Google open sources file-identifying Magika AI for malware hunters and others Cool, but it's 2024 – needs more hype, hand wringing, and flashy staged demos to be proper ML CSO17 Feb 2024 | 10
Dems are at it again, trying to break open black-box algorithms Opening up code used in criminal prosecutions for scrutiny? But where's the text-to-vid hype and doomsaying? AI + ML16 Feb 2024 | 43
Feds dismantle Russian GRU botnet built on 1,000-plus home, small biz routers Beijing, now Moscow.… Who else is hiding in broadband gateways? Security15 Feb 2024 | 14
Twilio reminds users that Authy Desktop apps die in March – not in August 'This is an excellent way to piss off thousands of developers' Devops15 Feb 2024 | 31
Miscreants turn to ad tech to measure malware metrics Now that's what you call dual-use tech Research15 Feb 2024 | 4
European Court of Human Rights declares backdoored encryption is illegal Surprising third-act twist as Russian case means more freedom for all Security15 Feb 2024 | 212
China's Volt Typhoon spies broke into emergency network of 'large' US city Jeez, not now, Xi. Can't you see we've got an election and Ukraine and Gaza and cost of living and layoffs and ... Security14 Feb 2024 | 9
Crims found and exploited these two Microsoft bugs before Redmond fixed 'em Patch Tuesday SAP, Adobe, Intel, AMD also issue fixes as well as Google for Android Patches14 Feb 2024 | 5
Just one bad packet can bring down a vulnerable DNS server thanks to DNSSEC Updated 'You don't have to do more than that to disconnect an entire network' El Reg told as patches emerge Patches13 Feb 2024 | 15
ALPHV blackmails Canadian pipeline after 'stealing 190GB of vital info' Updated Gang still going after critical infrastructure because it's, you know, critical Cyber-crime13 Feb 2024 | 11
Meta says risk of account theft after phone number recycling isn't its problem to solve Leaves it to carriers, promoting a complaint to Irish data cops from Big Tech's bête noire Personal Tech13 Feb 2024 | 107
Korean eggheads crack Rhysida ransomware and release free decryptor tool Great news for victims of gang behind the big British Library hit in October Cyber-crime13 Feb 2024 | 6
Meet VexTrio, a network of 70K hijacked websites crooks use to sling malware, fraud Some useful indicators of compromise right here Cyber-crime10 Feb 2024 | 9
Uncle Sam sweetens the pot with $15M bounty on Hive ransomware gang members Honor among thieves about to be put to the test Cyber-crime09 Feb 2024 | 3
Rust can help make software secure – but it's no cure-all Security is a process, not a product. Nor a language Security08 Feb 2024 | 36
Volt Typhoon not the only Chinese crew lurking in US energy, critical networks Presumably American TLAs are all over Beijing's infrastructure, too ... right? Public Sector07 Feb 2024 | 4
Half of polled infosec pros say their degree was less than useful for real-world work The other half paid attention in class? CSO07 Feb 2024 | 18
US says China's Volt Typhoon is readying destructive cyberattacks 12 international govt agencies sound the alarm, critical infrastructure at the heart of threats Security07 Feb 2024 | 10
Raspberry Pi Pico cracks BitLocker in under a minute Windows encryption feature defeated by $10 and a YouTube tutorial Research07 Feb 2024 | 143
The spyware business is booming despite government crackdowns Updated 'Almost zero data being shared across the industry on this particular threat,' we're told Security07 Feb 2024 | 35
Mozilla adds paid-for data-deletion tier to Monitor, its privacy-breach radar Firefox maker promises to lean on personal info brokers to scrub records Personal Tech06 Feb 2024 | 15
Verizon says 63K employees' info fell into the wrong hands – an insider this time Telco says it's a private matter, data 'not shared externally' Security06 Feb 2024 |
AI models just love escalating conflict to all-out nuclear war 'We have it! Let’s use it' proclaims the most warlike GPT-4-Base AI + ML06 Feb 2024 | 73
Google throws $1M at Rust Foundation to build C++ bridges Chocolate Factory matches Microsoft money for memory safety Devops05 Feb 2024 | 14
Ivanti devices hit by wave of exploits for latest security hole At this point you might be better off just shutting the stuff down Security05 Feb 2024 | 5
Ignore Uncle Sam's 'voluntary' cybersecurity goals for hospitals at your peril Interview What is on HHS paper will most likely become law, Google security boss says Cyber-crime05 Feb 2024 | 12
AnyDesk revokes signing certs, portal passwords after crooks sneak into systems Horse, meet stable door Cyber-crime05 Feb 2024 | 6
Blackbaud settles with FTC after that IT breach exposed millions of people's info Cloud software slinger admits no guilt, promises better basic security hygiene Cyber-crime02 Feb 2024 | 6
Is critical infrastructure prepared for OT ransomware? Feature As extortion tactics evolve, operational shutdowns are the next step Public Sector02 Feb 2024 | 14
Cloudflare sheds more light on Thanksgiving security breach in which tokens, source code accessed by suspected spies Atlassian systen compromised via October Okta intrusion CSO02 Feb 2024 | 14
