Sage Copilot grounded briefly to fix AI misbehavior
'Minor issue' with showing accounting customers 'unrelated business information' required repairs
AI + ML20 Jan 2025 | 19
Security
OpenAI's ChatGPT crawler can be tricked into DDoSing sites, answering your queries
The S in LLM stands for Security
AI + ML19 Jan 2025 | 26
CISA: Wow, that election had a lot of foreign trolling. Trump's Homeland Sec pick: And that's none of your concern
Cyber agency too 'far off mission,' says incoming boss Kristi Noem
Public Sector18 Jan 2025 | 72
FCC to telcos: By law you must secure your networks from foreign spies. Get on it
Plus: Uncle Sam is cross with this one Chinese biz over Salt Typhoon mega-snooping
CSO17 Jan 2025 | 28
Biden signs sweeping cybersecurity order, just in time for Trump to gut it
Analysis Ransomware, AI, secure software, digital IDs – there's something for everyone in the presidential directive
Public Sector17 Jan 2025 | 37
Microsoft eggheads say AI can never be made secure – after testing Redmond's own products
If you want a picture of the future, imagine your infosec team stamping on software forever
AI + ML17 Jan 2025 | 83
NARROWER TOPICS
Just as your LLM once again goes off the rails, Cisco, Nvidia are at the door smiling
Some of you have apparently already botched chatbots or allowed ‘shadow AI’ to creep in
AI + ML17 Jan 2025 | 11
Russia's Star Blizzard phishing crew caught targeting WhatsApp accounts
updated FSB cyberspies venture into a new app for espionage, Microsoft says
Security16 Jan 2025 | 3
GoDaddy slapped with wet lettuce for years of lax security and 'several major breaches'
Watchdog alleged it had no SIEM or MFA, orders rapid adoption of basic infosec tools
CSO15 Jan 2025 | 12
China's Salt Typhoon spies spotted on US govt networks before telcos, CISA boss says
We are only seeing 'the tip of the iceberg,' Easterly warns
Security15 Jan 2025 | 11
FBI wipes Chinese PlugX malware from thousands of Windows PCs in America
Hey, Xi: Zài jiàn!
Cyber-crime14 Jan 2025 | 30
Miscreants 'mass exploited' Fortinet firewalls, 'highly probable' zero-day used
Updated Ransomware 'not off the table,' Arctic Wolf threat hunter tells El Reg
Networks14 Jan 2025 | 24
Microsoft sues 'foreign-based' cyber-crooks, seizes sites used to abuse AI
Scumbags stole API keys, then started a hacking-as-a-service biz, it is claimed
Security13 Jan 2025 | 4
Ransomware crew abuses AWS native encryption, sets data-destruct timer for 7 days
'Codefinger' crims on the hunt for compromised keys
Research13 Jan 2025 | 5
Chinese cyber-spies peek over shoulder of officials probing real-estate deals near American military bases
Gee, wonder why Beijing is so keen on the – checks notes – Committee on Foreign Investment in the US
Cyber-crime10 Jan 2025 | 7
Free-software warriors celebrate landmark case that enforced GNU LGPL
On the Fritz: German router maker AVM lets device rights case end after coughing up source code
Software10 Jan 2025 | 41
Look for the label: White House rolls out 'Cyber Trust Mark' for smart devices
Beware the IoT that doesn’t get a security tag
Security09 Jan 2025 | 38
Database tables of student, teacher info stolen from PowerSchool in cyberattack
Class act: Cloud biz only serves 60M-plus folks globally, no biggie
Cyber-crime09 Jan 2025 | 23
Mitel 0-day, 5-year-old Oracle RCE bug under active exploit
3 CVEs added to CISA's catalog
Security08 Jan 2025 | 4
Crims backdoored the backdoors they supplied to other miscreants. Then the domains lapsed
Here's what $20 gets you these days
Research08 Jan 2025 | 13
Akamai to quit its CDN in China, seemingly not due to trouble from Beijing
Security and cloud compute have so much more upside than the boring business of shifting bits
Security08 Jan 2025 | 4
FCC boss urges speedy spectrum auction to fund 'Rip'n'Replace' of Chinese kit
Telcos would effectively fund grants paid to protect national security
Networks08 Jan 2025 | 15
3Blue1Brown copyright takedown blunder by AI biz blamed on human error
Worker copy-pasted wrong YouTube URL, says ChainPatrol
AI + ML07 Jan 2025 | 57
New Orleans attacker used Meta smart glasses to plan New Year's Day massacre
But Jabbar did not live stream his actions on Jan 1, FBI confirmed
Personal Tech06 Jan 2025 | 13
Charter, Consolidated, Windstream reportedly join China's Salt Typhoon victim list
Slow drip of compromised telecom networks continues
Cyber-crime06 Jan 2025 | 4
FireScam infostealer poses as Telegram Premium app to surveil Android devices
updated Once installed, it helps itself to your data like it's a free buffet
Research06 Jan 2025 | 5
After China's Salt Typhoon, the reconstruction starts now
Opinion If 40 years of faulty building gets blown down, don’t rebuild with the rubble
Cyber-crime06 Jan 2025 | 41
Encryption backdoor debate 'done and dusted,' former White House tech advisor says
interview When the FBI urges E2EE, you know it's serious business
Cyber-crime04 Jan 2025 | 72
Atos denies Space Bears' ransomware claims – with a 'but'
updated Points finger at third-party infrastructure being breached
Cyber-crime04 Jan 2025 | 3
Honey co-founder's Pie Adblock called out for copying GPL'd uBlock Origin files
And, magically, a repo appears on GitHub with attribution
Personal Tech04 Jan 2025 | 32
Boffins carve up C so code can be converted to Rust
Mini-C is a subset of C that can be automatically turned to Rust without much fuss
