The Register

Subscribe to The Register feed
Biting the hand that feeds IT — Enterprise Technology News and Analysis
Updated: 46 min 56 sec ago

WhatsApp finally fixes View Once flaw that allowed theft of supposedly vanishing pics

Tue, 10/12/2024 - 07:30
And it only took four months, tut

WhatsApp has fixed a problem with its View Once feature, designed to protect people's privacy with automatically disappearing pictures and videos.…

Categories: News

Police arrest suspect in murder of UnitedHealthcare CEO, with grainy pics the only tech involved

Tue, 10/12/2024 - 00:58
McDonald's worker called it in, cops swooped, found 'gun, suppressor, manifesto'

Police in Pennsylvania have arrested a man suspected of shooting dead the CEO of insurer UnitedHealthcare in New York City, thanks to a McDonald's employee who recognized the suspect in a burger joint – and largely without help from technology.…

Categories: News

China's Salt Typhoon recorded top American officials' calls, says White House

Mon, 09/12/2024 - 19:01
No word yet on who was snooped on. Any bets?

Chinese cyberspies recorded "very senior" US political figures' calls, according to White House security boss Anne Neuberger.…

Categories: News

Crooks stole AWS credentials from misconfigured sites then kept them in open S3 bucket

Mon, 09/12/2024 - 16:15
ShinyHunters-linked heist thought to have been ongoing since March

Exclusive  A massive online heist targeting AWS customers during which digital crooks abused misconfigurations in public websites and stole source code, thousands of credentials, and other secrets remains "ongoing to this day," according to security researchers.…

Categories: News

OpenWrt orders router firmware updates after supply chain attack scare

Mon, 09/12/2024 - 14:04
A couple of bugs lead to a potentially bad time

OpenWrt users should upgrade their images to the same version to protect themselves from a possible supply chain attack reported to the open source Wi-Fi router project last week.…

Categories: News

Microsoft dangles $10K for hackers to hijack LLM email service

Mon, 09/12/2024 - 11:05
Outsmart an AI, win a little Christmas cash

Microsoft and friends have challenged AI hackers to break a simulated LLM-integrated email client with a prompt injection attack – and the winning teams will share a $10,000 prize pool.…

Categories: News

Blue Yonder ransomware termites claim credit

Mon, 09/12/2024 - 03:01
Also: Mystery US firm compromised by Chinese hackers for months; Safe links that aren't; Polish spy boss arrested, and more

Infosec in brief  Still smarting over that grocery disruption caused by a ransomware attack on supply chain SaaS vendor Blue Yonder? Well, now you have someone to point a finger at: the Termite ransomware gang.…

Categories: News

How Chinese insiders are stealing data scooped up by President Xi's national surveillance system

Sun, 08/12/2024 - 17:00
'It's a double-edged sword,' security researchers tell The Reg

Feature  Chinese tech company employees and government workers are siphoning off user data and selling it online - and even high-ranking Chinese Communist Party officials and FBI-wanted hackers' sensitive information is being peddled by the Middle Kingdom's thriving illegal data ecosystem.…

Categories: News

Micropatchers share 1-instruction fix for NTLM hash leak flaw in Windows 7+

Fri, 06/12/2024 - 23:34
Microsoft's OS sure loves throwing your creds at remote systems

Acros Security claims to have found an unpatched bug in Microsoft Windows 7 and onward that can be exploited to steal users' OS account credentials.…

Categories: News

Facing sale or ban, TikTok tossed under national security bus by appeals court

Fri, 06/12/2024 - 22:00
Video slinger looks to Supremes for salvation, though anything could happen under Trump

A US federal appeals court has rejected a challenge to the law that prevents popular apps that collect data on Americans from being controlled by a foreign adversary.…

Categories: News

Salt Typhoon forces FCC's hand on making telcos secure their networks

Fri, 06/12/2024 - 18:27
Proposal pushes stricter infosec safeguards after Chinese state baddies expose vulns

The head of America's Federal Communications Commission (FCC) wants to force telecoms operators to tighten network security in the wake of the Salt Typhoon revelations, and to submit an annual report detailing measures taken.…

Categories: News

Badass Russian techie outsmarts FSB, flees Putinland all while being tracked with spyware

Fri, 06/12/2024 - 12:32
Threatened with life in prison, Kyiv charity worker gives middle finger to state spies

A Russian programmer defied the Federal Security Service (FSB) by publicizing the fact his phone was infected with spyware after being confiscated by authorities.…

Categories: News

Protect your clouds

Fri, 06/12/2024 - 09:11
Get best practice advice on how to safeguard your cloud infrastructure from SANS

Sponsored Post  According to the 2024 IBM Cost of the Data Breach Report 40 percent of data breaches identified between March 2023 and February 2024 involved data stored across multiple environments, including the cloud.…

Categories: News

PoC exploit chains Mitel MiCollab 0-day, auth-bypass bug to access sensitive files

Fri, 06/12/2024 - 06:01
Still unpatched 100+ days later, watchTowr says

A zero-day arbitrary file read vulnerability in Mitel MiCollab can be chained with a now-patched critical bug in the same platform to give attackers access to sensitive files on vulnerable instances. …

Categories: News

Microsoft: Another Chinese cyberspy crew targeting US critical orgs 'as of yesterday'

Fri, 06/12/2024 - 01:03
Redmond threat intel maven talks explains this persistent pain to The Reg

A Chinese government-linked group that Microsoft tracks as Storm-0227 yesterday started targeting critical infrastructures organisations and US government agencies, according to Redmond's threat intel team.…

Categories: News

Solana blockchain's popular web3.js npm package backdoored to steal keys, funds

Thu, 05/12/2024 - 23:13
Damage likely limited to those running bots with private key access

Malware-poisoned versions of the widely used JavaScript library @solana/web3.js were distributed via the npm package registry, according to an advisory issued Wednesday by project maintainer Steven Luscher.…

Categories: News

Explore strategies for effective endpoint control

Thu, 05/12/2024 - 18:43
Discover how automation can simplify endpoint management in this webinar

Webinar  Managing endpoints in today's dynamic IT environments is becoming increasingly complex.…

Categories: News

British hospitals hit by cyberattacks still battling to get systems back online

Thu, 05/12/2024 - 12:25
Children's hospital and cardiac unit say criminals broke in via shared 'digital gateway service'

Both National Health Service trusts that oversee the various hospitals hit by separate cyberattacks last week have confirmed they're still in the process of restoring systems.…

Categories: News

BT Group confirms attackers tried to break into Conferencing division

Thu, 05/12/2024 - 11:03
Sensitive data allegedly stolen from US subsidiary following Black Basta post

BT Group confirmed it is dealing with an attempted attack on one of its legacy business units after the Black Basta ransomware group claimed they broke in.…

Categories: News

Shape the future of UK cyber security

Thu, 05/12/2024 - 09:03
Support the industry by sponsoring the UK Cyber Team Competition

Partner Content  The opportunity to identify, foster and nurture talented young people towards a cyber security career should always be grabbed with both hands.…

Categories: News

Pages