JetBrains' unremovable AI assistant meets irresistible outcry Some devs just don't want anything to do with neural-network code serfs Software01 Feb 2024 | 83
Rise of deepfake threats means biometric security measures won't be enough Defenses need a rethink in face of increasing sophistication CSO01 Feb 2024 | 18
How not to write about network security – and I'm speaking from experience Systems Approach At least it's no longer an afterthought Networks01 Feb 2024 | 20
Congress told how Chinese goons plan to incite 'societal chaos' in the US American public is way ahead of them Security01 Feb 2024 | 83
'I’m sorry for everything...' Facebook's Zuck apologizes to families at Senate hearing Meta boss told in social media safety probe: 'Your product is killing people' Public Sector31 Jan 2024 | 70
FBI confirms it issued remote kill command to blow out Volt Typhoon's botnet Disinfects Cisco and Netgear routers to thwart Chinese critters Security31 Jan 2024 | 43
We know nations are going after critical systems, but what happens when crims join in? This isn't going to end well Security31 Jan 2024 | 4
It's true, LLMs are better than people – at creating convincing misinformation More human than human, eh? AI + ML30 Jan 2024 | 26
US shorts China's Volt Typhoon crew targeting America's criticals Invaders inveigle infrastructure Security30 Jan 2024 | 7
SolarWinds slams SEC lawsuit against it as 'unprecedented' victim blaming 18,000 customers, including the Pentagon and Microsoft, may have other thoughts CSO29 Jan 2024 | 16
Apple redecorates its iPhone prison to appease Europe Analysis At least web competition will finally be allowed Software27 Jan 2024 | 80
Microsoft sheds some light on Russian email heist – and how to learn from Redmond's mistakes Step one, actually turn on MFA CSO27 Jan 2024 | 17
Wait, security courses aren't a requirement to graduate with a computer science degree? Comment And software makers seem to be OK with this, apparently CSO26 Jan 2024 | 64
As NSA buys up Americans' browser records, Uncle Sam is asked to simply knock it off If you could just not harvest our info unlawfully and without a warrant, that would be great Public Sector26 Jan 2024 | 18
Trickbot malware scumbag gets five years for infecting hospitals, businesses Most of the crew still at large Cyber-crime25 Jan 2024 | 8
Psst … wanna jailbreak ChatGPT? Thousands of malicious prompts for sale Turns out it's pretty easy to make the model jump its own guardrails AI + ML25 Jan 2024 | 25
US judge rejects spyware slinger NSO's attempt to bin Apple lawsuit Judge says cyber-crime law fits Pegasus case 'to a T' Security24 Jan 2024 | 28
Logitech warns of logistical impact of Houthi attacks in Red Sea Longer lead times, extra costs and more freight coming via air Personal Tech24 Jan 2024 | 13
What Microsoft's latest email breach says about this IT security heavyweight Comment Senator Wyden tells The Reg this latest infosec lapse is 'inexcusable' CSO24 Jan 2024 | 45
CISA boss swatted: 'While my own experience was certainly harrowing, it was unfortunately not unique' Election officials, judges, politicians, and gamers are in swatters' crosshairs Cyber-crime23 Jan 2024 | 46
Atlassian Confluence Server RCE attacks underway from 600+ IPs If you're still running a vulnerable instance then 'assume a breach' Security22 Jan 2024 | 5
Slug slimes aerospace biz AerCap with ransomware, brags about 1TB theft Loanbase admits massive loss of customer data to thieves, too Security22 Jan 2024 | 1
Travel app Kayak offers Boeing 737 Max 9 filter after that door plug drama Handy feature as FAA expands inspections to 737-900ER aircraft Personal Tech22 Jan 2024 | 36
How artists can poison their pics with deadly Nightshade to deter AI scrapers Models will need to swallow a lot of it, mind you AI + ML20 Jan 2024 | 44
Russians invade Microsoft exec mail while China jabs at VMware vCenter Server Plus: Uncle Sam says Ivanti exploits 'consistent with PRC' snoops Cyber-crime20 Jan 2024 | 9
Five ripped off IT giant with $7M+ in bogus work expenses, prosecutors claim Account manager and pals blew it on hotels, cruise, fancy meals and more allegedly Cyber-crime19 Jan 2024 | 37
IT consultant fined for daring to expose shoddy security Spotting a plaintext password and using it in research without authorization deemed a crime Research19 Jan 2024 | 94
Two more Citrix NetScaler bugs exploited in the wild Just when you thought you had recovered from Bleed Cyber-crime18 Jan 2024 | 2
Google TAG: Kremlin cyber spies move into malware with a custom backdoor The threat hunters believe COLDRIVER has used SPICA since at least November 2022 Research18 Jan 2024 | 5
Insurance website's buggy API leaked Office 365 password and a giant email trove Pen-tester accessed more than 650,000 sensitive messages, and still can, at Indian outfit using Toyota SaaS Security18 Jan 2024 | 3
Apple, AMD, Qualcomm GPU security hole lets miscreants snoop on AI training and chats So much for isolation Research17 Jan 2024 | 1
YouTube video lag wrongly blamed on its ad-blocking animus Slowdowns apparently due to a bug afflicting browser extensions, not retaliation against filters Personal Tech17 Jan 2024 | 92