Feeds

Articles about Blunder

World's Raspberry Pi supply jammed in factory blunder

Shipments of the long-awaited and heavily fought over Raspberry Pi boards could be delayed thanks to a manufacturing cock-up. The assembly lines churning out the first 10,000 units used the wrong kind of RJ45 networking jack, according to the team behind the $35 Linux computer, and the parts will need to be replaced before they …
Chris Williams, 08 Mar 2012

Five unbelievable headlines that claim Tim Berners-Lee 'INVENTED the INTERNET'

Newspapers and blogs are quite rightly back-slapping Brit inventor Tim Berners-Lee today – the man who brought the world wide web to the, er, world 25 years ago today. It's a pity, then, that mainstream publications continue to stumble over the concept by lazily and wrongly saying that Berners-Lee birthed the internet. Sub- …
Kelly Fiveash, 12 Mar 2014

Stephen Fry MADNESS: 'New domain names GENERATE NEW IP NUMBERS'

Autocue extraordinaire Stephen Fry has cheerily claimed new domain registrations "generate new IP numbers which so far show no sign of giving out". He blogged the explanation while celebrating being the first person in Blighty to sign up for a .uk domain. Dot-UK registry Nominet has not challenged Fry's latest boob, even though …
Team Register, 10 Jun 2014
A hash

EBAY... You keep using that word 'ENCRYPTION' – it does not mean what you think it means

Confusion reigns over whether or not the 145 million "encrypted" user account passwords swiped from eBay can be practically cracked by crooks. A day has passed since the online tat bazaar admitted its customer database was hacked back in February, and the method of encryption is still not known. We do know what wasn't encrypted …
John Leyden, 22 May 2014
The Register breaking news

GCHQ commits schoolboy security blunder

Exciting news from UK spooks at GCHQ - it's the new and improved "Guidance document on use of Smartphones in Government". The only problem with this riveting press release from GCHQ is that someone forgot to use the bcc function - instead, the message reveals the email address of every journalist on the list. The list comes from …
John Oates, 11 Apr 2011
Homer Simpson reading on PC

Cambridge Assessment exams CHAOS: Computing students' work may be BINNED

Budding tech teens - who have taken close to 40 hours of Computing GCSE controlled assessments - face the agony of seeing some of their work scrapped by a leading Brit exam board, after it said it was withdrawing tasks for key units amid cheating claims. Awarding body the OCR, which is part of Cambridge Assessment, had posted an …
Kelly Fiveash, 01 Jul 2014

Friends don't let friends use Internet Explorer – advice from US, UK, EU

Microsoft has warned of a new security flaw in all versions of its Internet Explorer web browser for Windows PCs. A patch has yet to be released for the crocked code. Vulnerability CVE-2014-1776, to give the problem its formal name, allows miscreants to hijack at-risk Windows computers. It's all due to “the way Internet Explorer …
Simon Sharwood, 27 Apr 2014

Revealed: How Microsoft DNS went titsup globally on Xbox One launch day

Microsoft's major outage last week was caused by a policy rollout that derailed its own DNS servers – a blunder that also downed some of the tech giant's internal services. The outage hit on Thursday, during which key websites such as Xbox.com and Outlook.com were knocked over, connectivity to the Office 365 online software …
Jack Clark, 25 Nov 2013
Daily Star

Daily Star is sorry for Grand Theft Auto Raoul Moat blunder

Last week the Daily Star published the sensational scoop that Rockstar Games was prepping Grand Theft Auto Rothbury, inspired by the murderer Raoul Moat. It was a hoax of course, but it would be much too kind to describe the Star as a victim. The paper compounded its error by mocking up a fake cover (see here) and by soliciting …
Drew Cullen, 26 Jul 2010
The Register breaking news

'PENDING LARRY QUOTE' - Google financials dunder blunder

This was the week some Googler's finger slipped at just the wrong moment, sending its rather worrying financial results out a mite too early. The Chocolate Factory's third quarter profits were much lower than expected and its revenue, famed for continued growth, has slowed down. It was quite clear that the early release was a …
Google Chocolate Factory

