Belgian man charged with smuggling sanctioned military tech to Russia and China Indictments allege plot to shift FPGAs, accelerometers, and spycams Security07 Dec 2023 | 2
Australia building 'top secret' cloud to catch up and link with US, UK intel orgs Plans to share 'vast amounts of data' – very carefully Security07 Dec 2023 | 7
Dump C++ and in Rust you should trust, Five Eyes agencies urge Memory safety vulnerabilities need to be crushed with better code Public Sector07 Dec 2023 | 27
Apple and some Linux distros are open to Bluetooth attack Issue has been around since at least 2012 Security06 Dec 2023 | 8
Atlassian security advisory reveals four fresh critical flaws – in mail with dead links Bitbucket, Confluence and Jira all in danger, again. Sigh Security06 Dec 2023 | 6
Cisco intros AI to find firewall flaws, warns this sort of thing can't be free Predicts cyber crims will find binary brainboxes harder to battle Security06 Dec 2023 | 13
Boffins devise 'universal backdoor' for image models to cause AI hallucinations Data poisoning appears open to all AI + ML06 Dec 2023 | 21
Fancy Bear goes phishing in US, European high-value networks GRU-linked crew going after our code warns Microsoft - Outlook not good Security06 Dec 2023 | 2
It's ba-ack... UK watchdog publishes age verification proposals Won't somebody think of the children? Security05 Dec 2023 | 119
Amazon on the hook for predictably revolting use of concealed clothes hook spy cam Judge finds plaintiff's claim – that Amazon knew about illicit usage – credible enough for case to proceed Personal Tech05 Dec 2023 | 97
US warns Iranian terrorist crew broke into 'multiple' US water facilities There's a war on and critical infrastructure operators are still using default passwords Security04 Dec 2023 | 17
Hershey phishes! Crooks snarf chocolate lovers' creds Stealing Kit Kat maker's data?! Give me a break Security04 Dec 2023 | 46
Scores of US credit unions offline after ransomware infects backend cloud outfit Supply chain attacks: The gift that keeps on giving Cyber-crime02 Dec 2023 | 16
Today's 'China is misbehaving online' allegations come from Google, Meta Zuck boots propagandists, Big G finds surge of action directed at Taiwan Cyber-crime01 Dec 2023 | 9
Ex-school IT admin binned student, staff accounts and trashed phone system After getting the tintack, IRL BOFH went rogue Public Sector01 Dec 2023 | 56
Uh-oh, update Google Chrome – exploit already out there for one of these 6 security holes Plus: 3 critical CVEs in Zyxel NAS devices Security30 Nov 2023 | 2
Weak session keys let snoops take a byte out of your Bluetooth traffic BLUFFS spying flaw present in iPhones, ThinkPad, plenty of chipsets Research30 Nov 2023 | 12
Rogue ex-Motorola techie admits cyberattack on former employer, passport fraud Pro tip: Don't use your new work email to phish your old firm Cyber-crime30 Nov 2023 | 5
Uncle Sam probes cyberattack on Pennsylvania water system by suspected Iranian crew CISA calls for stronger IT defenses as Texas district also hit by ransomware crew Cyber-crime29 Nov 2023 | 8
Japan's space agency suffers cyber attack, points finger at Active Directory JAXA is having a tough time in cyberspace and outer space, the latter thanks to an electrical glitch Cyber-crime29 Nov 2023 | 4
Ukraine cyber spies claim Putin's planes are in peril as sanctions bite Aeroflot fleet still has a smoking section, but not for tobacco Public Sector28 Nov 2023 | 112
'Serial cybercriminal and scammer' jailed for 8 years, told to pay back $1.2M Crook did everything from SIM swaps to fake verified badge scams Cyber-crime28 Nov 2023 | 3
Mirai malware infects routers and cameras for new botnet Akamai sounds the alarm – won't name the manufacturers yet Cyber-crime23 Nov 2023 | 1
New Relic warns customers it's experienced a cyber … something Users told to hold tight and await instructions as investigation continues Security23 Nov 2023 | 6
How to give Windows Hello the finger and login as someone on their stolen laptop Not that we're encouraging anyone to defeat this fingerprint authentication Research22 Nov 2023 | 90
Microsoft's bug bounty turns 10. Are these kinds of rewards making code more secure? Interview Katie Moussouris, who pioneered Redmond's program, says folks are focusing on the wrong thing CSO22 Nov 2023 | 9
Top Ukrainian cyber officials fired after allegedly pocketing kickbacks from govt IT deals Duo probed over alleged $2M embezzlement plot Public Sector21 Nov 2023 | 2
MOVEit victim count latest: 2.6K+ orgs hit, 77M+ people's data stolen Real-life impact of buggy software laid bare – plus: Avast tries to profit from being caught up in attacks Cyber-crime20 Nov 2023 | 13
What's really going on with Chrome's June crackdown on extensions – and why your ad blocker may or may not work Special report Manifest V3 transition deemed 'far from terrible' and yet not great for content filters Personal Tech18 Nov 2023 | 96
Look out, Scattered Spider. FBI pumps 'significant' resources into snaring data-theft crew Absence of arrests doesn't mean nothing's happening, cyber-cops insist Cyber-crime17 Nov 2023 | 4
How much to clean up a ransomware infection? For Rackspace, about $11M And that's not counting the incoming lawsuits. Thank goodness for insurance, eh? CSO16 Nov 2023 | 7
Rights warriors claim online ad auction data a danger to national security 'The industry can not be allowed to put elected leaders, military personnel at risk' Personal Tech16 Nov 2023 | 18
