Articles about Blunder

Bates Motel

Hotel Wi-Fi not only hideously expensive – it's horribly insecure

Travelers are used to getting screwed over by hotel internet access. But it's not just the eye-watering Wi-Fi prices guests should be worried about. A major security flaw in a network gateway popular among hoteliers can be exploited by hackers to launch attacks against guests by injecting malware into their downloads over …
Iain Thomson, 27 Mar 2015
The Register breaking news

Taliban official's email blunder leaks 400+ contacts

Anyone in the bulk email business should know never to mix up cc: ("carbon copy") and bcc: ("blind carbon copy") – especially if the materials you're sending out are Taliban press releases. That was exactly the rookie mistake made by Taliban spokesman Qari Yousuf Ahmedi last week, ABC News reports, which resulted in Ahmedi …
Neil McAllister, 16 Nov 2012
Nokia

MS names Nokia WinPho models in compo blunder

Microsoft has inadvertently leaked the names of forthcoming Nokia Windows Phone handsets by including them in the terms and conditions of a competition. The Nokia Sabre, as well as the familiarly-named Nokia Sea Ray, were both found mentioned in the Ts&Cs of a Microsoft Canada competition - now edited to remove the names - that …
Caleb Cox, 30 Sep 2011
Samsung Galaxy S5

Got a Samsung Galaxy S5? Crooks can steal your fingerprint – claim

RSA 2015 Malware can snaffle fingerprints used to unlock Samsung Galaxy S5 smartphones thanks to a security blunder, researchers claim. The vulnerabilities, due to be discussed at the RSA security conference in San Francisco this week, may be present in non-Samsung Android mobiles, too. Today's smartphones recognize their owners' …
John Leyden, 23 Apr 2015
WordPress

Comments considered harmful: WordPress web hijack bug revealed

A frustrated Finnish security researcher has gone public with a vulnerability in WordPress that lets attackers hijack website admin accounts. The flaw was found by Jouko Pynnönen, and is a cross-site scripting (XSS) bug similar to one patched last week. It is buried within the widely used web publishing software's comments …
Iain Thomson, 27 Apr 2015

Virgin Media struck dumb by NATIONWIDE packet loss balls-up

Virgin Media's broadband network suffered what appeared to be a widespread service disruption on Saturday – the second such weekend, packet loss blunder to have struck the cable company in recent months. Customers complained on VM's forum and Twitter about major performance problems blighting the network. However, it took …
Kelly Fiveash, 16 Nov 2014
The Register breaking news

GCHQ attempts to downplay amazing plaintext password blunder

Red-faced crypto and intercept intelligence agency GCHQ has admitted emailing plain text password reminders to people who register on its careers micro-site. The issue came to light after prospective job applicant Dan Farrall blogged about his experience of receiving a plain text reminder of his GCHQ recruitment site password by …
John Leyden, 27 Mar 2013

Woe, Daddy! GoDaddy customers wail as hosting service GOES TITSUP

Hosting outfit GoDaddy is suffering what appears to be a pretty widespread outage hitting website operators in the UK this morning. The company's own site was struggling to load at time of writing. A miserable message wrapped in a pink box on GoDaddy's support page coughs to a "known issue" with its hosting system. However, The …
Kelly Fiveash, 01 Sep 2014
The Register breaking news

Welsh NHS fined £70k for patient psych file leak blunder

The UK's Information Commissioner's Office (ICO) has slapped its first fine on the NHS after a mental health patient's file was leaked in an email gaffe. The ICO handed the Aneurin Bevan Health Board in Wales a bill for £70,000 for sending the sensitive information to the wrong person. A consultant from the NHS organisation …
The Register breaking news

Yorkshire plods LOSE 9,000 GUNS in rogue BOFH database blunder

Bungling police staff at South Yorkshire Police have finally copped to a huge snafu in their firearms database after spending the last two months writing to thousands of firearms licence holders. The letter simply requested they "update their details". Bosses have blamed the database snafu on the actions of a sacked …
Gareth Corfield, 01 Jul 2013

