Articles about Zombie

Microsoft releases open source bug-bomb in the rambling house of C

The zombie bugs in programs and libraries at the heart of the Internet's infrastructure often have the C programming language in common. Microsoft Research now wants to add the kind of bounds-checking seen in C# to C, to help splat bugs like “buffer overruns, out-of-bounds memory accesses, and incorrect type casts,” in an add- …

Safari 10 dumps Flash, Java, Silverlight, QuickTime in the trash

Apple has taken its turn at the hammer, and added its own i-Nail to the coffin of Flash. Over at the Webkit blog, Ricky Mondello of the Safari team writes that Safari 10, due in the northern fall, will “behave as though common legacy plug-ins on users’ Macs are not installed”. Instead, it will try to default to HTML5 for …

Hooves in spaaace: Goat Simulator goes galactic

Swedish games outfit Coffee Stain Studios has announced it's releasing a galactic expansion to its popular 2014 ram-'em-up Goat Simulator, which finally offered goat wannabes the chance to fulfil their caprine fantasies. Entitled Waste of Space, the expansion's premise is that players "get to beat or trick people into …
Lester Haines, 25 May 2016
Zombie rising from the grave

Zombie crypto still rules smart grids: OSGP vendors need to kill RC4

The Open Smart Grid Protocol's custom RC4 encryption has been cracked – again. OSGP was called out last year for rolling its own crypto, based on the deprecated RC4. At the time, the OSGP Alliance said it would implement better security, but the RC4 zombie is still shambling around, according to German researchers Linus …

Microsoft sets Feb 2017 date to kill last SHA-1 zombies

Microsoft has posted the next step in its deprecation of SHA-1 certificates, but they'll survive for nearly another year. Back in November, Redmond was mulling joining Firefox in a death-to-SHA-1 party during 2016, but its latest missive sets a February 2017 sunset. At that date, Microsoft's Edge Team writes, both Edge and …
traffic lights

Germans stick traffic lights in pavements for addicts who can't take their eyes off phones

The German city of Augsburg is embedding warning lights in the pavement at traffic intersections to alert smartphone users who don't looking up before crossing the road. Rows of red LEDs have been embedded in the pavement after a 15-year-old girl was killed when she stepped in front of a tram while looking at her smartphone …
Iain Thomson, 26 Apr 2016
No junk mail. Pic: gajman, Flickr

Mumblehard spam-spewing botnet floored

Security researchers have teamed up with authorities in Ukraine to take down a spam-spewing Linux-infesting botnet. Security firm ESET teamed up with CyS-CERT and the Cyber Police of Ukraine to take down the Mumblehard botnet. A year ago, ESET analyzed the Mumblehard botnet, which was made up of thousands of infected Linux …
John Leyden, 07 Apr 2016
I would vote republican but I crave brains by https://www.flickr.com/photos/clarkmackey/  cc 2.0 attribution generic https://creativecommons.org/licenses/by/2.0/

Zombie SCO rises from the grave again

The Santa Cruz Organisation (SCO) just doesn't know when it's dead: the bankruptcy trustee of the company that thinks it owns Linux is having another try at milking IBM for money. Back in February it looked like this long-running case, which hinges on whether IBM lifted some SCO code and popped it into its own operating …
Simon Sharwood, 30 Mar 2016

Home Ebola testing with a Tricorder? There's an app for that

Last year, if you’d walked off a flight from West Africa running a high fever, you’d very quickly find yourself quarantined to test for the Ebola virus. The length of your stay in quarantine would depend on how long it took to run the required tests. A genetic test remains the gold standard for infectious agents. Every …
Mark Pesce, 09 Mar 2016

HTTPS DROWN flaw: Security bods' hearts sink as tatty protocols wash away web crypto

The discovery of a HTTPS encryption vulnerability, dubbed DROWN, again proves that supporting tired old protocols weakens modern crypto systems. DROWN (aka Decrypting RSA with Obsolete and Weakened eNcryption) is a serious design flaw that affects HTTPS websites and other network services that rely on SSL and TLS – which are …
John Leyden, 01 Mar 2016
management regulation2

