Feeds

Security

Thwarted dev sets Instasheep to graze on Facebook accounts

Zuck-land tried to fix crumbling cookie with HTTPS but developer won't bite
Darren Pauli, 30 Jul 04:32

Canada's boffins need A WHOLE YEAR to recover from China hack attack

'State-sponsored actor' breached National Research Council network
Richard Chirgwin, 30 Jul 01:56

Senate introduces USA FREEDOM Act to curb NSA spying excesses

Good news if you're an American, less so for everyone else
Iain Thomson, 29 Jul 22:24

BlackBerry: We'll buy Angela Merkel's phone security company. HA!

Secusmart apparently to BOOST rep for snoop-proofness

Only '3% of web servers in top corps' fully fixed after Heartbleed snafu

Just slapping a patched OpenSSL on a machine ain't going to cut it, we're told
Iain Thomson, 29 Jul 12:00

14 antivirus apps found to have security problems

Vendors just don't care, says researcher, after finding basic boo-boos in security software
Darren Pauli, 29 Jul 07:32

Malware gets your Android blabbering to HACKERS

Boffins get your mobe to spill the beans using Google text-to-speech kit
Darren Pauli, 29 Jul 06:33

Google Maps community competition falls foul of Indian regulations

Oh look! Such a lovely SECRET MILITARY BASE!
Richard Chirgwin, 29 Jul 02:31

Israel's Iron Dome missile tech stolen by Chinese hackers

Corporate raiders Comment Crew fingered for attacks
Darren Pauli, 29 Jul 01:45

Secure microkernel that uses maths to be 'bug free' goes open source

Hacker-repelling, drone-protecting code will soon be yours to tweak as you see fit
Darren Pauli, 28 Jul 07:31

AusCERT chief Ingram steps down

Replacement promises better relationships, late nights sleeping at the office
Darren Pauli, 28 Jul 03:10

How long is too long to wait for a security fix?

Sysadmin blog Synology finally patches OpenSSL bugs in Trevor's NAS
Trevor Pott, 25 Jul 20:40
Bug bounties

Roll out the welcome mat to hackers and crackers

Security chap pens guide to bug bounty programs that won't fail like Yahoo!'s
Darren Pauli, 25 Jul 07:41

Opinion

How long is too long to wait for a security fix?

Sysadmin blog Synology finally patches OpenSSL bugs in Trevor's NAS
Double Facepalm; when one facepalm is not enough.

Stop begging, startup-land, and start YELLING at Catch of the Day

Consumer trust boost from data breach laws would do more for online biz than any subsidy or share scheme
Richard Chirgwin, 23 Jul 22:08
Apple

iDevice gizmo-snatcher Oleg... you must be taking the Pliss

High profile attacker couldn't scam your grandma
Darren Pauli, 30 May 06:58
Angry Birds

Look, pal, it’s YOUR password so it’s YOUR fault that it's gone AWOL

Something for the Weekend, Sir? Security begins at home... and ends up in someone else’s
Alistair Dabbs, 23 May 11:58

News

Four fake Google haxbots hit YOUR WEBSITE every day

Goog the perfect ruse to slip into SEO orfice
Darren Pauli, 25 Jul 05:34

Boffins build FREE SUPERCOMPUTER from free cloud server trials

Who cares about T&Cs when there's LIteCoin to mint?
Darren Pauli, 25 Jul 03:58

Putin: Crack Tor for me and I'll make you a MILLIONAIRE

Russian Interior Ministry offers big pile o' roubles for busting pro-privacy browser
Simon Sharwood, 25 Jul 01:58

Google devs: Tearing Chrome away from OpenSSL not that easy

Custom BoringSSL fork not quite a drop-in replacement yet
Neil McAllister, 25 Jul 01:24

Who has your credit card data? 1 million HOLIDAY-MAKERS' RECORDS exposed

Travel agent fined £150K – Sloppy coding fingered
John Leyden, 24 Jul 13:55

Six charged over StubHub e-ticket heist for Elton John gigs

Compromised passwords re-used, say prosecutors
John Leyden, 24 Jul 12:57

BMW's ConnectedDrive falls over, bosses blame upgrade snafu

Traffic flows up 20% as motorway middle lanes miraculously unclog
John Leyden, 24 Jul 11:22

Mozilla fixes CRITICAL security holes in Firefox, urges v31 upgrade

Misc memory hazards 'could be exploited' - and guess what, one's a Javascript vuln
Richard Chirgwin, 24 Jul 04:02

Researcher sat on critical IE bugs for THREE YEARS

VUPEN waited for Pwn2Own cash while IE's sandbox leaked
Darren Pauli, 24 Jul 03:33

50,000 sites backdoored through shoddy WordPress plugin

Not running WordPress? Better hope your neighbour isn't
Darren Pauli, 24 Jul 01:57
pirate ship

Copyright kingpins charged for sailing pirate Android app ships

Six charged, two arrested, in wake of coordinated raids.
Darren Pauli, 24 Jul 00:58
Fail and You

iOS slurpware brouhaha: It's for diagnostics, honest, says Apple

Hidden packet sniffer claims hit Cupertino
Iain Thomson, 24 Jul 00:34
Double Facepalm; when one facepalm is not enough.

Stop begging, startup-land, and start YELLING at Catch of the Day

Consumer trust boost from data breach laws would do more for online biz than any subsidy or share scheme
Richard Chirgwin, 23 Jul 22:08

Tails-hacking Exodus: Here's video proof of our code-injection attack

It's not a Tor exploit, but it will hit fully patched systems with default settings, we're told
Iain Thomson, 23 Jul 20:11
London BMW 5-Series police car

Yorkshire cops fail to grasp principle behind BT Fon Wi-Fi network

'Prevent people that are passing by to hook up to your network', pleads plod
Jasper Hamill, 23 Jul 07:55

StubHub hit by trans-Atlantic fraudsters, says New York DA

US, Canadian and UK authorities expected to reveal details today
Simon Sharwood, 23 Jul 07:42
Paypal vulnerability

PayPal post-checkout cash slurp a FEATURE not a BUG

Would you like a super-sized shipping charge with that?
Malware

Attackers raid SWISS BANKS with DNS and malware bombs

'Retefe' trojan uses clever spin on old attacks to grant total control of bank accounts
Darren Pauli, 23 Jul 06:40
Keep out sign with deleted expletive

EFF looses Privacy Badger to munch cookies and scripts

Furry and furious browser-protector aims to improve online privacy
Richard Chirgwin, 23 Jul 03:02

Android ransomware demands 12x more cash, targets English-speakers

FBI child-abuse warning shake-down gets more sophisticated
John Leyden, 23 Jul 02:02