Apple slips out security patches while world goes gaga over watches

While everyone was losing their mind over expensive watches, Apple sneaked out security fixes for iOS phones and tablets, and OS X computers. Both the OS X Security Update 2015-002 and iOS 8.2 address critical flaws. Leading the charge is a patch to squish the FREAK bug in the two operating systems' SSL/TLS code. Disclosed last …
Shaun Nichols, 10 Mar 2015
The Register breaking news

STUDENTS EXPOSED in university IT blunder

The Information Commissioner's Office has reprimanded the University of York for stuffing up its IT systems so that student records were accessible to anyone. The ICO blamed a staff member who "failed to realise they had made an error while carrying out work on the University's IT system". The screw-up resulted in student …
John Oates, 20 Jul 2011
The Register breaking news

Cyber security challenge organisers in email privacy blunder

Updated Organisers of the UK's cyber security challenge committed an embarrassing email blunder by inadvertently revealing the email addresses of everyone who entered a forensics challenge to each other. A single challenge registration confirmation email was CCed to everyone who entered, handing over a complete email list in the process …
John Leyden, 15 Sep 2010

Former Tech Data UK beancounters may face rubber-glove treatment

The Financial Reporting Council will probe the processes used by staff linked to Tech Data UK's monumental three-year financial blunder. Blighty's largest technology distributor, previously known as Computer 2000, unearthed accountancy errors for fiscal 2011, 2012 and 2013 last spring. A subsequent internal investigation forced …
Paul Kunert, 12 May 2014
The Register breaking news

Two councils hit with big fines for laptop blunder

The UK's information watchdog has slapped two London councils with hefty penalties for failing to encrypt personal data on laptops that were stolen by thieves. Ealing Council and Hounslow Council were both found to be in serious breach of the Data Protection Act, ruled the Information Commissioner's Office today. It said two …
Kelly Fiveash, 08 Feb 2011
Adobe security

Second time's a charm: Adobe has another go at killing Flash hijack flaw

Ready to enjoy the Thanksgiving holiday? Can't wait to open your advent calendar? Not so fast – there's one more patch to install before the month is over. Adobe has posted an update for its Flash plugin, version 15.0.0.239, to address a critical remote-code-execution vulnerability. This will be the Photoshop giant's second …
Shaun Nichols, 25 Nov 2014

TalkTalk email goes titsup FOR DAYS. Cheapo telco warns: Changing password WON'T fix it

An unknown number of TalkTalk customers have been locked out of their email accounts for days, but the budget ISP warned this morning that its service was still struggling to return to normal. According to anecdotal reports on Twitter, TalkTalk's email system first went titsup on Thursday. The company was claiming on Friday …
Kelly Fiveash, 29 Nov 2014

Google DoubleClick goes TITSUP. ENJOY your AD-FREE WORLD!

Updated Publishers across the web are seeing a huge surge in site load speeds, after Google's DoubleClick ad tech collapsed within the past hour. At time of writing, Google was yet to respond to The Register's request for comment. But its servers have clearly suffered a major meltdown. Readers who don't use ad-blockers because they …
Kelly Fiveash, 12 Nov 2014
Angry old man

Office space outfit Regus suffers 'UK-wide' network outage

Updated Regus has coughed to what appears to be a major network outage affecting its UK-based customers, but the company is yet to explain what has gone wrong. One Register reader told us that his IT services firm, which runs from a Regus-serviced office that provides internet access, has been offline since mid-morning today. Anecdotal …
Team Register, 27 Aug 2014
Bank vault

Banks defend integrity of passcode-less TouchID login

Royal Bank of Scotland and NatWest have played down claims by a security researcher that their new Touch ID banking login feature might be circumvented, arguing the hack would only be possible with jail-broken iPhones — the use of which is not recommended. Last month, RBS and NatWest became the first UK-based banks to offer …
John Leyden, 19 Mar 2015
The Register breaking news