SCO vs. IBM looks like it's over for good

The long-running SCO vs. IBM case looks like it might just be over. A new filing (PDF) scooped up by the good folks at Groklaw sees both SCO and IBM agree to sign off on two recent decisions in which SCO's arguments advancing its claims to own parts of Unix were slapped down by the US District Court. As The Register reads the …
Simon Sharwood, 29 Feb 2016

Amazon's Lumberyard invaded by zombies

A couple of days back Amazon unleashed Lumberyard - a free game engine and development tool locked into Amazon Web Services (AWS). According to the AWS Service Terms, Lumberyard's "engine, integrated development environment, and related assets and tools", known collectively as "Lumberyard Materials", "may not be run on any …
Lester Haines, 11 Feb 2016

SCO slapped in latest round of eternal 'Who owns UNIX?' lawsuit

The SCO Group has suffered another reversal in its long-running attempt to squeeze some cash out of IBM for allegedly pinching its code and tossing it into Linux and maybe AIX too. The case has run since 2003, when SCO was called Caldera, and has survived SCO's bankruptcy and all manner of legal shenanigans. SCO keeps finding …
Simon Sharwood, 08 Feb 2016

Danish Sith Lord fined in Galactic Republic rumpus

The Vulture Central Star Wars Saddometer maxxed out at 10 today at the news that Danish police rushed to a house in Jutland over the weekend to break up a heated argument between two teenage lads regarding the exact strength of the Galactic Republic. According to The Local, cops rolled up at the premises in Fredericia at 5. …
Lester Haines, 02 Feb 2016

Zombie OS lurches through Royal Melbourne Hospital spreading virus

The pathology wing of the Royal Melbourne Hospital in the Australian state of Victoria is suffering from an virus infection on its Windows XP PCs. The hospital runs one of the southern state's largest networks and emergency departments. Its blood bank has fallen back to manual processes for processing blood, tissue, and urine …
Darren Pauli, 19 Jan 2016
Zombie rising from the grave

Late night server rebuild led to 'nightmares about mutilated corpses'

On-Call It's Friday, your correspondent is back from summer holidays and it is therefore once again time to welcome you to On-Call, our regular reader-written tales of things that went bump when off-site. This week, reader “RP” tells us of the time he was asked to fix a server just as he was about to knock off for the day. And not any …
Simon Sharwood, 15 Jan 2016
Police officers in bodu armour mill around in field

Cybercops cuff two in hunt for DDoS extortion masterminds

An international police investigation against the DD4BC DDoS extortion gang has led to one suspect being arrested and one detained, Europol said on Tuesday. Suspected key members of the organised network were identified in Bosnia and Herzegovina by the UK Metropolitan Police Cyber Crime Unit before the intelligence was passed …
John Leyden, 12 Jan 2016
zombie_648

Come in Internet Explorers, your time is up. Or not. Up to you

A huge chunk of Microsoft users will today be cut off from the computing giant’s security lifeline, for January 12 is the day when Redmond will stop releasing security fixes for a swathe of legacy versions of Internet Explorer. Extended support has finished for IE8, 9 and 10 on Windows 7 SP1. Only the following are still …
Gavin Clarke, 12 Jan 2016
Zombie rising from the grave

Could NetApp's purchase of SolidFire see the end of ONTAP?

Comment NetApp has finally bitten the bullet and bought an AFA vendor, plumping for the technology-driven SolidFire as opposed to some of the marketing-driven competitors in the space. At less than a billion dollars, it appears to be a very good deal for NetApp and perhaps with an ever-decreasing number of suitors, it is a good deal …
StorageBod, 22 Dec 2015
emptying_a_tank_of_sewage_648

Unsourced, unreliable, and in your face forever: Wikidata, the future of online nonsense

Special report Lobbying companies, PR professionals and SEO optimisers are flocking to influence Wikidata, a child project of Wikipedia that’s backed by serious money. And that’s just one of the reasons to be concerned about a project that could become the world’s default source of information. The information in Google's Knowledge Graph – …
Andreas Kolbe, 08 Dec 2015
CHeckmate

We pick storage brains: Has object storage endgame started?