Software03 Jan 2025 | 117
Apple auto-opts everyone into having their photos analyzed by AI for landmarks
Homomorphic-based Enhanced Visual Search is so privacy-preserving, iPhone giant activated it without asking
Personal Tech03 Jan 2025 | 69
Chinese cyber-spies reportedly targeted sanctions intel in US Treasury raid
OFAC, Office of the Treasury Secretary feared hit in data-snarfing swoop
CSO02 Jan 2025 | 3
US Army soldier who allegedly stole Trump's AT&T call logs arrested
Brings the arrest count related to the Snowflake hacks to 3
Cyber-crime01 Jan 2025 | 16
China's cyber intrusions took a sinister turn in 2024
From targeted espionage to pre-positioning - not that they are mutually exclusive
Security31 Dec 2024 | 9
More telcos confirm China Salt Typhoon security breaches as White House weighs in
Intrusions allowed Beijing to 'geolocate millions of individuals, record phone calls at will'
Cyber-crime30 Dec 2024 | 36
It's only a matter of time before LLMs jump start supply-chain attacks
Interview 'The greatest concern is with spear phishing and social engineering'
Security29 Dec 2024 | 58
How cops taking down LockBit, ALPHV led to RansomHub's meteoric rise
Cut off one head, two more grow back in its place
Cyber-crime28 Dec 2024 | 4
Microsoft adds another problem to the Windows 11 24H2 naughty list
Santa Satya pops one more issue into his sack just in time for Christmas
OSes27 Dec 2024 | 86
How Androxgh0st rose from Mozi's ashes to become 'most prevalent malware'
Botnet's operators 'driven by similar interests as that of the Chinese state'
Cyber-crime24 Dec 2024 | 3
Suspected LockBit dev, facing US extradition, 'did it for the money'
Dual Russian-Israeli national arrested in August
Cyber-crime23 Dec 2024 | 18
Don't fall for a mail asking for rapid Docusign action – it may be an Azure account hijack phish
Recent campaign targeted 20,000 folk across UK and Europe with this tactic, Unit 42 warns
Cyber-crime19 Dec 2024 | 17
US reportedly mulls TP-Link router ban over national security risk
updated It could end up like Huawei -Trump's gonna get ya, get ya, get ya
Security18 Dec 2024 | 55
Microsoft won't let customers opt out of passkey push
Enrollment invitations will continue until security improves
Security18 Dec 2024 | 109
Boffins trick AI model into giving up its secrets
All it took to make an Google Edge TPU give up model hyperparameters was specific hardware, a novel attack technique … and several days
Research18 Dec 2024 | 20
Phishers cast wide net with spoofed Google Calendar invites
Not that you needed another reason to enable the 'known senders' setting
Cyber-crime18 Dec 2024 | 17
Critical security hole in Apache Struts under exploit
You applied the patch that could stop possible RCE attacks last week, right?
Patches17 Dec 2024 | 3
BlackBerry offloads Cylance's endpoint security products to Arctic Wolf
Fresh attempt to mix the perfect cocktail of IoT and Infosec
Security17 Dec 2024 | 1
Australia moves to drop some cryptography by 2030 – before quantum carves it up
The likes of SHA-256, RSA, ECDSA and ECDH won't be welcome in just five years
Security17 Dec 2024 | 52
Ransomware scum blow holes in Cleo software patches, Cl0p (sort of) claims responsibility
But can you really take crims at their word?
Security16 Dec 2024 | 1
Iran-linked crew used custom 'cyberweapon' in US critical infrastructure attacks
IOCONTROL targets IoT and OT devices from a ton of makers, apparently
Research13 Dec 2024 | 15
Citrix goes shopping in Europe and returns with gifts for security-conscious customers
Acquires two companies that help those on the nice list keep naughty list types at bay
Virtualization12 Dec 2024 |
Blocking Chinese spies from intercepting calls? There ought to be a law
Sen. Wyden blasts FCC's 'failure' amid Salt Typhoon hacks
Security11 Dec 2024 | 17
Krispy Kreme Doughnut Corporation admits to hole in security
Belly-busting biz says it's been hit by cowardly custards
Security11 Dec 2024 | 33
US names Chinese national it alleges was behind 2020 attack on Sophos firewalls
Also sanctions his employer – an outfit called Sichuan Silence linked to Ragnarok ransomware
Cyber-crime11 Dec 2024 | 4
AMD secure VM tech undone by DRAM meddling
Boffins devise BadRAM attack to pilfer secrets from SEV-SNP encrypted memory
Systems10 Dec 2024 | 10
Open source maintainers are drowning in junk bug reports written by AI
Python security developer-in-residence decries use of bots that 'cannot understand code'
Devops10 Dec 2024 | 91
WhatsApp finally fixes View Once flaw that allowed theft of supposedly vanishing pics
And it only took four months, tut
Security10 Dec 2024 | 22
China's Salt Typhoon recorded top American officials' calls, says White House
No word yet on who was snooped on. Any bets?
CSO09 Dec 2024 | 24
Crooks stole AWS credentials from misconfigured sites then kept them in open S3 bucket
Exclusive ShinyHunters-linked heist thought to have been ongoing since March
Research09 Dec 2024 | 9
Microsoft dangles $10K for hackers to hijack LLM email service
Outsmart an AI, win a little Christmas cash
CSO09 Dec 2024 | 12
How Chinese insiders are stealing data scooped up by President Xi's national surveillance system
Feature 'It's a double-edged sword,' security researchers tell The Reg
Public Sector08 Dec 2024 | 52
Biting the hand that feeds IT
