The Register

1. Error-bnb: Techies scramble to fix Airbnb website bug that let strangers read each others' account messages

   One thing to let people rent your home, quite another to let them access your private comms

   Airbnb says it has fixed a baffling bug in its website that briefly caused some of its users to be shown messages belonging to others when viewing their account inboxes.…

2. IT guy whose job was to stop ex-staff running amok on the network is jailed for running amok on the network

   After he was demoted and fired, idiot logged into office PC from home and wiped storage systems

   An IT guy, who was tasked with locking out ex-employees from the company network, has been jailed after he logged in after being fired and wiped an office's computer storage drives.…

3. Microsoft claims to love open source – this alleged leak of Windows XP code is probably not what it had in mind, tho

   Software giant is 'investigating', infosec gurus reckon it looks legit

   The source code for Windows XP and other elderly Microsoft operating systems appears to have leaked online as the mega-corp's Ignite developer shindig came to an end.…

4. Spain's highway agency is monitoring speeding hotspots using bulk phone location data

   Local reports suggest individuals can't be identified... yet

   Spain's highways agency is using bulk mobile phone data for monitoring speeding hotspots, according to local reports.…

5. Big US election coming up, security is vital and, oh look... a federal agency just got completely pwned for real

   Hacker had set up shop on network using stolen Office 365 accounts

   An unspecified US government agency was hacked by a miscreant who appears to have made off with archives of information.…

6. Want to stop cybercrimes tearing through your network? First check your privileges

   Your most powerful admins are the weakest links. But CyberArk are here to help

   SPONSORED  The consequences of cybercrime are ever more costly, with Accenture’s Ninth Annual Cost of Cybercrime Study showing the average financial impact per company rose by $1.4m to $13m in 2018.…

7. You know that Microsoft ZeroLogon bug you've been dragging your feet on? It's getting pwned in the wild now

   Scan servers for signs of compromise and patch if you haven't already

   The rather concerning design flaw in Microsoft's netlogon protocol is being exploited in the wild by miscreants, the Windows giant's security team has warned.…

8. We need to talk about criminal hackers using Cobalt Strike, says Cisco Talos

   Pentesting tool showing up in the hands of baddies, warns threat intel biz

   Penetration testing tool Cobalt Strike is increasingly being used by black hats in non-simulated attacks as traces show up in scenarios from ransomware infections to state-backed APT threats, says Cisco Talos.…

9. Wondering how to tell the world you've been hacked? Here's a handy guide from infosec academics

   Pair of England's unis figure out better way of admitting terrible thing

   Infosec boffins at the University of Kent have developed a "comprehensive playbook" for companies who, having suffered a computer security breach, want to know how to shrug off the public consequences and pretend everything's fine.…

10. UK ICO fines biz profiteering from COVID-19 crisis by sending unsolicited marketing texts to Joe Public

    Digital Growth Experts Ltd hit send on 16k+ messages. The fine? £3.70 per text

    Digital Growth Experts Ltd (DGEL) is nursing a £60,000 smackdown doled out by the UK’s data watchdog after it sent out thousands of nuisance marketing text messages about hand sanitisers during the coronavirus outbreak.…