Latest articles

iPhone Hack Allegedly Used to Spy on China’s Uyghurs
Russian cyber-spies changed tactics after the UK and US outed their techniques – so here’s a list of those changes
Debian LTS: DLA-2648-1: mediawiki security update>
Debian LTS: DLA-2650-1: exim4 security update>
Privacy activist Max Schrems on Microsoft’s EU data move: It won’t keep the NSA away
80% of Net Neutrality Comments to FCC Were Fudged
Insurer AXA says it will no longer cover ransomware payments in France
Chinese smart TVs caught hoovering up data about devices on customers’ networks
When not to use edge computing
Cisco HyperFlex web interface has critical flaw that lets attackers get root and execute arbitrary commands
Kids in Hong Kong and other highly surveilled states worry infosec careers are just asking for trouble
Google Play to require privacy labels on apps in 2022, almost two years after Apple
Google will make you use two-step verification to login
Building a Successful Customer Advocacy Program (Hint: It’s Not How You Think)
Popular routers found vulnerable to hacker attacks
Qualcomm Chip Bug Opens Android Fans to Eavesdropping
Critical Cisco SD-WAN, HyperFlex Bugs Threaten Corporate Networks
Ryuk Ransomware Attack Sprung by Frugal Student
DDoS attack knocks Belgian government websites offline
Vulnerability in Snapdragon 855 SoCs could pwn Android modems, allow baddies to snoop on conversations
Massive DDoS Attack Disrupts Belgium Parliament
S3 Ep31: Apple zero-days, Flubot scammers and PHP supply chain bug [Podcast]
NSA offers advice: connecting OT to the rest of the net can lead to “indefensible levels of risk”
Firefox for Android gets critical update to block cookie-stealing hole
How to accurately match OVAL security data to installed RPMs
Smashing Security podcast #226: Cryptocrazies and NFTs
Fantastic passwords and where your children can find them
Crane horror Reg reader uses his severed finger to unlock Samsung Galaxy phone
Chrome on Windows turns on Intel, AMD chip-level defenses against malicious websites
JET engine flaws can crash Microsoft’s IIS, SQL Server, say Palo Alto researchers
Signal says its Instagram ads were banned for being too honest
New Crypto-Stealer ‘Panda’ Spread via Discord
Anti-Spam WordPress Plugin Could Expose Website User Data
Raft of Exim Security Holes Allow Linux Mail Server Takeovers
Microsoft will soon remove Flash Player from Windows 10 devices
21 nails in Exim mail server: Vulnerabilities enable ‘full remote unauthenticated code execution’, millions of boxes at risk
Peloton’s Leaky API Spilled Riders’ Private Data
Peloton exercise bikes found exposing user data – company dawdles in its response
East London council blurts thousands of residents’ email addresses in To field blunder
Feds Shut Down Fake COVID-19 Vaccine Phishing Website
Dell fixes exploitable holes in its own firmware update driver – patch now!
21Nails: Multiple Critical Vulnerabilities Discovered in Exim Mail Server – Patch Now!>
Twilio’s private GitHub repositories cloned by Codecov attacker, cloud comms platform confirms
Compliance clarity with Red Hat Insights
Ousaban: Private photo collection hidden in a CABinet
What not to expect when you’re expecting: Fertility apps may be selling intimate health secrets
RedHat: RHSA-2021-1429:01 Low: OpenShift Container Platform 4.6.27 security>
SUSE: 2021:138-1 suse/sle15 Security Update>
SUSE: 2021:137-1 suse/sle15 Security Update>
Debian LTS: DLA-2649-1: cgal security update>