Google+ maker Vic Gundotra: My work on this 'NETWORK THINGY' is DONE

Now that Google's "network thingy" is melded into the web giant's product line-up, the man behind Google+ Vic Gundotra has quit Mountain View to pursue a yet-to-be-revealed new venture. Arguably, his work is largely done at Google, a company that has routinely shied away from describing Google+ as a social network. In 2012, …
Kelly Fiveash, 25 Apr 2014

KCOM-owned Eclipse FAILS to cover up the password 'password'

A Register reader has exposed another privacy howler at KCOM - this time involving its Exeter-based ISP Eclipse Internet, which displays passwords in plain text to users via a webpage. Customers who log in to their personal Eclipse user site are somewhat surprisingly shown the password for their account. Today's tip of the hat …
Kelly Fiveash, 21 Jan 2014

ZOMBIE apocalypse! The 'LIVING DEAD' are HERE – Fox News confirmed it

Within the past hour, Fox News declared today is "World Zombie Day", and urged us all to "bring out the living dead" in an online cock-up. Initially it was feared the US news outlet's website had been hacked and defaced – but the broadcaster was quick to blame an "internal production problem" for the gaffe. The Fox News web …
Shaun Nichols, 05 Nov 2013
iTunes 11 : iTunes Music Store

Apple punts patches for holes in Pages and OS X, Windows iTunes

Apple has issued updates to squash vulnerabilities in the OS X and Windows versions of iTunes and the word-processor app Pages. The iTunes 11.1.4 update will also patch security bugs in the Safari application and in underlying software such as the WebKit browser engine and a pair of library components. Users running iTunes on …
Shaun Nichols, 25 Jan 2014
A boat full of Fail

BT finally admits its Home Hub router scuppers some VPN connections

BT has coughed to a crappy glitch with its Home Hub 3A router that is blocking some VPN connections. However, the one-time state monopoly appears to have taken a long time to acknowledge customer gripes, which have been piling up for weeks. BT said it had taken a while to respond to individual complaints because it was …
Kelly Fiveash, 27 Mar 2014
Bondi Blue Rev. A iMac - logo

What took you so long Apple? 26 remote exec bugs die in OS X Safari

Apple has fixed 27 vulnerabilities in its Safari web browser for OS X computers, 18 of which were uncovered by Google's Chrome Security Team. All but one of the flaws allow miscreants to execute arbitrary code on victims' computers. The iPhone giant said its Safari 7.0.3 and 6.1.3 update will close the holes, which were found in …
Shaun Nichols, 02 Apr 2014

NHS website hit by MASSIVE malware security COCKUP

Hundreds of URLs on the NHS website have been flooded with malware by hackers and - at time of writing - it remains exposed. The security blunder was first spotted early this morning and an alert was posted on Reddit along with a list of 587 pages said to have been compromised on the www.nhs.uk site. The Register put calls in …
Kelly Fiveash, 03 Feb 2014
A boat full of Fail

Home Office clumsily LEAKS data of 1,598 immigrants, blames 'transparency'

The Home Office has embarrassingly coughed to accidentally leaking the personal details of 1,598 immigrants. Applicants in the “family returns” process had some of their personal data exposed online for nearly a fortnight, immigration minister Mark Harper admitted in a written statement to Parliament on Thursday. He blamed the …
Kelly Fiveash, 13 Dec 2013
Bitcoin bloodbath

Chicago man lobs class-action sueball at MtGox

Friday's bankruptcy filing wasn't the only time the name "MtGox" was heard in a courtroom this week. Predictably, the cash-strapped Bitcoin exchange is now the subject of a class-action lawsuit in the US alleging negligence and fraud on the part of MtGox CEO Mark Karpeles and his staff. "Mt. Gox intentionally and knowingly …
Neil McAllister, 01 Mar 2014
BBC iPlayer

Auntie remains MYSTIFIED by that weekend BBC iPlayer and website outage

BBC techies have no idea why the load on its database "went through the roof" last weekend, when Auntie was struck by a huge, two-pronged outage that caused its iPlayer service and website to go titsup. During the downtime, the Beeb was pretty reticent on social media about what had gone wrong, preferring instead to simply post …
Kelly Fiveash, 24 Jul 2014
A crowd, photo by Ben Schumin

