| /// |
|
| Headlines : Theregister Sec News | Page 1 |
|
MFA-optional banks leave safe doors (and accounts) wide open for thieves .. - 5/07 11:01 pm Financial institutions are putting their clients at risk in the name of convenience. |
|
Confidential computing's core trust mechanism is broken. The fix may not .. - 4/07 6:03 pm Attested TLS: the handshake that can't prove who's on the other end |
|
AdaptHealth says attackers sweet-talked their way into cloud systems and .. - 3/07 10:29 pm Third-party contractor compromise exposed health information and insurance billing passwords |
|
NetNut cracked as Google and FBI target 2 million-device botnet - 3/07 8:03 pm Other residential proxy brands may rely on the same network |
|
User swore hacker called General Failure had invaded his PC - 3/07 2:30 pm Maybe they were looking for Private Data |
|
Dev says Google warned him about account hijack then charged him $11,000 .. - 3/07 7:08 am Left hand, meet right hand |
|
Startup sues Palo Alto Networks' Koi Security, saying an AI-hallucinated .. - 3/07 6:47 am MeetingTV wants to see the evidence |
|
Smooth AI criminal drives 'first' end-to-end agentic ransomware attack - 3/07 2:05 am Don't count on the LLM to return your data - even if you pay up |
|
Ctrl+Alt+Oops: FortiBleed criminal's logins stitch two gangs together - 2/07 11:32 pm Researchers scoured logs, finding opsec fail for at least one person who was working with INC and Lynx simultaneously |
|
Microsoft said exploitation was 'less likely' ... but CISA just added .. - 2/07 10:40 pm Attackers need little more than a valid SharePoint account to execute code on vulnerable on-prem servers |
|
Pacemaker manufacturer Medtronic warns patients cybercrooks may have .. - 2/07 8:54 pm Company that also makes insulin pumps and other devices tells users what was exposed months after ShinyHunters attack |
|
India gives WhatsApp three days to defend username rollout amid security .. - 2/07 7:50 pm Government of the messenger's largest market demands a pause while Meta explains how it plans to stop impersonators |
|
Oracle E-Business Suite was under attack via critical flaw before the .. - 2/07 6:35 pm Attackers appear to have reverse-engineered Big Red's patch |
|
Hackers shoveled snow for company, were rewarded with network admin access - 2/07 3:00 pm Fortunately, they were professional red teamers. Unfortunately, they pwned the network |
|
EvilTokens device-code phishing kit totally more evil than we all thought - 2/07 5:50 am It's a 'complete BEC operations environment,' Talos researcher says |
|
Claude Sonnet 5.0 heads straight down the middle of the road to dodge .. - 2/07 5:33 am Safer, cheaper, and nothing to do with cybersecurity |
|
Somebody told DeepSeek to build in-browser ransomware and it gleefully .. - 2/07 3:57 am 'The original incomplete DeepSeek sample can be transformed into a fully functional attack with minimal effort,' Check Point researcher tells The Reg |
|
Red teamers turned Claude Desktop into a double agent to do their evil .. - 2/07 1:00 am People trust their AI assistants and it's easy to abuse this trust |
|
Infosec professionals sour on automated pentesting tools - 1/07 3:38 am 29% of security pros were open to fully autonomous pentesting last year; now only 9% are |
|
Huntress CEO says threat hunter used 'poor judgment' in alerting .. - 1/07 12:54 am Ex-employee claims this 'meets the definition of an insider threat' |
|
Microsoft builds a bouncer to keep bots out of Teams meetings - 30/06 2:11 pm Allows ISVs to put their names on the door so desirable bots always get in |
|
Indias central bank mandated use of .bank domains to enhance trust but .. - 30/06 10:24 am Open API could reveal everything an attacker needs to impersonate bank officials |
|
Security researchers tricked LLMs into giving them cocaine recipes by .. - 30/06 7:33 am If you want a picture of the future of LLM security, imagine Whac-a-Mole meets Groundhog Day |
|
Four years into Ukraine invasion, Russia turns influence-ops back to US .. - 30/06 6:10 am Not today, Putin |
|
Anonymous researcher drops 0-day 'exploitarium' repo - 30/06 4:29 am At least two vulnerabilities are already under attack |
|
AI may be good at finding security vulnerabilities, but it can't beat .. - 29/06 9:45 pm You don't need Mythos or GPT-5.5-Cyber to find a vuln to exploit when the world's password habits are so sloppy |
|
Microsoft keeps Windows Server 2022 hotpatching alive into 2027 - 29/06 9:00 pm In the Azure Edition, of course |
|
Nissan says Oracle PeopleSoft break-in may have spilled payroll records, .. - 29/06 7:14 pm Carmaker points finger at an 'unknown' flaw as customer fallout continues |
|
It's looking like a hot, messy summer for security teams as AI finds .. - 27/06 2:59 pm Time to start praying to the goddess of wisdom and war |
|
Even the Secret Service won't use company-issued phones - 27/06 5:50 am Personal cell phones on protective missions, no threat detection on government-issued devices among the litany of sins |
|
Amazon Q flaw let booby-trapped Git repos execute code, swipe cloud creds - 26/06 11:34 pm Researchers warn many AI coding assistants now execute commands from project configurations |
|
Miasma campaign poisons 20-plus npm packages, hunts for developer secrets - 26/06 8:18 pm Microsoft says latest attack targets Leo Platform and RStreams packages, harvesting creds and going after more maintainers |
|
Security boss thought MFA would be too much security - 26/06 2:30 pm One rule for the workers, another for execs |
|
Chinese cybersecurity company claims its built a better-than-Mythos bug .. - 26/06 9:49 am Qihoo 360, which the US has banned, says its needed as a deterrent to weaponized Anthropic models |
|
Self-destructing Mistic backdoor linked to access broker selling corporate .. - 26/06 6:26 am Spotted in intrusions targeting insurance, education, IT, and professional services sectors |
|
Ex-Huntress analyst claims company insider fed info to a ransomware crim. .. - 26/06 4:36 am Former employee accuses company of prioritizing pending IPO over client security |
|
UK schools network left wide open for invasion, student found - 25/06 3:00 pm And the admin password was right in the Active Directory description field |
|
Nation-state actors cracked critical Australian infrastructure to cripple .. - 25/06 12:31 am To defuse another attack, Oz spies called foreign counterparts to tell them an op was a bust |
|
The hits keep on coming for Cisco vulnerabilities - 25/06 6:27 am CVE-2026-20230 under exploitation, while an earlier SD-WAN 0-day looks even worse than we thought |
|
Microsoft uses AI to link two malware operations in racketeering suit - 25/06 1:42 am 200+ C2 servers linked to StealC and Amadey shut down |
| Reformasi | >> |
| Kroni | >> |
| Tabloid | >> |
| Tech | >> |
| World | >> |
| Motor Trend | >> |