Tag: The Register – Security

Cyber rights org retools for the days of AI and unrestrained government interview  The Electronic Frontier Foundation (EFF) on Tuesday appointed Nicole Ozer to succeed Cindy Cohn as the cyber rights group’s executive director when Cohn departs this summer.… This…

Read more →

Crims ‘creating a snowball effect’ across open source projects RSAC 2026  Thousands of organizations’ cloud environments have been infected with secret-stealing malware as a result of the Trivy supply-chain attack last week, and now the crims that compromised the open…

Read more →

Python interface for LLMs infected with malware via polluted CI/CD pipeline Two versions of LiteLLM, an open source interface for accessing multiple large language models, have been removed from the Python Package Index (PyPI) following a supply chain attack that…

Read more →

Nearly 300 employees caught up in intrusion at benefits provider Navia Almost 300 HackerOne employees are caught up in a data breach, with the bug bounty biz slamming a third-party benefits provider for a weeks-long delay in notification.… This article…

Read more →

Unfortunately, there aren’t many options unless you’re Starlink Citing national security fears, America is effectively banning any new consumer-grade network routers made abroad.… This article has been indexed from The Register – Security Read the original article: New routers? Made…

Read more →

Aleksei Volkov sentenced after enabling attacks that cost victims millions A Russian national who sold the keys to corporate networks faces nearly seven years in a US prison after prosecutors tied his handiwork to a string of ransomware attacks costing…

Read more →

‘It freakin’ worked’ says Rob Joyce – and shows how relentless AI agents can find holes humans miss RSAC 2026  The now-infamous Anthropic report about Chinese cyberspies abusing Claude AI to automate cyberattacks was a Rorschach test for the infosec…

Read more →

Washington content to be represented by actual empty chairs RSA 2026  Back in the day (circa 2023) when cybercrime group Scattered Spider and its help-desk voice-phishing calls were a relatively new threat, the feds considered pulling the government’s top cyber-threat…

Read more →

Here’s where you ought to spend your security billable hours budget this year Strengthen your MFA policies, double-down on anti-phishing training, and for Jobs’ sake, patch all your vulns right away. The past year of intelligence collected by Cisco’s Talos…

Read more →

Voice phishing is second most common initial access method across all IR probes, and top in cloud break-ins Voice phishing surged last year to become the second most common method used by cybercriminals to gain initial access to their victims’…

Read more →

Claims it can analyze millions of daily events with 98 percent accuracy Google’s Gemini AI agents are crawling the dark web, sifting through upward of 10 million posts a day to find a handful of threats relevant to a particular…

Read more →

Trio-Tech International initially said hack wasn’t ‘material,’ but then stolen data was published Trio-Tech International initially shrugged off a ransomware attack at a Singapore subsidiary as immaterial, only to reverse course days later after discovering stolen data had been disclosed.……

Read more →

Infosec pros descend on San Francisco kettle  When El Reg cybersecurity editor Jessica Lyons joins infosec industry colleagues in San Francisco for RSAC 2026 this week, she’s expecting agentic AI to be on everyone’s lips – at least those who…

Read more →

The era of reliability begins… right after this out-of-band patch Microsoft has released an out-of-band update to resolve bugs introduced by a Windows patch just days after promising improved reliability.… This article has been indexed from The Register – Security…

Read more →

Ukraine’s battlefield lessons show quantity and affordability now trump exquisite hardware NATO is unprepared to deal with attacks by cheap, mass-produced drones and urgently needs layered, affordable air defense systems to counter the threat, taking a cue from the experience…

Read more →

Plus: US takes down Iranian propaganda sites; Marketing company asks ‘Why Do We Have Your Information?’ And more! Infosec In Brief  Russian intelligence-affiliated parties are posing as customer support services on commercial messaging applications such as Signal to compromise accounts…

Read more →

Rust security maintainers contend Nadim Kobeissi’s vulnerability claims are too much Since February, cryptographer Nadim Kobeissi has been trying to get code fixes applied to Rust cryptography libraries to address what he says are critical bugs. For his efforts, he’s…

Read more →

Cams statistically more likely to ID Black people, says new research A UK police force has suspended its deployment of live facial recognition (LFR) technology after a study revealed it was statistically more likely to identify Black people on a…

Read more →

Millions of hijacked devices powered traffic floods targeting defense systems and beyond The US government has moved to disrupt a cluster of IoT botnets behind some of the largest DDoS attacks ever recorded, including traffic bursts topping 30 terabits per…

Read more →

Lack of clear criteria risks encouraging firms to lean on state support instead of worrying about insurance The UK’s cyber watchdog has warned that the government’s £1.5 billion bailout of Jaguar Land Rover (JLR) risks setting a troubling precedent for…

Read more →