VMware loses top community man Troyer

VMware's community manager, John Troyer is leaving VMware. Troyer is striking out to create a new, vendor-neutral community called TechReckoning, and will fund this venture by freelance consulting with vendors on how they can build up communities of their own. It might seem odd to those who aren't part of the VMware community to …
Trevor Pott, 02 May 2014

Target's database raided, 70 MILLION US shoppers at risk of ID theft

Hackers swiped the names, home and email addresses, phone numbers and other personal information of up to 70 million Target shoppers, the superstore giant admitted today. Evidence of the customer database raid was discovered during an investigation into the attack on Target's payment systems that leaked 40 million credit and …
Shaun Nichols, 10 Jan 2014

OpenSSL bug hunt: Find NEXT Heartbleed, earn $$$ – if enough people donate cash

An effort to raise $250,000 for an OpenSSL bug-bounty program is underway – and its organisers hope it will help ensure the Heartbleed omnishambles is never repeated. The campaign, spearheaded by computer security startup Bugcrowd, aims to raise the cash by 29 April: the money will be distributed as rewards to infosec bods who …
John Leyden, 16 Apr 2014

BT-owned ISP Plusnet fails to plug security hole on its customer signup page

Sheffield-based telco Plusnet isn't doing any of its new customers "proud" right now, after an anonymous source told The Register that the company was currently transmitting personal details over an unencrypted web page. The firm, which is owned by telecom giant BT, is asking interested subscribers to fill in a form online that …
Kelly Fiveash, 22 Jan 2014
Decaying red telephone boxes

BT 118 phone number fee howler lands telco giant with £225k fine

BT has been slapped with a £225,000 fine from Blighty's premium-rate phone line watchdog, after it failed to provide correct pricing details for its 118 500 directory enquiries number. Some of the 27 complainants, who took their gripes to PhonePayPlus (which previously rejoiced in the catchy name of “Independent Committee for …
Kelly Fiveash, 09 Jan 2014
BlackBerry logo

BlackBerry on the brink: Security kink sinks rinky-dink Link sync in a blink

Hapless BlackBerry has told users to update its software on their Mac OS X and Windows computers following the disclosure of a fairly serious security flaw. The Canadian handset maker said the vulnerability exists in selected versions of its freely available Link application – a program that allows you to transfer files between …
Shaun Nichols, 15 Nov 2013

You. Netgear ReadyNAS owners. Have you closed your gaping holes today?

IT security biz Tripwire warns that a critical security vulnerability in some Netgear storage devices is going unnoticed by users, partly because the vendor has downplayed its importance. Writing on his company blog, Tripwire researcher Craig Young says although Netgear issued a patch for its RAIDiator firmware in July to squash …

Worried OpenSSL uses NSA-tainted crypto? This BUG has got your back

As fears grow that US and UK spies have deliberately hamstrung key components in today's encryption systems, users of OpenSSL can certainly relax about one thing. It has been revealed that the cryptography toolkit – used by reams of software from web browsers for HTTPS to SSH for secure terminals – is not using the discredited …
John Leyden, 20 Dec 2013

Apple splats 'new' SSL snooping bug in iOS, OS X - but it's no Heartbleed

Apple has squashed a significant security bug in its SSL engine for iOS and OS X as part of a slew of patches for iThings and Macs. The so-called "triple handshake" flaw quietly emerged yesterday amid panic over OpenSSL's Heartbleed vulnerability, and soon after the embarrassing "goto fail" blunder in iOS and OS X. Apple's " …
John Leyden, 23 Apr 2014
Yahoo! CEO Marissa Mayer and CFO Ken Goldman

Yahoo! boss! Mayer! sez! soz! for! lengthy! mail! outage!