ICANN: Privates leaked in top-level domain land grab blunder

ICANN has revealed that it took down its top-level domain application system yesterday after discovering a potentially serious data leakage vulnerability. As El Reg reported earlier today, ICANN shut down its TLD Application System (TAS) – the web application companies use to apply for new gTLDs – due to unspecified "unusual …
Kevin Murphy, 13 Apr 2012
Satya Nadella speaking at a Microsoft cloud event

Hey look! Microsoft's workforce isn't all white men

Fewer than half of all Microsoft employees are white males, according to the software giant's most recent census data. The numbers [PDF], which were published on December 18 and were first spotted on Friday by the Puget Sound Business Journal, show that white men made up just 47 per cent of Redmond's total workforce at last …
Neil McAllister, 04 Jan 2015
DNS? It's a real bind

DNS cockup locks Virgin Media customers out of ntlworld.com email

Virgin Media customers who retained their old @ntlworld.com email addresses are currently blocked from accessing their accounts after the cable company appeared to have made an embarrassing DNS blunder. Legacy NTL account names have apparently been spitting out DNS errors when messages were sent to those email addresses since …
Kelly Fiveash, 26 Aug 2014

Go home Google, you're drunk! Desktop Maps says The Shard's TWO MILES from actual loc

Anyone searching for directions to The Shard on the desktop version of Google Maps may be surprised to discover that the pointy, glassy London skyscraper is apparently plonked in the middle of one of the capital's best-known landmarks, Trafalgar Square. Eagle-eyed reader Pete Jones spotted the mapping blunder and tipped off The …
Team Register, 11 Sep 2014
Pinky and the Brain

BT's IPv6 EXPIRED security certificate left to rot on its website

BT may insist that it is committed to a smooth transition to the new interwebs address system – IPv6 – but a quick glance at the company's corporate website last month left some Brits questioning the one-time national telco's promise. That's because the telecoms giant embarrassingly failed to spot the fact that its security …
Kelly Fiveash, 05 Mar 2014
Jeb's emails

Jeb Bush, the man who may lead the US in 2016, dumps Floridians' private data on the web

Former Florida governor, and likely US presidential candidate, Jeb Bush is taking heat after he published online a massive dump of email correspondence – which included highly personal records detailing the affairs of his constituents. JebEmails.com was set up by Team Bush to provide "transparency" into his eight-year stint at …
Shaun Nichols, 11 Feb 2015
The Register breaking news

Yahoo! board! probes! CEO's! CompSci! CV! blunder!

Yahoo! has decided to take the revelation that its CEO Scott Thompson padded his CV a tad more seriously, The Register understands, promising that the board would look into the situation. The web firm's initial response to accusations yesterday from activist investor Third Point that Thompson did not in fact possess a degree in …
Homer Simpson reading on a tablet

UK data watchdog broke data law, says UK data watchdog

Britain's data cops have coughed to a serious security screw-up at the Information Commissioner's Office, and concluded that the ICO - only mildly - violated the Data Protection Act that it is supposed to police. It carried out an internal probe into what the ICO passively described as a "non-trivial security incident" that …
Kelly Fiveash, 16 Jul 2014

Virgin Media hit by MORE YouTube buffering glitches

Virgin Media has been battling another round of YouTube buffering glitches on its cable network. Register reader Michelle D’israeli flagged up the latest technical cockup with Google's video-sharing service. She told us that problems first appeared last Thursday (4 September). Subscribers moaned about YouTube being crippled …
Kelly Fiveash, 09 Sep 2014
The Register breaking news

Burglar cuffed after crime scene MySpace blunder

A Florida teen was arrested for burglary after he left himself logged into his MySpace account at the scene of the crime. According to multiple news accounts, a caretaker for a home on Sugarloaf Key called 911 on Sunday after seeing someone sitting on a couch inside the house. By the time police arrived, the home was unoccupied …
Dan Goodin, 08 Nov 2010
Surveillance image of Santa stick-up

