Tag: The Register – Security

Regulator proposes strict limits on screen-based testing, cites infrastructure concerns and lack of evidence for benefits Most students taking school and college GCSE, A-level, and AS-level exams in England will continue to use pen and paper, according to proposals from…

Read more →

Misconfigured servers are in, 0-days out Chinese espionage crew Ink Dragon has expanded its snooping activities into European government networks, using compromised servers to create illicit relay nodes for future operations.… This article has been indexed from The Register –…

Read more →

An employee of the adult site could be responsible. Analytics vendor Mixpanel says it is not the source of data stolen from Pornhub and says the info was last accessed by an employee of the adult site.… This article has…

Read more →

More than 8 million people have installed extensions that eavesdrop on chatbot interactions Ad blockers and VPNs are supposed to protect your privacy, but four popular browser extensions have been doing just the opposite. According to research from Koi Security,…

Read more →

All I want for Christmas … is all of your data A new, modular infostealer called SantaStealer, advertised on Telegram with a basic tier priced at $175 per month, promises to make criminals’ Christmas dreams come true. It boasts that…

Read more →

Adult site, streaming platform, and Japanese retailer expose user info, but not credentials Three very different companies have now confirmed data breaches affecting millions of users – each insisting the damage stopped well short of passwords and payment details.… This…

Read more →

New spy boss says officers must master code alongside tradecraft as agency navigates ‘space between peace and war’ MI6’s new chief Blaise Metreweli outlined her vision for technology-augmented intelligence gathering in her first public speech on 15 December, warning that…

Read more →

PwC supports clients across the full cyber lifecycle Sponsored Post  Managing cybersecurity risk has never been simple, but in today’s threat landscape it can also become a source of strength. PwC believes that AI is now central to that transformation,…

Read more →

Bum note for 20 percent of users whose data leaked Music hosting and streaming service SoundCloud has admitted it suffered a cyberattack.… This article has been indexed from The Register – Security Read the original article: No, SoundCloud hasn’t started…

Read more →

‘Sustained focus on Western critical infrastructure’ Russia’s Main Intelligence Directorate (GRU) is behind a years-long campaign targeting energy, telecommunications, and tech providers, stealing credentials and compromising misconfigured devices hosted on AWS to give the Kremlin’s snoops persistent access to sensitive…

Read more →

Who hasn’t exploited this max-severity flaw? At least five more Chinese spy crews, Iran-linked goons, and financially motivated criminals are now attacking the React2Shell, a maximum-severity flaw in the widely used React JavaScript library, according to Google.… This article has…

Read more →

Watchdog links schedule change to replanning of UK payments system overhaul The European Central Bank’s (ECB) decision to delay its move to a new messaging standard in 2022 ended up costing the Bank of England £23 million as it was…

Read more →

Automaker admits raid that crippled its factories in August led to the theft of sensitive info Jaguar Land Rover (JLR) has reportedly told staff the cyber raid that crippled its operations in August didn’t just bring production to a screeching…

Read more →

Both admit attackers were already exploiting the bugs, with scant detail and hints of spyware-grade abuse Apple and Google have both issued emergency patches after zero-day bugs were caught being actively exploited in what the companies describe as “sophisticated” real-world…

Read more →

Minister insists ‘modest’ bill is not an assault on privacy-preserving tech The Danish government wants the public to weigh in on its proposed laws restricting use of VPNs to access certain corners of the internet.… This article has been indexed…

Read more →

I’m dreaming of a white hat mass Opinion  It was 40 years ago that four young British hackers set about changing the law, although they didn’t know it at the time. It was a cross-platform attack including a ZX Spectrum,…

Read more →

PLUS: Drugs found in ink cartridges; Chinse censorship fighters criticize Vultr; Coupang CEO resigns; And more! Asia In Brief  A SpaceX executive has claimed that a Chinese satellite launch came within 200 meters of hitting a Starlink satellite.… This article…

Read more →

PLUS: Crims could burn your AI budgets thanks to weak defaults; CISA’s top 25 vulns for 2025; And more Infosec In Brief  The UK’s National Cyber Security Centre (NCSC) has found that cyber-deception tactics such as honeypots and decoy accounts…

Read more →

Exploit hasn’t been picked up by any malware detection engines, CEO tells The Reg A Microsoft zero-day vulnerability that allows an unprivileged user to crash the Windows Remote Access Connection Manager (RasMan) service now has a free, unofficial patch –…

Read more →

And the earlier React2Shell patch is vulnerable If you’re running React Server Components, you just can’t catch a break. In addition to already-reported flaws, newly discovered bugs allow attackers to hang vulnerable servers and potentially leak Server Function source code,…

Read more →