Yahoo! chief Marissa Mayer appeared to be furious with her company late on Friday when she took to the Purple Palace's official Tumblr blog to apologise to users of its email service, who were locked out of their accounts for several days. "This has been a very frustrating week" she said, before adding "we are very sorry." …
Team Register, 16 Dec 2013

Wot a COCKUP: Poorly NHS websites spawn SPAMMY VIAGRA ads

It seems that organisations using the nhs.uk domain need a generous gulp of medicine and plenty of bed rest after an investigation of the health service's online estate uncovered what appeared to be a worrying hacking epidemic. The Register was alerted by reader David to the fact that a number of NHS websites - including some …
Kelly Fiveash, 26 Feb 2014
Github octodex

US giant NBC 'leaks' PRIVATE Amazon keys in Github Glenn gaffe

A London-based developer claims he was accidentally given the keys to US broadcaster NBC Universal’s websites – thanks to a username mix up on GitHub. Glenn Shoosmith was an early adopter of Github, and thus bagged the short-and-sweet user ID Glenn in July 2008. Repositories can be public and viewable by all, or private and …
John Leyden, 20 May 2014
The Register breaking news

Texas Instruments to patch smart meter crypto blunder

Texas Instruments plans to patch a cryptography flaw in a widely used chip that could allow attackers to remotely tamper with electronic power meters and other devices that connect to smart electricity grids. The weakness resides in TI's Z-Stack software that runs on microcontrollers such as the CC2430. Encryption keys used to …
Dan Goodin, 15 Jan 2010
Microsoft Surface tablets

Microsoft's ARM blunder: 7 reasons why Windows RT was DOA

Industry doomsayers were circling Windows 8 like buzzards before it even launched, but they picked the wrong carcass. Microsoft's real 2012 roadkill was Win8's ARM-powered cousin, Windows RT. The chattering class's comparisons of Windows 8 and Windows Vista are premature – it will take several more quarters before we can gauge …
Neil McAllister, 18 Jan 2013
money trap conceptual illustration

Your files held hostage by CryptoDefense? Don't pay up! The decryption key is on your hard drive

A basic rookie programming error has crippled an otherwise advanced piece of ransomware dubbed CryptoDefense – but the crap coders are still pulling in more than $30,000 a month from unwary punters. Symantec reports that the malware, once it infects a Windows PC, encrypts the victim's files using a 2,048-bit RSA public key, …
Iain Thomson, 03 Apr 2014

KC engineer 'exposed unencrypted spreadsheet with phone numbers, user IDs, PASSWORDS'

Hull's dominant telco, KC, is investigating revelations of what appears to be poor handling of the company's customer data. This comes after a recent sign-up claimed one of its engineers had unwittingly exposed a customer spreadsheet containing the telephone numbers, user IDs and unencrypted passwords of all its subscribers. The …
Kelly Fiveash, 17 Jan 2014
The Register breaking news

Sat nav blunder places The Rock in Skegness

In an epic, multinational sat nav cock-up, a Syrian lorry driver aiming for Gibraltar left Turkey and ended up in Skegness. Only as Necdet Bakimci inched his 32-ton car transporter down a narrow Lincolnshire lane leading to Gibraltar Point nature reserve did he twig that he might have taken a wrong turn, but by this point the …
Robin Lettice, 22 Jul 2008
The Register breaking news

Google gets biennial privacy audit after Buzz blunder

Google has agreed with the US Federal Trade Commission (FTC) to undergo regular privacy audits for the next 20 years, after bolting its ill-conceived Buzz social network on to Gmail in early 2010 without first seeking the consent of its users. "When companies make privacy pledges, they need to honour them," said FTC chairman Jon …
Kelly Fiveash, 30 Mar 2011
Cat 5 cable

Finnish blog blunder: disaster, no recovery

A Finnish blogging portal, Bloggen.fi has lost users' data from October 2009 to June 2010 because of an outage last week. The word is that it had the main data and backup data on the same virtual server. That seems unnecessarily economical. The outage (In Swedish: sorry) is blamed on spam, which our correspondent thinks is odd …
Chris Mellor, 08 Jul 2010
The Register breaking news