Hundreds of websites cloned to run ads for Chinese football gambling outfits Linked to org that UK authorities found once failed its anti-money-laundering obligations Security16 Nov 2023 | 1
Clorox CISO flushes self after multimillion-dollar cyberattack Plus: Ransomware crooks file SEC complaint against victim CSO16 Nov 2023 | 23
Google, Amazon, Microsoft make the Mozilla naughty list for Christmas shopping Big Tech's toys have privacy problems. Why not buy utterly unconnected dead-tree books instead? Personal Tech15 Nov 2023 | 11
Another month, another bunch of fixes for Microsoft security bugs exploited in the wild Patch Tuesday Plus: VMware closes critical hole, Adobe fixes a whopping 76 flaws Patches15 Nov 2023 | 17
AMD SEV OMG: Trusted execution in VMs undone by bad hypervisors' cache meddling Let's do the CacheWarp again Research14 Nov 2023 | 7
Intel emits patch to squash chip bug that lets any guest VM crash host servers Sapphire Rapids, Alder Lake, Raptor Lake chip families treated for 'Redundant Prefix' Patches14 Nov 2023 | 1
Bug hunters on your marks: TETRA radio encryption algorithms to enter public domain Emergency comms standard had five nasty flaws but will be opened to academic research Security14 Nov 2023 | 10
VMware revealed Symantec SASE integration plan before Broadcom finished buying it Still no word on when the deal will happen, or what’s holding it up Virtualization14 Nov 2023 | 1
Passive SSH server private key compromise is real ... for some vulnerable gear OpenSSL, LibreSSL, OpenSSH users, don't worry – you can sit this one out Research14 Nov 2023 | 12
When it comes to personal data, we're on a highway to hell Kettle Register journos tackle cars harvesting info, Meta and YouTube being taken to task over privacy, and more Personal Tech13 Nov 2023 | 16
Introducing the tech that keeps the lights on Opinion Genuinely new ideas are rare in IT – this superhero is ready to make a real difference Security13 Nov 2023 | 21
Australia declares 'nationally significant cyber incident' after port attack Asia in brief PLUS: Citrix quits China; Cambodia deports Japanese scammers; Chinese tech CEO disappears; and more Security13 Nov 2023 | 3
Google dragged to UK watchdog over Chrome's upcoming IP address cloaking Exclusive Marketers tell antitrust cops privacy proxy will make it harder to protect kids online, etc etc Personal Tech11 Nov 2023 | 95
Impatient LockBit says it's leaked 50GB of stolen Boeing files after ransom fails to land Aerospace titan pores over data to see if dump is legit Cyber-crime10 Nov 2023 | 29
Microsoft hits Alt+F4 on internal ChatGPT access over security jitters, irony ensues Apparently the move was in error AI + ML10 Nov 2023 | 14
CEOs of crashed tech upstart Bitwise accused of swindling $100M from investors Duo paid themselves $600K salaries as the cupboard was emptying Bootnotes10 Nov 2023 | 13
Microsoft: Iran's cybercrews got stuck into Israel days after Hamas attacked – not in tandem At least two destructive attacks, but – crucially – after deadly conflict erupted Public Sector10 Nov 2023 | 32
Downfall fallout: Intel knew AVX chips were insecure and did nothing, lawsuit claims Billions of data-leaking processors sold despite warnings and patch just made them slower, punters complain Research09 Nov 2023 | 27
EU lawmakers scolded for concealing identities of privacy-busting content-scanning 'experts' Names of consultants on encryption bypass plan leaked anyway Public Sector09 Nov 2023 | 54
Russia's Sandworm – not just missile strikes – to blame for Ukrainian power blackouts Online attack coincided with major military action, Mandiant says Security09 Nov 2023 | 38
What to do with a cloud intrusion toolkit in 2023? Slap a chat assistant on it, duh Don't worry, this half-baked Python script is for educational purposes onl-hahaha Cyber-crime09 Nov 2023 | 3
Bad eIDAS: Europe ready to intercept, spy on your encrypted HTTPS connections EFF warns incoming rules may return web 'to the dark ages of 2011' Security08 Nov 2023 | 121
UK may demand tech world tell it about upcoming security features Campaigners say proposals to reform laws are 'dangerous' and an attack on safety Public Sector07 Nov 2023 | 150
You can buy personal info of US military staff from data brokers for just 12 cents a pop Health records, financial situations, religious leanings, it's all out there, or so this study says Public Sector07 Nov 2023 | 15
Woman jailed after RentaHitman.com assassin turned out to be – surprise – FBI 18 months in the slammer no laughing matter, but the rest... maybe Cyber-crime07 Nov 2023 | 112
ICE faces heat after agents install thousands of personal apps, VPNs on official phones Audit: Craptastic security potentially put govt info in hands of enemies Public Sector06 Nov 2023 | 9
Android VPNs to get audit badges in Google Play Store if they aren't comically crap No promises it's actually secure, just that it doesn't do anything obviously dumb Applications04 Nov 2023 | 26
81K people's sensitive info feared stolen from Hilb after email inboxes ransacked Credit card numbers, security codes, SSNs, passwords, PINs? Yikes! Cyber-crime03 Nov 2023 | 3
Google bins integrity API that looked more than a bit like horrible DRM for websites Chocolate Factory to focus on more limited attestation for Android WebViews Applications02 Nov 2023 | 29
Theora video codec to be coded out from Chrome and Firefox Usage barely measurable so ax will swing on compression dinosaur Software02 Nov 2023 | 25