Interview IBM buying Cleversafe could mark the start of the endgame for independent object storage suppliers. We talked to Philippe Nicolas, who was Scality’s Director of Product Strategy until earlier this year and is now a storage industry advisor. We asked him questions about the state of the object market and its suppliers. His …
Chris Mellor, 24 Nov 2015

Superfish 2.0 worsens: Dell's dodgy security certificate is an unkillable zombie

Updated The rogue root certificate in new Dell computers – a certificate that allows people to be spied on when banking and shopping online – will magically reinstall itself even when deleted. El Reg can confirm that the eDellRoot root CA cert, discovered over the weekend, automatically reappears when removed from the Windows …
Shaun Nichols, 23 Nov 2015
Zombie rising from the grave

Windows 8.1 exams kept alive six more months, Win 7 tests immortal

Microsoft may be hustling the world onto Windows 10 just as fast as it can, but it seems there's residual demand out there for Windows 8.1 and Windows 7. We make that suggestion because Microsoft has extended the life of certifications for its last-but-one desktop OS and has no plans to can all Windows 7 education. On the …
Simon Sharwood, 23 Nov 2015
Tornado_funnel

Avere adds Azure to triple-headed cloud beast

Microsoft's Azure has joined AWS and Google as a virtual filer accelerator host for Avere’s vFXT filter caching software. Avere makes its FXT, a hardware and software multi-tier caching appliance, which accelerates on-premises filers, such as those from Isilon and NetApp. It can also be an on-premises front-end for files held …
Chris Mellor, 17 Nov 2015
Zombie rising from the grave

Australia on the very brink of cyber-geddon, says ex-spook

Blood will flow in the streets, human entrails will adorn our flagpoles, and zombies are on the way to eat our brains, according to one of the architects of fortress Australia. As well as promising cyber jihadist attacks, former Australian Security and Intelligence Organisation (ASIO) boss David Irvine, whose credits include …
Dying Light

Laid-off IT workers: You want free on-demand service for what now?

Updated Some HR person at Atlanta's SunTrust Banks has come up with what they genuinely believe is a clever idea – after dumping 100 of its IT staff, the billion-dollar financial institution is requiring them to remain available to help out for free for two years. You can see how this makes sense; we’ve all had co-workers leave and …
Dominic Connor, 22 Oct 2015
Zombie rising from the grave

Infosec workers swipe Q-tip across 'net: Ew, there's Dridex on it

The Dridex banking botnet is continuing to show some signs of life even after a high-profile FBI-led disruption operation earlier this month. Servers associated with Dridex were seized in a co-ordinated operation on 13 September weeks after a suspect, Moldovan Andrey Ghinkul, was arrested in Cyprus in late August. But the …
John Leyden, 20 Oct 2015
Sad iPhone

Zombie iOS APIs used to slurp private data

Up to a million iOS users' Apple IDs and device serial numbers were harvested by a software development kit (SDK) that accessed so-called “private APIs”. The information harvested by the Youmi advertising SDK from China was then sent back to Youmi servers, according to SourceDNA. Private APIs are hooks that exist in iOS, but …

FBI takes down Dridex botnet, seizes servers, arrests suspect

The FBI has teamed up with security vendors to disrupt the operations of Dridex banking Trojan. Multiple command-and-control (C&C) servers used by the Dridex Trojan have been taken down and seized in a co-ordinated action after the FBI obtained court orders. The take-down operation is geared towards crippling the malware’s …
John Leyden, 14 Oct 2015
Apple a day  by Robert Holf https://www.flickr.com/photos/robbertholf/ CC 2.0 attribution https://creativecommons.org/licenses/by/2.0/

'We jokingly call Apple the Tesla graveyard. Cook gets our sloppy rejects. LOL'

QuoTW Welcome once again to our smorgasbord of tech quips, quotes and quibbles from the past seven days. This week, rocket man Elon Musk – a billionaire big-mouthed bloke who regularly features in QuoTW – outdid himself with this delightful swipe at Cupertino. Important engineers? [Apple] have hired people we've fired. We always …
Team Register, 11 Oct 2015

Silicon Valley now 'illegal' in Europe: Why Schrems vs Facebook is such a biggie

Analysis Today's victory by Austrian privacy advocate Max Schrems in the European Court has massive repercussions for how the superpowers make law, and how Silicon Valley conducts business. And it may only get worse for America's data processing giants, very soon. Microsoft is challenging the notion that the world's data is by default …
Andrew Orlowski, 06 Oct 2015
Doctor Who – Under the Lake. Image credit: BBC

Doctor Who's Under the Lake splits Reg scribes: This Alien homage thing – good or bad?