NSA's Christmas Eve confession: We unlawfully spied on you for 12 years, soz

Slipping out unpleasant news at awkward times is a well-known PR practice – but the NSA has excelled itself by publishing on Christmas Eve internal reports detailing its unlawful surveillance. The agency dumped the docs online shortly after lunchtime on December 24, when most journalists are either heading home to their families …
Iain Thomson, 26 Dec 2014
The Register breaking news

Big Brother refunds Facebook credits after vote crash blunder

Ofcom has let Channel 5 off the hook after it agreed to let Big Brother viewers carry over surplus Facebook credits, or get a refund, if they were unable to vote in the show's evictions. The last series of Big Brother was a UK telly first by accepting votes through the use of paid-for Facebook credits. However, these had to be …
Bill Ray, 06 Mar 2012
Fail whale

Twitter plugs protected accounts bug to flush out stalkers

Twitter has killed a bug that had allowed some stalkers on the micro-blogging site to view protected tweets via SMS or push notifications. It has taken the company four months to fix the flaw, which affected the selectively shared accounts of 93,788 users on the service. Twitter said that the security blunder only happened " …
Kelly Fiveash, 10 Mar 2014
The Register breaking news

Telstra shutters customer self-service site after security blunder

Several sharp-eyed readers have pointed El Register to the latest corporate security howler in Australia: Telstra’s customer self-service site has had to be shut down after it sprayed sensitive customer data to the world at large. First reported on the Australian broadband discussion site Whirlpool (original post here) and then …

FedEx helps deliver THOUSANDS of spam messages DIRECT to its Blighty customers

Fed-up FedEx customers in the UK were hit by an email storm yesterday, after a sad sap at the delivery company mistakenly hit the reply-all button on a daily alerts mailing list. Inevitably, it was then besieged by jokers, spammers and idiots replying with the request to be removed from the list. Reg reader, Nick, who flagged …
Team Register, 21 Oct 2014

BBC goes offline in MASSIVE COCKUP: Stephen Fry partly muzzled

The BBC is scrambling to fix what appears to be a number of severe technical glitches on its network, after its website and catch-up TV service were hit by a major outage at the weekend. At the time of writing, Auntie was still carrying a "simplified version" of its BBC website on its homepage. The Corporation said: "We are …
Kelly Fiveash, 21 Jul 2014

Virgin Media CUTS OFF weekend 'net surfers after embarrassing smut-filtering snafu

Virgin Media customers were hit by an annoying network cockup on Saturday, after the cable company's smut-filtering Web Safe system stupidly blocked lots of websites. Subscribers complained about the snafu on Twitter, where many people claimed that they could barely access anything over Virgin Media's network. Reg reader Red …
Kelly Fiveash, 09 Nov 2014

eBay DROPS DEAD AGAIN - tat bazaar says sorry, scrambles to resurrect site

eBay went titsup earlier today, and the company is now attempting to bring its site back to life. The online tat bazaar coughed to an unexplained technical blunder preventing an unknown number of its subscribers from accessing the site, which many buyers and sellers of used goods enjoy using in their spare time on the weekends …
Kelly Fiveash, 14 Sep 2014

Orwell chap snaps in Amazon paperback claptrap yap rap

Amazon is under fire from George Orwell's estate for referencing the Nineteen Eighty-Four author in its legal battle with publishers. The web bazaar, while mired in a war of words with Hachette over book prices, invoked Orwell's name and cited comments made by the author at the dawn of paperback books. According to Amazon, …
Shaun Nichols, 14 Aug 2014
Daily Star

Daily Star is sorry for Grand Theft Auto Raoul Moat blunder

Last week the Daily Star published the sensational scoop that Rockstar Games was prepping Grand Theft Auto Rothbury, inspired by the murderer Raoul Moat. It was a hoax of course, but it would be much too kind to describe the Star as a victim. The paper compounded its error by mocking up a fake cover (see here) and by soliciting …
Drew Cullen, 26 Jul 2010

