Zero-day in file-sharing software leads to RCE, and attacks are ongoing
Usually we’d say patch up… not this time
Cybersecurity Month10 Oct 2025 | 6
Connor is a cybersecurity journalist for The Register, reporting on what you need to know to keep your systems secure. Based in the UK, he has previously held positions ranging from news editor to staff writer.
Pro-Russia hacktivist group dies of cringe after falling into researchers' trap
Forescout's phony water plant fooled TwoNet into claiming a fake cyber victory – then it quietly shut up shop
Security10 Oct 2025 | 10
UK techies' union warns members after breach exposes sensitive personal details
Prospect apologizes for cyber gaffe affecting up to 160K members
Cybersecurity Month10 Oct 2025 | 21
Discord says 70,000 photo IDs compromised in customer service breach
No word on why the outsourced supplier was storing this data in the first place
Cybersecurity Month09 Oct 2025 | 51
Clearview AI sees red as UK tribunal sides with regulator over $10M GDPR fine
Court says ICO can chase US outfit for unlawfully hoovering up Brits' selfies
Databases09 Oct 2025 | 16
Germany slams brakes on EU's Chat Control device-scanning snoopfest
Berlin's opposition likely kills off Brussels' bid to scan everyone's messages
CSO08 Oct 2025 | 47
Telecoms wholesaler ICUK restores services after two-day DDoS pelting
No idea who's behind it, just happy it's over
Cybersecurity Month08 Oct 2025 | 4
Nearly a year after attack, US medical scanning biz gets clear image of stolen patient data
No fraud monitoring and no apology after miscreants make off with medical, financial data
Cyber-crime07 Oct 2025 | 5
London cops unplug iPhone crime ring said to nick 40% of city's mobiles
Met's year-long Operation Echosteep nets thousands of stolen devices and several arrests
Personal Tech07 Oct 2025 | 30
Scattered Lapsus$ Hunters offering $10 in Bitcoin to 'endlessly harass' execs
Crime group claims to have already doled out $1K to those in it 'for money and for the love of the game'
Cybersecurity Month06 Oct 2025 | 20
Radiant Group won't touch kids' data now, but apparently hospitals are fair game
Ransomware crooks utterly fail to find moral compass
Cybersecurity Month06 Oct 2025 | 3
Jaguar Land Rover engines ready to roar again after weeks-long cyber stall
No confirmed date but workers expected to return in the coming days
Cyber-crime06 Oct 2025 | 14
Subpoena tracking platform blames outage on AWS social engineering attack
Software maker Kodex said its domain registrar fell for a fraudulent legal order
Cybersecurity Month02 Oct 2025 |
EU funds are flowing into spyware companies, and politicians are demanding answers
Experts say Commission is ‘fanning the flames’ of the continent’s own Watergate
Cybersecurity Month02 Oct 2025 | 18
3.7M breach notification letters set to flood North America's mailboxes
Allianz Life and WestJet lead the way, along with a niche software shop
Cybersecurity Month01 Oct 2025 | 8
Imgur yanks Brit access to memes as parent company faces fine
ICO investigation into platform's lack of age assurance continues
Security01 Oct 2025 | 75
Warnings about Cisco vulns under active exploit are falling on deaf ears
50,000 firewall devices still exposed
Patches30 Sep 2025 | 22
£5.5B Bitcoin fraudster pleads guilty after years on the run
Zhimin Qian recruited takeaway worker to launder funds through property overseas
Legal30 Sep 2025 | 7
Harrods blames its supplier after crims steal 430k customers’ data in fresh attack
Attackers make contact but negotiations fall on deaf ears
Cyber-crime29 Sep 2025 | 12
Jaguar Land Rover gets £1.5B government jump-start after cyber breakdown
Hundreds of thousands of workers in financial despair supported with landmark loan
Cyber-crime29 Sep 2025 | 31
‘An attacker's playground:’ Crims exploit GoAnywhere perfect-10 bug
Researchers say tens of thousands of instances remain publicly reachable
Patches26 Sep 2025 | 3
Volvo North America confirms staff data stolen following ransomware attack on IT supplier
The downstream consequences of Miljödata’s ransomware attack continue to affect major organizations
Cyber-crime26 Sep 2025 | 5
Brits warned as illegal robo-callers with offshored call centers fined half a million
It’s amazing the number of calls Jo, Helen, and Ian get through
Security26 Sep 2025 | 62
Callous crims break into preschool network, publish toddlers' data
Images of toddlers and home addresses leaked in reprehensible landmark attack
Cyber-crime25 Sep 2025 | 23
Cybercriminals cash out with casino giant's employee data
Attackers hit jackpot after targeting Boyd Gaming
Cyber-crime24 Sep 2025 | 3
Politicos: 'There is a good strong case for government intervention' on JLR cyberattack
Covid-style financial support? Nothing to confirm yet, say MPs
Cyber-crime24 Sep 2025 | 23
OnePlus leaves researchers on read over Android bug that exposes texts
Updated Rapid7 warns flaw could let any app peek at your SMS, but smartphone vendor won't pick up
Security23 Sep 2025 | 11
Workers fear for their jobs as JLR's latest shutdown extended
With no idea when engines restart, families gear down on spending ahead of Christmas
Cyber-crime23 Sep 2025 | 31
EV charging biz zaps customers with data leak scare
Names, emails unplugged in DCS support snafu – but 'billing is safe'
Security23 Sep 2025 | 8
EU’s cyber agency blames ransomware as Euro airport check-in chaos continues