TV Review Readers please note: THIS IS A POST-UK BROADCAST REVIEW – THERE WILL BE SPOILERS! Gavin says: I know there's something wrong with Doctor Who – Under the Lake, but it hits me only at the end. It isn’t the standard sci-fi set up of humans stranded in isolated and hostile setting – scientific/industrial/military facility/hotel/ …
Kelly Fiveash, 03 Oct 2015

Linux-powered botnet lets rip on victims with 180Gbps network floods

Cybercrooks have built a network of compromised Linux servers capable of blowing websites and other systems off the internet with at least 150Gbps of junk traffic. The XOR Distributed Denial of Service (DDoS) botnet is launching 20 attacks a day from compromised machines, according to Akamai. 90 per cent of the attacks from …
John Leyden, 29 Sep 2015
Sonic glasses in Doctor Who – Witch's Familiar. Pic credit: BBC

Devious Davros, tricksy Missy and Dalek Clara delight in The Witch's Familiar

TV Review Readers please note: THIS IS A POST-UK BROADCAST REVIEW – THERE WILL BE SPOILERS! Kelly says: Yeah, yeah, yeah. So it turns out Clara and Missy escape from the death-by-Dalek shocker in the first episode of this two-parter for the opening of Doctor Who, Season 9. Vortex manipulator For The Win. And the TARDIS is also intact …
Kelly Fiveash, 26 Sep 2015
Dunce's cap graffiti by https://www.flickr.com/photos/lord-jim/ cc 2.0 attribution https://creativecommons.org/licenses/by/2.0/

AT&T accused of Wi-Fi interception, ad injection

AT&T has been accused of grabbing user traffic from its Wi-Fi hotspots for ad injection. The news comes from Stanford lawyer and computer scientist Jonathan Mayer, whose previous work includes uncovering a browser history bug in 2011, and the use of Verizon zombie cookies by third parties. In Webpolicy, Mayer writes that …

Anti-botnet initiatives USELESS in sea of patch-hating pirates

Three Dutch researchers have crunched data gleaned from efforts to battle the Conficker bot and declared anti-botnet initiatives all but useless for clean up efforts. Conficker was born in 2008 spreading aggressively through a since patched remote code execution Microsoft vulnerability (MS08-067) that affected all operating …
Darren Pauli, 18 Aug 2015
angry_woman_mobile_cropped_648

You'll LITERALLY PAY for getting tricked into visiting these scam sites

Update Cyber-crooks have latched on to online scams that exploit direct-to-bill payment options. Security biz Malwarebytes warns that crooks are tricking users into visiting mobile sites containing code that charges users via their mobile number. Victims are corralled through a complex series of pop-up adverts to a fly-by-night web …
John Leyden, 11 Aug 2015
botnet

Bunitu botnet crooks sell your unencrypted VPN traffic for £££

Cyber-crooks behind the Bunitu botnet are selling access to infected proxy bots as a way to cash in from their network. Users (some of whom may themselves be shady types, as explained below) who use certain VPN service providers to protect their privacy are blissfully unaware that back-end systems channel traffic through a …
John Leyden, 11 Aug 2015
ShutterStock217132183

ATTACK of the ZOMBIE SATELLITE: Run radio hams, run!

A satellite launched by the US military has gone rogue and is causing interference to radio hams across Europe. The US Navy’s PCSat NO-44, which is only supposed to transmit over the US, is now drowning out European amateurs and the USN doesn’t know what to do about it. Former head of information security at BT and keen radio …
Adam Banks, 31 Jul 2015
shutterstock_282226826-Internet-of-things

Cyber poltergeist threat discovered in Internet of Stuff hubs

New security research has revealed a whole new area of concerns for the soon-to-be-everywhere Internet of Things – smart home hubs. Hubs – devices that link into home networks to control lighting, dead-bolt locks and cameras – can be dangerously vulnerable to attack, according to security tools firm TripWire. Craig Young, a …
John Leyden, 23 Jul 2015
Commodore PET smartphone