Misfortune Cookie crumbles router security: '12 MILLION+' in hijack risk

Infosec biz Check Point claims it has discovered a critical software vulnerability that allows hackers to hijack home and small business broadband routers across the web. The commandeered boxes could be used to launch attacks on PCs and gadgets within their local networks. More than 12 million low-end SOHO routers worldwide are …
John Leyden, 18 Dec 2014

Virgin Media struck dumb by NATIONWIDE DNS outage

Virgin Media customers were kicked offline last night, after a DNS blunder from the cable company disrupted its network on Tuesday. It comes after rival BT suffered a similar, widespread technical cockup over the weekend. Virgin Media, which is owned by US telecoms giant Liberty Global, coughed to a "nationwide DNS outage" on …
Kelly Fiveash, 02 Jul 2014
Paul Winchell and dummy

Google unveils Windows 8.1 zero-day vuln – complete with exploit code

Google has made public the details of a security vulnerability in Windows 8.1 a mere 90 days after disclosing it to Microsoft, sparking debate over the wisdom of the online giant's Project Zero security initiative. The bug, which was privately reported to Microsoft in September, can potentially allow a logged-in user to execute …
Neil McAllister, 03 Jan 2015
George Bush in Game of Thrones

'Tech City should not be relying on Game of Thrones ravens'

QuotW This week, we learned that sending a Game of Thrones-style raven was a quicker form of communication than connecting to the internet in Tech City – which is the beating heart of Blighty's Web2.0rhea community. Emily Thornberry, Labour MP for Islington South and Finsbury, told fellow politicos that she was "shocked and surprised …
Kat Hall, 08 Feb 2015
The Register breaking news

GCHQ commits schoolboy security blunder

Exciting news from UK spooks at GCHQ - it's the new and improved "Guidance document on use of Smartphones in Government". The only problem with this riveting press release from GCHQ is that someone forgot to use the bcc function - instead, the message reveals the email address of every journalist on the list. The list comes from …
John Oates, 11 Apr 2011

World's Raspberry Pi supply jammed in factory blunder

Shipments of the long-awaited and heavily fought over Raspberry Pi boards could be delayed thanks to a manufacturing cock-up. The assembly lines churning out the first 10,000 units used the wrong kind of RJ45 networking jack, according to the team behind the $35 Linux computer, and the parts will need to be replaced before they …
Chris Williams, 08 Mar 2012

'Super-secure' BlackPhone pwned by super-silly txt msg bug

Exclusive The maker of BlackPhone – a mobile marketed as offering unusually high levels of security – has patched a critical vulnerability that allows hackers to run malicious code on the handsets. Attackers need little more than a phone number to send a message that can compromise the devices via the Silent Text application. The impact …
Darren Pauli, 27 Jan 2015
The Register breaking news

Yahoo! director! bows! out! after! CEO! CV! blunder!

The Yahoo! director who led the search for CEO Scott Thompson has said she won't be standing for re-election to the board as a new committee is appointed to look into his padded CV. Patti Hart, whose educational background also had a discrepancy revealed by activist investor Third Point, said that "after careful consideration" …

Online tat bazaar eBay coughs to YET ANOTHER outage

Updated Online marketplace eBay went titsup for an unknown number of customers in the UK this morning, but the company has been very slow to respond to complaints. When quizzed about the outage by The Register, eBay 'fessed up to yet more wobbles with its tat bazaar. “We are investigating reports that certain eBay features are …
Kelly Fiveash, 12 Aug 2014

Did a date calculation bug just cost hard-up Co-op Bank £110m?

A programming blunder appears to have landed the cash-strapped Co-op Bank an unexpected bill for £110m. In its financial report [PDF] for 2013, which last week revealed a £1.3bn loss, the bank said it had to stump up nine-figure "costs relating to breaches of the Consumer Credit Act". Specifically, the scandal-hit bank noted: " …
Gavin Clarke, 15 Apr 2014