ThreatsHub.org
‘A whole bunch of tunnels’: Mesh networking with per-node permissions and OAuth security Interview WireGuard, a new VPN protocol with both strong performance and easy setup, has been adopted by startup Tailscale as the basis of a peer-to-peer remote networking system that is both secure and quick to configure.… READ MORE HERE…
Read more
A few more months to get those servers upgraded ‘in light of current global circumstances’ Microsoft has blinked once again and delayed disabling TLS 1.0 and 1.1 by default in its browsers until the latter part of 2020.… READ MORE HERE…
Read more
Vicarious liability now applies to intentional leaks, top court says Morrisons supermarket is not liable for the actions of a disgruntled employee who deliberately leaked nearly 100,000 employees’ payroll data online, the Supreme Court has ruled.… READ MORE HERE…
Read more
There’s an app for that. Or text, if you dare. Or even retail outlets Singapore will bin the physical tokens used to provide two-factor authentication (2FA) for some digital government services.… READ MORE HERE…
Read more
Don’t worry, though. Any ‘systematic’ data extraction would be ‘time-consuming’ The digital burglary at 118 118 Money exposed recordings of customer service calls that included a raft of personal information although thankfully not payment data.… READ MORE HERE…
Read more
Plus, Google warns of fake journo phishing attacks Roundup It’s once again time for the El Reg security roundup.… READ MORE HERE…
Read more
‘The future of cybersecurity is the responsibility of everyone’ Promo As women take more senior positions in the field of cybersecurity, there’s a shortage of women available to mentor others.… READ MORE HERE…
Read more
Doc Frown: Searls decries video-conferencing software’s ‘creepy’ closeness with ad tracking As the global coronavirus pandemic pushes the popularity of videoconferencing app Zoom to new heights, one web veteran has sounded the alarm over its “creepily chummy” relationship with tracking-based advertisers.… READ MORE HERE…
Read more
‘We believe the stolen graphics IP is not core to the competitiveness or security of our graphics products’ On Wednesday, AMD confirmed intellectual property related to its graphics processors was stolen last year, though insisted the leaked files will not damage its business nor compromise product security.… READ MORE HERE…
Read more
Citrix, Cisco and Zoho-pwning APT41 attack wave seems in awfully bad taste Proving that no good crisis ever goes to waste, Chinese government hacking crew APT41 launched a campaign that abuses vulns in Citrix Netscaler and Zoho ManageEngine, according to threat intel outfit FireEye.… READ MORE HERE…
Read more