ZOMBIE Commodore PET lurches out of its 1970s grave – as a FONDLESLAB

Video The Commodore PET, a beloved micro-computer of the late 1970s, is coming back - as an Android phablet. A new website, Commodoresmart.com, has appeared to spruik the device which offers a 5.5 inch screen at 1920x1080, 8MP front and 13MP rear cameras, an eight-core CPU, 3GB of RAM, Android 5.0 and the chance to use two SIMs for …
Simon Sharwood, 15 Jul 2015
Ship scrapyard photo via Shutterstock

Why the USS NetApp is a doomed ship

Comment NetApp last month changed chief executives, and in May laid off just over 500 people. Some believe this is the start of great new things and a turnaround for NetApp. I disagree. To put this as bluntly as I can, NetApp is most likely doomed. Getting rid of the CEO won't save it. NetApp's problem is that the culture of: "The …
Trevor Pott, 09 Jul 2015
Zombie rising from the grave

Verizon outage borks phones, TVs, internet for hapless East Coast folk

Update All of US carrier Verizon's services have been struck down by an outage across Delaware, New Jersey, and New York since 5:27am EDT. Down Detector has recorded a spike in complaints since this morning, and its own commentards have tracked the outage by offering their experiences and referencing them with their area codes. …

WTF is going on with the zombie NSA-friendly Patriot Act? Let us help

President Obama has told the US Senate to get its act together over the spy-friendly Patriot Act, key provisions of which are due to expire at midnight on Sunday. The three provisions that will lapse include Section 215, which the NSA uses as legal cover for its blanket slurping of citizens' mobile phone records, and which a US …
Iain Thomson, 27 May 2015
Whitehall road sign. Sgt Tom Robinson RLC/Crown copyright

UK.gov confirms it's binned extended Windows XP support

The UK government has decided, as foreshadowed by The Reg, that it can do without extended support for Windows XP. The nation signed up for Microsoft's super-special zombie OS support service – aka a Custom Support Agreement - last year, but a recent meeting of government Technology Leaders decided enough is enough. A post on …
Simon Sharwood, 26 May 2015
spok

It's the end of life as we know it for Windows Server 2003

Windows Server 2003 will pass out of Microsoft support on July 14, 2015. Different organisations report different numbers, but all agree that there are millions of Server 2003 servers still running in the wild. Microsoft says there are 11 million Server 2003 servers still running. Gartner says eight million. Several internet …
Trevor Pott, 18 May 2015
botnet

Chinese cyber-spies hid botnet controls in MS TechNet comments

Cyber-spies are increasingly attempting to hide their command and control operations in plain sight by burying their command infrastructure in the forums of internet heavyweights, including Microsoft. FireEye and Microsoft have successfully shut down the Chinese threat actor APT17’s use of the MSFT TechNet blog to hide their …
John Leyden, 14 May 2015
Zombie rising from the grave

Barclays, Halifax and Tesco still being gnawed by POODLE

Major banks are still open to POODLE attacks months after being called out as vulnerable. The POODLE (Padding Oracle On Downgraded Legacy Encryption) security flaw surfaced October and affects the Secure Sockets Layer (SSL) 3.0 algorithm and versions of TLS (Transport Layer Security). Ivan Ristic's SSL Labs site revealed at the …
Darren Pauli, 29 Apr 2015

ZOMBIE Google Glass 2 FEEDS ON Italian BRAINS, says specs supremo

Italian eyewear maker Luxottica has been working with Google engineers to come up with a new version of Glass – adding further weight to the suggestion the project isn't truly dead. The ad giant killed off Glass 1.0 sales in January after the unpopular program jumped the tracks. In March, Google's exec chairman Eric Schmidt …
Iain Thomson, 24 Apr 2015
Wolfenstein 3D

Let’s PULL Augmented Reality and CLIMAX with JISM

Something for the Weekend, Sir? “Augmented Reality is a terrible expression,” says the AR demonstrator. “It’s a pity it doesn’t have a better name. So we call it XXooming. With two Xs.” Oh dear, I can tell this is about to be a presentation involving a string of brand-new made-up terms designed to mask the abject failure of the technology in question to have …
Alistair Dabbs, 18 Apr 2015