sea, and may have been compromised in a …
Darren Pauli, 08 Jul 2016