News

Sage Copilot grounded briefly to fix AI misbehavior

The Register - 2 hours 56 min ago
'Minor issue' with showing accounting customers 'unrelated business information' required repairs

Sage Group plc has confirmed it temporarily suspended its Sage Copilot, an AI assistant for the UK-based business software maker's accounting tools, this month after it blurted customer information to other users.…

Categories: News

Datacus extractus: Harry Potter publisher breached without resorting to magic

The Register - 4 hours 52 min ago
PLUS: Allstate sued for allegedly tracking drivers; Dutch DDoS; More fake jobs from Pyongyang; and more

Infosec in brief  Hogwarts doesn’t teach an incantation that could have saved Harry Potter publisher Scholastic from feeling the power of an online magician who made off with millions of customer records - except perhaps the wizardry of multifactor authentication.…

Categories: News

When food delivery apps reached Indonesia, everyone put on weight

The Register - 6 hours 49 min ago
PLUS: Salt Typhoon and IT worker scammers sanctioned; Alibaba Cloud’s K8s go global; Amazon acquires Indian BNPL company

Asia In Brief  When food delivery “superapps” started operations in Indonesia, users started putting on weight – and that’s not an entirely bad thing.…

Categories: News

Donald Trump proposes US government acquire half of TikTok, which thanks him and restores service

The Register - 10 hours 4 min ago
Incoming president promises to allow ongoing operations for 90 days just as made-in-China app started to go dark

US president-elect Donald Trump appears to have proposed the government he will soon lead should acquire half of made-in-China social media service TikTok’s stateside operations.…

Categories: News

OpenAI's ChatGPT crawler can be tricked into DDoSing sites, answering your queries

The Register - Sun, 19/01/2025 - 19:03
The S in LLM stands for Security

OpenAI's ChatGPT crawler appears to be willing to initiate distributed denial of service (DDoS) attacks on arbitrary websites, a reported vulnerability the tech giant has yet to acknowledge.…

Categories: News

FCC to telcos: Did you know you must by law secure your networks from foreign spies?

The Register - Fri, 17/01/2025 - 22:07
Plus: Uncle Sam is cross with this one Chinese biz over Salt Typhoon mega-snooping

Decades-old legislation requiring American telcos to lock down their systems to prevent foreign snoops from intercepting communications isn't mere decoration on the pages of law books – it actually means carriers need to secure their networks, the FCC has huffed.…

Categories: News

Biden signs sweeping cybersecurity order, just in time for Trump to gut it

The Register - Fri, 17/01/2025 - 20:23
Ransomware, AI, secure software, digital IDs – there's something for everyone in the presidential directive

Analysis  Joe Biden, in the final days of his US presidency, issued another cybersecurity order that is nearly as vast in scope as it is late in the game.…

Categories: News

Fortinet: FortiGate config leaks are genuine but misleading

The Register - Fri, 17/01/2025 - 18:32
Competition hots up with Ivanti over who can have the worst start to a year

Fortinet has confirmed that previous analyses of records leaked by the Belsen Group are indeed genuine FortiGate configs stolen during a zero-day raid in 2022.…

Categories: News

Clock ticking for TikTok as US Supreme Court upholds ban

The Register - Fri, 17/01/2025 - 17:15
With Biden reportedly planning to skirt enforcement and kick the can to Trump, this saga might still not be over

updated  The US Supreme Court has upheld a law requiring TikTok to either divest from its Chinese parent company ByteDance or face a ban in the United States. The decision eliminates the final legal obstacle to the federal government forcing a shutdown of the platform on January 19.…

Categories: News

Six vulnerabilities in ubiquitous rsync tool announced and fixed in a day

The Register - Fri, 17/01/2025 - 15:49
Turns out tool does both file transfers and security fixes fast

Don't panic. Yes, there were a bunch of CVEs affecting potentially hundreds of thousands of users found in rsync in early December – and made public on Tuesday – but a fixed version came out the same day, and was further tweaked for better compatibility the following day.…

Categories: News

Medusa ransomware group claims attack on UK's Gateshead Council

The Register - Fri, 17/01/2025 - 10:30
Pastes allegedly stolen documents on leak site with £600K demand

Another year and yet another UK local authority has been pwned by a ransomware crew. This time it's Gateshead Council in North East England at the hands of the Medusa group.…

Categories: News

Microsoft eggheads say AI can never be made secure – after testing Redmond's own products

The Register - Fri, 17/01/2025 - 07:42
If you want a picture of the future, imagine your infosec team stamping on software forever

Microsoft brainiacs who probed the security of more than 100 of the software giant's own generative AI products came away with a sobering message: The models amplify existing security risks and create new ones.…

Categories: News

Just as your LLM once again goes off the rails, Cisco, Nvidia are at the door smiling

The Register - Fri, 17/01/2025 - 02:30
Some of you have apparently already botched chatbots or allowed ‘shadow AI’ to creep in

Cisco and Nvidia have both recognized that as useful as today's AI may be, the technology can be equally unsafe and/or unreliable – and have delivered tools in an attempt to help address those weaknesses.…

Categories: News

GM parks claims that driver location data was given to insurers, pushing up premiums

The Register - Fri, 17/01/2025 - 00:49
We'll defo ask for permission next time, automaker tells FTC

General Motors on Thursday said that it has reached a settlement with the FTC "to address privacy concerns about our now-discontinued Smart Driver program."…

Categories: News

Russia's Star Blizzard phishing crew caught targeting WhatsApp accounts

The Register - Thu, 16/01/2025 - 19:15
FSB cyberspies venture into a new app for espionage, Microsoft says

Star Blizzard, a prolific phishing crew backed by the Russian Federal Security Service (FSB), conducted a new campaign aiming to compromise WhatsApp accounts and gain access to their messages and data, according to Microsoft.…

Categories: News

Enzo Biochem settles lawsuit over 2023 ransomware attack for $7.5M

The Register - Thu, 16/01/2025 - 17:32
That's in addition to the $4.5M fine paid to three state AGs last year

Enzo Biochem has settled a consolidated class-action lawsuit relating to its 2023 ransomware incident for $7.5 million.…

Categories: News

Cybersecurity rethink - from reaction to resilience

The Register - Thu, 16/01/2025 - 16:11
Proactive strategies for data security and identity management in 2025

Webinar  Are you tired of constant firefighting in the ever-changing cybersecurity landscape?…

Categories: News

Raspberry Pi hands out prizes to all in the RP2350 Hacking Challenge

The Register - Thu, 16/01/2025 - 15:15
Power-induced glitches, lasers, and electromagnetic fields are all tools of the trade

Raspberry Pi has given out prizes for extracting a secret value from the one-time-programmable (OTP) memory of the Raspberry Pi RP2350 microcontroller – awarding a pile of cash to all four entrants.…

Categories: News

Infoseccer: Private security biz let guard down, exposed 120K+ files

The Register - Thu, 16/01/2025 - 10:36
Assist Security’s client list includes fashion icons, critical infrastructure orgs

A London-based private security company allegedly left more than 120,000 files available online via an unsecured server, an infoseccer told The Register.…

Categories: News

GoDaddy slapped with wet lettuce for years of lax security and 'several major breaches'

The Register - Wed, 15/01/2025 - 23:47
Watchdog alleged it had no SIEM or MFA, orders rapid adoption of basic infosec tools

GoDaddy has failed to protect its web-hosting platform with even basic infosec tools and practices since 2018, according to the FTC, but the internet giant won’t face any immediate consequences for its many alleged acts of omission.…

Categories: News

Pages

Subscribe to Sec Tec Limited aggregator - News