RSA 2018: Attackers can steal data from iPhones over Wi-Fi by abusing a sync feature built into iTunes
News security
MPs: A Year After WannaCry, NHS Must Take ‘Urgent’ Security Action
The NHS and the government have failed to act on lessons learned from the incident, Public Accounts Committee says
Proposal Gives EU Judges Power To Demand Data Across Borders
The 'e-evidence' law would force tech firms to hand over data within as little as six hours
NCSC Warns ZTE Poses ‘Risk To UK National Security’
ZTE equipment should not be widely deployed in UK networks as it poses a 'risk of external interference'
AMD And Microsoft Release Spectre Fixes
The latest patches include operating system and processor microcode updates to protect users from Spectre Variant 2
Researcher: Microsoft Patch For ‘Important’ Outlook Bug Is Incomplete
Microsoft has fixed a more than year-old flaw, but its patch doesn't stop all attacks from getting through
Major Browsers Back FIDO2 Tech For A Password-Free Web
The FIDO Alliance's WebAuthn project is now a step away from finalisation, meaning software and hardware makers can begin implementation
Hacking Group Targets Mac Systems For Data Theft
Mac users shouldn't be lulled into a false sense of security, warns Trend Micro
Scottish Police Buy Cellebrite Phone Unlocking Kits
Cellebrite kiosks are to be deployed around Scotland for unlocking phones and other seized devices
Zuckerberg Apologises Over Facebook Data Row In Congress Testimony
Facebook's chief executive has apologised over the company's data 'mistakes' as he prepares to answer questions before Congress
BT Admits ‘Whole Home Wi-Fi’ Mesh Connectivity Bugs
Users of BT's Whole Home Wi-Fi mesh network say the devices stopped working properly after BT released a firmware update
Poisoned BitTorrent Client Hits 400,000 Windows PCs With Malware
Attackers used a counterfeit software update to launch the massive Windows malware campaign
New Intel Chips To Fix Meltdown, Spectre Flaws
Hardware changes in chips shipping later this year aim to replace performance-draining software patches
Crimeware ‘Cloud’ Takes Cues From Enterprise Services
The BlackTDS malware distribution network automates attacks with ease-of-use inspired by legitimate cloud platforms
Start-Up Warns Of AMD Chip Flaws In Unusual Publicity Campaign
A small security firm has warned of embarrassing flaws affecting AMD chips, giving the chipmaker only 24 hours to respond
Sophisticated ‘Slingshot’ Malware Remained Undetected For Years
Kaspersky Lab has uncovered a highly complex - and probably state-backed - malware strain that infects users via compromised routers
Government Guidelines Aim To Secure Smart Devices
A draft code of practice would encourage manufacturers to remove default device passwords and make communications less easy to hack
Google Patches ‘Critical’ Android Flaws
Google has patched 11 serious bugs in the platform, plus dozens of less severe security issues
Data Centre Heists: Raiders Steal Hundreds Of Bitcoin-Mining Servers In Iceland
Eleven suspects have now been arrested in connection with the crime spree, the biggest in Iceland's history
High Court Urged To Force Urgent Changes To Surveillance Law
Campaigners want changes to Snooper's Charter in place by July after court found portions 'incompatible' with EU law
US Government Contractor Cellebrite ‘Can Unlock Latest iPhones’
Even the most recent iOS gadgets and software may not be safe from prying eyes, according to claims by Israel-based Cellebrite
Amazon ‘Pays $1bn’ For Smart Doorbell Maker Ring
The acquisition could boost a new Amazon service that allows couriers to deliver parcels and food orders inside of users' homes
Apple Releases iOS, macOS Fixes For Telugu ‘Text Bomb’ Bug
The issue meant a single character in the Indian language Telugu would cause applications on iPhones, iPads or Macs to freeze
Oracle Buys Security Startup Zenedge To Boost Cloud Platform
Zenedge is to expand Oracle's already strong cloud security range, following plans to build a dozen new data centres worldwide
Google Publishes Unpatched Flaw In Microsoft Edge Browser
The bug could allow hackers to use Edge to launch malicious Javascript code, getting around a security feature introduced last year
Belgium Orders Facebook To Stop Collecting Data On Non-Users
The social network must also delete all the data it has collected on Belgian citizens who aren't users - or face fines of €250,000 a day
Researchers Identify Malware That Disrupted Pyeongchang Olympics Launch
The code was preloaded with usernames and passwords for the Pyeongchang Olympic Games' official servers, indicating a sophisticated attacker
Attack Takes Down Pyeongchang Games Web Systems
The website of the Pyeongchang Winter Olympics was disabled for about 12 hours after a cyberattack that affected 'non-critical' servers
Thousands Of Government Sites Hacked To Mine Cryptocurrency
The hack affected the ICO, the NHS and thousands of government and academic organisations in the UK, the US and elsewhere
BT Shares Malware Data With Rival ISPs To Combat Cyber Threat
'Follow our lead', BT urges rival ISPs after it begins sharing malware data to help in cybercrime battle