Facebook sued for Beacon blunder

Facebook is being sued for breaking privacy and wire-tapping laws by introducing Facebook Beacon - the ad service which tracked what you did on other websites. If you bought something on a partner site working with Facebook then this fact would be displayed on your profile page for all your friends to see. Users were signed up …
John Oates, 15 Aug 2008
The Register breaking news

Orange overshares in bcc blunder

Orange accidentally shared the email addresses of more than 300 customers yesterday during a bid to find out what they think of the company. The email, passed on to us by several readers, suggests the recipient might like to reply with their thoughts about how customers keep in touch with the operator, along with any suggestions …
Bill Ray, 10 Feb 2010
Two teenage girls - one whispering in other's ear

Phone-blab plod breaks PRIVACY law after crash victim's 5hr ditch ordeal

A Norfolk police official broke a privacy law after blurting out "sensitive information" to the relative of a 54-year-old bloke – who had been seriously hurt in a car crash and left unnoticed in a ditch for five hours. The Independent Police Complaints Commission today said that one of the force's control room operators had …
Team Register, 06 Sep 2013
Apple stock price

EU: Let's cost financial traders $400m a day, because EVIL BANKERS. Right?

Hurrah! The European Union has decided to save us from the perils of automatic trading! Also known as High Frequency Trading (HFT) or algo trading, this is simply the practice of writing a piece of code to do the buying and selling faster than a human being can possibly do it. We've talked about the basics of it here before at …
Tim Worstall, 23 Apr 2014
Shot of the new radiation sign

Mexican Cobalt-60 robbers are DEAD MEN, say authorities

Mexican troops have recovered a stolen shipment of radioactive Cobalt-60 isotope, abandoned by truck thieves who face the risk of a slow lingering death from radiation poisoning. A truck carrying a substantial quantity of the radioactive isotope Cobalt-60 from a hospital in Tijuana to a waste centre was robbed by armed bandits …
John Leyden, 06 Dec 2013
The Register breaking news

Brainscan boffins build blunder-warning hat

Brain brainboxes in America and the Netherlands have come up with two significant pieces of research this week. Doubt is cast on any hopes for an early recovery from the present global economic crisis: but then a ray of light appears from another direction. Magnetoencephalogram (MEG) scanner in action A clue as to why the …
Lewis Page, 24 Mar 2009

Anatomy of a 22-year-old X Window bug: Get root with newly uncovered flaw

The X Window System, which today underpins Linux desktops the world over, has been around for more than two decades – and so have its bugs. Sysadmins have a few days to patch libXfont to remove a newly discovered, 22-year-old privilege-escalation bug in the code before any tiresome users whip out an exploit. The flaw allows …
The Register breaking news

Cryptocat WIDE OPEN, new version a must

The encrypted online chat service Cryptocat is urging users to install a new version, following the revelation that its encryption could be cracked by brute force. Making the announcement here, Cryptocat says the vulnerability existed in the way key pairs were generated. It claims that the bug existed in any 2.0 version prior to …
Ubisoft

Ubisoft forgets to ship activation codes for music game

Whoops. Ubisoft has shipped a number of European copies of Rocksmith for PC without activation codes. The omission was, of course, a blunder. However, gamers affected by the codes' absence have still been struck by Ubi's strict security and asked to provide a clear digital image of purchase receipts. Hordes of affected punters …
Caleb Cox, 23 Oct 2012

Anatomy of OpenSSL's Heartbleed: Just four bytes trigger horror bug

The password-leaking OpenSSL bug dubbed Heartbleed is so bad, switching off the internet for a while sounds like a good plan. A tiny flaw in the widely used encryption library allows anyone to trivially and secretly dip into vulnerable systems, from your bank's HTTPS server to your private VPN, to steal passwords, login cookies …
Chris Williams, 09 Apr 2014

Botched court doc outs Google as respondent in national security flap

An error by the US Department of Justice's document-redaction staff has inadvertently let slip a secret that the DoJ has spent months battling in the courts to protect – albeit one that will come as a surprise to no one. The DoJ has long maintained that the practice of using National Security Letters (NSLs) to obtain information …
Neil McAllister, 26 Aug 2013