The Register
Protecting private data in AI deployments
Webinar As enterprises increasingly incorporate AI, the challenge of protecting private intellectual property (IP) often becomes more difficult.…
The fix for BGP's weaknesses has big, scary, issues of its own, boffins find
The Resource Public Key Infrastructure (RPKI) protocol has "software vulnerabilities, inconsistent specifications, and operational challenges" according to a pre-press paper from a trio of German researchers.…
Euro cops arrest 4 including suspected LockBit dev chilling on holiday
Building on the success of what's known around here as LockBit Leak Week in February, the authorities say they've arrested a further four individuals with ties to the now-scuppered LockBit ransomware empire.…
Evil Corp's deep ties with Russia and NATO member attacks exposed
The relationship between infamous cybercrime outfit Evil Corp and the Russian state is thought to be extraordinarily close, so close that intelligence officials allegedly ordered the criminals to carry out cyberattacks on NATO members.…
NCA unmasks man it suspects is both 'Evil Corp kingpin' and LockBit affiliate
The latest installment of the National Crime Agency's (NCA) series of ransomware revelations from February's LockBit Leak Week emerges today as the agency identifies a man it not only believes is a member of the long-running Evil Corp crime group but also a LockBit affiliate.…
Australian e-tailer digiDirect customers' info allegedly stolen and dumped online
Data allegedly belonging to more than 304,000 customers of Australian camera and tech e-tailer digiDirect has been leaked to an online cyber crime forum.…
Rackspace monitoring systems hit by zero-day
Exclusive Rackspace has told customers intruders exploited a zero-day bug in a third-party application it was using, and abused that vulnerability to break into its internal performance monitoring environment. That intrusion forced the cloud-hosting outfit to temporarily take its monitoring dashboard offline for customers.…
Ransomware forces hospital to turn away ambulances
Ransomware scumbags have caused a vital hospital to turn away ambulances after infecting its computer systems with malware.…
T-Mobile US to cough up $31.5M after that long string of security SNAFUs
T-Mobile US has agreed to fork out $31.5 million to improve its cybersecurity and pay a fine after a string of network intrusions affected millions of customers between 2021 and 2023.…
If you're holding important data, Iran is probably trying spearphish it
US and UK national security agencies are jointly warning about Iranian spearphishing campaigns, which remain an ongoing threat to various industries and governments.…
Remote ID verification tech is often biased, bungling, and no good on its own
A study by the US General Services Administration (GSA) has revealed that five remote identity verification (RiDV) technologies are unreliable, inconsistent, and marred by bias across different demographic groups.…
Cloud threats have execs the most freaked out because they're not prepared
Efficiency and scalability are key benefits of enterprise cloud computing, but they come at a cost. Security threats specific to cloud environments are the leading cause of concern among top executives and they're also the ones organizations are least prepared to address.…
AI code helpers just can't stop inventing package names
AI models just can't seem to stop making things up. As two recent studies point out, that proclivity underscores prior warnings not to rely on AI advice for anything that really matters.…
Forget the Kia Boyz: Hackers could hijack your car with just a smartphone
Infosec In Brief Put away that screwdriver and USB charging cable – the latest way to steal a Kia just requires a cellphone and the victim's license plate number.…
Binance claims it helped to bust Chinese crypto scam app in India
ASIA IN BRIEF It's not often The Register writes about a cryptocurrency outfit being on the right side of a scam or crime, but last week crypto exchange Binance claimed it helped Indian authorities to investigate a scam gaming app.…
Red team hacker on how she 'breaks into buildings and pretends to be the bad guy'
Interview A hacker walked into a "very big city" building on a Wednesday morning with no keys to any doors or elevators, determined to steal sensitive data by breaking into both the physical space and the corporate Wi-Fi network.…
Feds charge 3 Iranians with 'hack-and-leak' of Trump 2024 campaign
The US Department of Justice has charged three Iranians for their involvement in a "wide-ranging hacking campaign" during which they allegedly stole massive amounts of materials from Donald Trump's 2024 presidential campaign and then leaked the information to media organizations.…
Recall the Recall recall? Microsoft thinks it can make that Windows feature palatable
Microsoft has revised the Recall feature for its Copilot+ PCs and insists that the self-surveillance system is secure.…
Ransomware gang using stolen Microsoft Entra ID creds to bust into the cloud
Microsoft's latest threat intelligence blog issues a warning to all organizations about Storm-0501's recent shift in tactics, targeting, and backdooring hybrid cloud environments.…
Patch now: Critical Nvidia bug allows container escape, complete host takeover
A critical bug in Nvidia's widely used Container Toolkit could allow a rogue user or software to escape their containers and ultimately take complete control of the underlying host.…