The Register

Alerted to exposed credentials, users do something about it roughly a quarter of the time Between February and March this year, after Google released a Chrome extension called Password Checkup to check whether people’s username and password combinations had been stolen and leaked from website databases, computer scientists at the biz and Stanford University gathered anonymous telemetry from 670,000 people who installed the add-on.… READ MORE HERE…

You never know, we might figure out how not to screw up in future Analysis  In the clearest possible sign that the US intelligence services live within their own political bubble, the director of national intelligence has asked Congress to reauthorize a spying program that the NSA itself decided to shut down after it repeatedly – and illegally – gathered the call records of millions of innocent Americans.… READ MORE HERE…

Sandbox services are bursting with sensitive info from unwitting companies Companies are inadvertently leaving confidential files on the internet for anyone to download – after uploading the documents to malware-scanning websites that make everything public.… READ MORE HERE…

Shopping centres, museums and conference centres all found to be using tech Facial recognition is being extensively deployed on privately owned sites across the UK, according to an investigation by civil liberties group Big Brother Watch.… READ MORE HERE…

Omnishambles just keeps on rolling and you’re paying for it Sussex Police’s probe of the infamous London Gatwick airport drone fiasco of Christmas 2018 has doubled in cost to nearly £900,000 – and the bungling force still hasn’t arrested the person or persons responsible.… READ MORE HERE…

Mostly the public adversely affected A young man who DoSed two British police forces’ websites has been sentenced to 16 months in a young offenders’ institution.… READ MORE HERE…

Clickjacking code found on sites with 43 million daily visits total Analysis  Clickjacking, which came to the attention of security types more than a decade ago, continues to thrive, despite defenses deployed since then by browser makers.… READ MORE HERE…

Chipzilla patches firmware, drivers, SDKs Hot on the heels of Patch Tuesday fixes from Microsoft, Apple, Adobe, and SAP, Intel has dropped its monthly security bundle to address a series of seven CVE-listed vulnerabilities in its firmware and software.… READ MORE HERE…

Beware the denials of service: Netflix warns of eight networking bugs On Tuesday, Netflix, working in conjunction with Google and CERT/CC, published a security advisory covering a series of vulnerabilities that enable denial of service attacks against servers running HTTP/2 services.… READ MORE HERE…

Plus special guest stars Adobe and SAP in this month’s security fixes Patch Tuesday  Microsoft, Adobe, and SAP may have just ruined more than a few summer vacation plans, thanks to a massive and critical Patch Tuesday bundle of security fixes this month.… READ MORE HERE…