Audit trails aplenty, but no price tag – and no clue how long your data sticks around Opinion Last week’s UK government consultation on its plans for digital identity had quite a few things missing. It did not include a…
Tag: The Register – Security
While you’re here, could you go out of your way to do an impossible job?
He would have gotten away with it too, if it weren’t for a meddling security team’s fear of USB On Call Each Friday The Register offers a fresh installment of On Call, the reader-contributed column that celebrates the fine art…
Unknown attackers exploit yet another critical SharePoint bug
Last time: Beijing-backed snoops and ransomware crims. Who’s next? Unknown baddies are abusing yet another critical Microsoft SharePoint bug to compromise victims’ SharePoint servers, the US government warned.… This article has been indexed from The Register – Security Read the…
Google gives Android users a way to install unverified apps if they prove they really, really want to
Chocolate Factory describes concession as an attempt to balance openess with safety It turns out you won’t be limited to Google-verified apps an developers on Android after all. In the face of sustained community dissatisfaction with its developer verification requirement,…
Lock down Microsoft Intune, feds warn after Stryker attack
Iran-linked attackers wiped employees’ devices using Intune The US government has urged companies to better secure Microsoft Intune, an endpoint management tool that was abused in last week’s cyberattack against med-tech firm Stryker.… This article has been indexed from The…
Okta made a nightmare micromanager for your AI agents
Where are you? What are you working on? Why are you doing that? Identity access and management platform Okta announced the general availability of its Okta for AI Agents, which will give customers the ability to do three things: locate…
State snoops and spyware vendors planting info-stealing malware on iPhones, Google warns
Darksword is the second iOS exploit chain in a month A new exploit kit targeting iPhone users and stealing their sensitive data is being abused by “multiple” spyware vendors and suspected nation-state goons, security researchers said on Wednesday.… This article…
Amazon security boss says crims abused max-security Cisco firewall flaw weeks before disclosure
Interlock’s post-exploit toolkit exposed Ransomware criminals exploited CVE-2026-20131, a maximum-severity bug in Cisco Secure Firewall Management Center software, as a zero-day vulnerability more than a month before Cisco patched the hole, according to Amazon security boss CJ Moses.… This article…
North Korea’s 100,000-strong fake IT worker army rake in $500M a year for Kim Jong Un
Researchers map full org chart of the scam from dodgy recruiters to helpful Western collaborators Researchers at IBM X‑Force and Flare Research have uncovered data that sheds light on how North Korea’s fake IT worker schemes operate and infiltrate companies…
Britain’s satellite-watching gap to be plugged with £17.5M eyeball in Cyprus
No 1 Space Operations Squadron will get a persistent stare capability The Ministry of Defence (MoD) plans to spend £17.5 million on a remotely-operated satellite monitoring facility in Cyprus, partly to protect the UK’s secure communications system Skynet.… This article…
Iran’s cyberattack against med tech firm is ‘just the beginning’
Even without a navy, or air power, ‘They’ll still have the ability to hack’ Businesses should expect that Iran will conduct more aggressive cyber-ops as the war escalates, according to security analysts.… This article has been indexed from The Register…
Linux Foundation kicks off effort to shield FOSS maintainers from AI slop bug reports
Big Tech donates $12.5 million to get things rolling Half a dozen Big Tech players have together delivered $12.5 million in grants towards a project that aims to help maintainers of open source projects to cope with AI slop bug…
Japan to allow ‘proactive cyber-defense’ from October 1st
In less polite places, this is called ‘hacking back’ or ‘offensive cyber-ops’ Japan’s government yesterday decided to allow its Self-Defense Force to conduct offensive cyber-operations, starting on October 1st.… This article has been indexed from The Register – Security Read…
WorldCoin‘s newest pitch: Scan your eyeballs to prove AI agents really represent you
Sell your soul to the orb Sam Altman has cooked up a plan to make his cryptocurrency/identity/eyeball-scanning-orb venture more useful by – you guessed it – adding agentic AI to the mix. Now the technology behind it will be used…
EU sanctions Iranian cyber front over election meddling, Charlie Hebdo breach
State-sponsored attackers joined by Chinese snoops and hackers-for-hire in latest round of economic penalties The Council of the European Union sanctioned Emennet Pasargad on Monday, a company used as a front for a series of Iranian cyberattacks.… This article has…
Too big to ignore, too small to be served: the midmarket security gap
Midmarket security leaders aren’t as secure as they think, says Intruder’s report Partner Content The midmarket matters. JP Morgan estimates approximately 300,000 organizations generating $13T in annual revenue. Yet they occupy an awkward position in the security landscape. They’re large enough…
Switzerland built a secure alternative to BGP. The rest of the world hasn’t noticed yet
SCION: Proven in banking and healthcare, slow to spread everywhere else Feature BGP, the Border Gateway Protocol, was not designed to be secure. It was designed to work – to route packets between the thousands of autonomous systems that make…
Gartner suggests Friday afternoon Copilot ban because tired users may be too lazy to check its mistakes
Admins may be even more exhausted by then, because securing Microsoft’s AI helper is not a trivial job Gartner analyst Dennis Xu has half-jokingly suggested banning use of Microsoft’s Copilot AI on Friday afternoons, because he fears at that time…
Gartner suggests Friday afternoon Copilot ban because users may be too lazy to check its mistakes
You’ll be exhausted by then because securing Microsoft’s AI helper is not a trivial task Gartner analyst Dennis Xu has half-jokingly suggested banning use of Microsoft’s Copilot AI on Friday afternoons, because he fears at that time of week users…
Bank built its own threat hunting agent because vendors can’t keep pace with new threats
AI helped send weekly threat signal count from 80 million to 400 billion, then helped response time shrink from two days to 30 minutes Australia’s Commonwealth Bank built its own agentic AI threat hunting tools, because vendors are too slow…