Airport staff revert to manual ops as travellers urged to use self-service check-in where possible
Cyber-crime22 Sep 2025 | 25
Ding ding: Fortra rings the perfect-10 bell over latest GoAnywhere MFT bug
Outside experts say the vulnerability has probably already been exploited
Patches19 Sep 2025 | 7
Charities warn Ofcom too soft on Online Safety Act violators
Another blow for the legislation as Parliament continues to hear stakeholder views
Legal19 Sep 2025 | 59
Cybercriminals pwn 850k+ Americans' healthcare data
Three US medical centers fess up to serious breaches
Cyber-crime18 Sep 2025 | 10
Two Scattered Spider teens charged over attack on London’s transport network
Decisive action comes nearly a year after the attack and first arrest took place
Cyber-crime18 Sep 2025 | 14
BreachForums kingpin goes from walk-free deal to 3-year stretch
Prosecutors say Conor Fitzpatrick's crimes caused 'incalculable' damage
Cyber-crime17 Sep 2025 | 4
UK telco Colt’s recovery from August cyberattack pushes into November
Pentesters confirm key system is safe but core products remain unavailable
Cyber-crime17 Sep 2025 | 3
Self-propagating worm fuels latest npm supply chain compromise
Intrusions bear the same hallmarks as recent Nx mess
Cybersecurity Month16 Sep 2025 | 15
JLR stuck in neutral as losses skyrocket amid cyberattack cleanup
Latest extension to factory closures takes incident response into fourth week
Cyber-crime16 Sep 2025 | 59
Former FinWise employee may have accessed nearly 700K customer records
Bank says incident went undetected for over a year before discovery in June
Cyber-crime15 Sep 2025 | 4
Jaguar Land Rover supply chain workers must get Covid-style support, says union
As post-cyberattack layoffs begin, labor org argues UK goverment should step in
Cybersecurity Month15 Sep 2025 | 56
1,200 undergrads hung out to dry after jailbreak attack on laundry machines
Dorm management refuses to cover costs after payment system borked
Offbeat12 Sep 2025 | 96
Hack to school: Parents told to keep their little script kiddies in line
UK data watchdog says students behind most education cyberattacks
Cyber-crime12 Sep 2025 | 54
Huntress's 'hilarious' attacker surveillance splits infosec community
Ethical concerns raised after crook offered themselves up on silver platter
Security12 Sep 2025 | 47
Attacker steals customer data from Brit rail operator LNER during break-in at supplier
Major UK player cagey on specifics but latest attack follows string blamed on 'third party' suppliers
Cyber-crime11 Sep 2025 | 7
Experts scrutinized Ofcom's Online Safety Act governance. They're concerned
Academics and OSA stakeholders say watchdog needs to amend how controversial legislation is enforced
Legal11 Sep 2025 | 28
Uncle Sam indicts alleged ransomware kingpin tied to $18B in damages
Prosecutors claim Ukrainian ran LockerGoga, MegaCortex, and Nefilim ops – $11M bounty on his head
Cyber-crime10 Sep 2025 | 3
Flu jab email mishap exposes hundreds of students' personal data
One parent expressed concern for their child's safety
Security10 Sep 2025 | 17
What the Plex? Streaming service suffers yet another password spill
For the third time in a decade
Cyber-crime09 Sep 2025 | 17
UK Home Office dangles £1.3M prize for algorithm that guesses your age
Contract tender follows 'alarming' safeguarding failure at border with undocumented kids
Software09 Sep 2025 | 78
PACER buckles under MFA rollout as courts warn of support delays
Busy lawyers on hold for five hours as staff handhold users into deploying the security measure
Cyber-crime08 Sep 2025 | 16
UK government dragged for incomplete security reforms after Afghan leak fallout
Senior officials summoned to science and tech committee to explain further
CSO29 Aug 2025 | 25
TransUnion admits 4.5M affected after third-party support app breached
Credit agency offers own services as compensation
Cyber-crime28 Aug 2025 | 6
Law firm email blunder exposes Church of England abuse victim details
Apology issued after names tied to redress scheme revealed in mass mailing
CSO28 Aug 2025 | 25
Nx NPM packages poisoned in AI-assisted supply chain attack
Stolen dev credentials posted to GitHub as attackers abuse CLI tools for recon
Devops27 Aug 2025 | 2
Salesforce data missing? It might be due to Salesloft breach, Google says
UPDATE Attackers steal OAuth tokens to access third-party sales platform, then CRM data in 'widespread campaign'
Cyber-crime27 Aug 2025 | 5
Who are you again? Infosec experiencing 'Identity crisis' amid rising login attacks
Vendor insists passkeys are the future, but getting workers on board is proving difficult
Research27 Aug 2025 | 39
Crypto thief earns additional prison time for assaulting witness
Remy Ra St Felix led a vicious international crime ring
Cyber-crime26 Aug 2025 | 10
Silver State goes dark as cyberattack knocks Nevada websites offline
Phone lines also down as officials rely on social media to issue updates
Systems26 Aug 2025 | 3
Criminal background checker APCS faces data breach
Exclusive The attack first affected an upstream provider of bespoke software
Cyber-crime22 Aug 2025 | 7
Interpol bags 1,209 suspects, $97M in cybercrime operation focused on Africa
Crypto mines, BEC scams, fake passports, and a $300M fraud empire allegedly brought down during Serengeti 2.0
Cyber-crime22 Aug 2025 |
Biting the hand that feeds IT
