The Register

1. To catch a thief, go to Google with a geofence warrant – and it will give you all the details

   Investigators ask Chocolate Factory to help them connect the geographic dots

   At 1030 on April 27, 2019, four unidentified individuals attempted to rob a Brinks armored truck parked outside of Michaels, an art supply and home decor store at the Point Loomis Shopping Center in Milwaukee, Wisconsin. To find out who they are, local authorities plan to ask Google.…

2. It's Friday, the weekend has landed... and Microsoft warns of an Internet Explorer zero day exploited in the wild

   Plus, WeLeakInfo? Not anymore!

   Roundup  Welcome to another Reg roundup of security news.…

3. 'Friendly' hackers are seemingly fixing the Citrix server hole – and leaving a nasty present behind

   Congratulations, you've won a secret backdoor

   Hackers exploiting the high-profile Citrix CVE-2019-19781 flaw to compromise VPN gateways are now patching the servers to keep others out.…

4. Stolen creds site WeLeakInfo busted by multinational cop op for data reselling

   One Irishman and one Dutchman both nicked

   Two men have been arrested after Britain’s National Crime Agency and its international pals claimed the takedown of breached credentials-reselling website WeLeakInfo.…

5. Unlocking news: We decrypt those cryptic headlines about Scottish cops bypassing smartphone encryption

   New perspective on FBI, Interpol demands for backdoors

   Vid  Police Scotland to roll out encryption bypass technology, as one publication reported this week, causing some Register readers to silently mouth: what the hell?…

6. Bad news: Windows security cert SNAFU exploits are all over the web now. Also bad: Citrix gateway hole mitigations don't work for older kit

   Good news: There is none. Well, apart from you can at least fully patch the Microsoft blunder

   Vid  Easy-to-use exploits have emerged online for two high-profile security vulnerabilities, namely the Windows certificate spoofing bug and the Citrix VPN gateway hole. If you haven't taken mitigation steps by now, you're about to have a bad time.…

7. Spanking the pirates of corporate security? Try a Plimsoll

   Execs don't care to keep things shipshape if they don't see a return.... so let's MAKE them

   Column  On New Year's Eve 2019, the good ship Travelex struck the iceberg of ransomware. That's not a good metaphor, to be honest: when the SS Titanic hit its frozen nemesis, it had the good taste to unambiguously sink in two hours and 40 minutes. Not so Travelex.…

8. Attention security startup founders: Give your fledgling Brit biz a boost with Tech Nation’s free Cyber 2.0 school

   Sign up now: The UK government's scheme to help new companies grow and scale is back

   Promo  If you need your new security company to get noticed, Tech Nation’s Cyber programme is back, opening its doors for another cohort of infosec companies looking to scale at speed.…

9. Top Euro court advised: Cops, spies yelling 'national security' isn’t enough to force ISPs to hand over massive piles of people's private data

   Opinion is preliminary, though a good start

   Analysis  In a massive win for privacy rights, the advocate general advising the European Court of Justice (ECJ) has said that national security concerns should not override citizens’ data privacy. Thus, ISPs should not be forced to hand over personal information without clear justification.…

10. What do Brit biz consultants and X-rated cam stars have in common? Wide open... AWS S3 buckets on public internet

    Exposed: Intimate... personal details belonging to thousands of folks

    A pair of misconfigured cloud-hosted file silos have left thousands of peoples' sensitive info sitting on the open internet.…