News

Greg Kroah-Hartman explains the Cyber Resilience Act for open source developers

The Register - Tue, 30/09/2025 - 08:45
Impact? Nope, don't worry, be happy, says Linux veteran

Opinion  There has been considerable worry about the impact of the European Union's Cyber Resilience Act on open source programmers. Linux stable kernel maintainer Greg Kroah-Hartman says, however, that there won't be much of an impact at all.…

Categories: News

Feds cut funding to program that shared cyber threat info with local governments

The Register - Tue, 30/09/2025 - 01:16
The federal government's not the only thing shutting down on Oct. 1

The US Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday will cut its ties to - and funding for -  the Center for Internet Security, a nonprofit that provides free and low-cost cybersecurity services to state and local governments.…

Categories: News

One line of malicious npm code led to massive Postmark email heist

The Register - Mon, 29/09/2025 - 21:44
MCP plus open source plus typosquatting equals trouble

A fake npm package posing as Postmark's MCP (Model Context Protocol) server silently stole potentially thousands of emails a day by adding a single line of code that secretly copied outgoing messages to an attacker-controlled address.…

Categories: News

Asahi runs dry as online attackers take down Japanese brewer

The Register - Mon, 29/09/2025 - 21:42
No personal info gulped as yet, but don't call for help

Japan's largest brewery biz, Asahi, has shut down distribution systems following an online attack, and local drinkers will just have to make do with stocks as they stand.…

Categories: News

UK may already be at war with Russia, ex-MI5 head suggests

The Register - Mon, 29/09/2025 - 15:45
Baroness Manningham-Buller cites Kremlin sabotage, cyberattacks, and assassinations as signs of an undeclared conflict

The former head of MI5 says hostile cyberattacks and intelligence operations directed by The Kremlin indicate the UK might already be at war with Russia.…

Categories: News

UK minister suggests government could ditch 'dangerous' Elon Musk's X

The Register - Mon, 29/09/2025 - 12:00
Ed Miliband takes aim at social media overlord for promoting violence and disinformation

The UK government should consider the possibility of leaving social media platform X, a high-profile minister has suggested.…

Categories: News

Harrods blames its supplier after crims steal 430k customers’ data in fresh attack

The Register - Mon, 29/09/2025 - 11:39
Attackers make contact but negotiations fall on deaf ears

Luxury London-based retailer Harrods is facing its second cybersecurity scandal in 2025, confirming criminals not only stole 430,000 customers' data in a fresh attack but have even made contact.…

Categories: News

Jaguar Land Rover gets £1.5B government jump-start after cyber breakdown

The Register - Mon, 29/09/2025 - 10:46
Hundreds of thousands of workers in financial despair supported with landmark loan

The UK government is stepping in with financial support for Jaguar Land Rover, providing it with a hefty loan as it continues to battle the fallout from a cyberattack.…

Categories: News

Digital ID, same place, different time: In this timeline, the result might surprise us

The Register - Mon, 29/09/2025 - 10:16
Socio political backdrop is not what it once was....

Opinion  UK Prime Minister Keir Starmer directly addressed his new policy of mandatory digital ID in the country for 23 seconds in its effective launch speech.…

Categories: News

Submarine cable security is all at sea, and UK govt 'too timid' to act, says report

The Register - Mon, 29/09/2025 - 09:01
Guess how much of our direct transatlantic data capacity runs through two cables in Bude?

Feature  The first transatlantic cable, laid in 1858, delivered a little over 700 messages before promptly dying a few weeks later. 167 years on, the undersea cables connecting the UK to the outside world process £220 billion in daily financial transactions. Now, the UK Parliament's Joint Committee on National Security Strategy (JCNSS) has told the government that it has to do a better job of protecting them.…

Categories: News

When AI is trained for treachery, it becomes the perfect agent

The Register - Mon, 29/09/2025 - 08:15
We’re blind to malicious AI until it hits. We can still open our eyes to stopping it

Opinion  Last year, The Register reported on AI sleeper agents. A major academic study explored how to train an LLM to hide destructive behavior from its users, and how to find it before it triggered. The answers were unambiguously asymmetric — the first is easy, the second very difficult. Not what anyone wanted to hear.…

Categories: News

Trump demands Microsoft fire its head of global affairs

The Register - Mon, 29/09/2025 - 04:24
Alleges bias and security problems

US President Donald Trump has demanded Microsoft fire its recently appointed head of global affairs Lisa Monaco.…

Categories: News

Dutch teen duo arrested over alleged 'Wi-Fi sniffing' for Russia

The Register - Mon, 29/09/2025 - 02:09
PLUS: Interpol recoups $439M from crims; CISA criticizes Feds security; FIFA World Cup nets dodgy domain deluge

Infosec In Brief  Police in the Netherlands arrested two 17-year-olds last week over claims that Russian intelligence recruited them to spy on the headquarters of European law enforcement agencies.…

Categories: News

Datacenter fire takes 647 South Korean government services offline

The Register - Sun, 28/09/2025 - 23:59
PLUS: US court grounds China’s DJI; India requires 2FA for most payments; Great Firewall busters launch VPN; and more!

Asia In Brief  Over 600 e-government services operated by South Korea’s government are offline after a datacenter fire disrupted operations.…

Categories: News

Hunt for RedNovember: Beijing hacked critical orgs in year-long snooping campaign

The Register - Sat, 27/09/2025 - 12:06
Not to be confused with all the other reports of Chinese intruders on US networks that came to light this week

RedNovember, a Chinese state-sponsored cyberspy group, targeted government and critical private-sector networks around the globe between June 2024 and July 2025, exploiting buggy internet-facing appliances to deploy a Go-based backdoor called Pantegana and other offensive security tools, including Cobalt Strike and SparkRAT.…

Categories: News

Alibaba unveils $53B global AI plan – but it will need GPUs to back it up

The Register - Sat, 27/09/2025 - 09:38
Chinese giant maps out datacenters across Europe and beyond, yet US chip curbs cast a long shadow

Analysis  Alibaba this week opened an AI war chest containing tens of billions of dollars, a revamped LLM lineup, and plans for AI datacenters in Europe. But it also prompted a flurry of questions over how it will achieve all this in an increasingly fragmented IT landscape, when critical resources are in short supply.…

Categories: News

Cyber threat-sharing law set to shut down, along with US government

The Register - Fri, 26/09/2025 - 22:00
Act passed in 2015 is due to lapse unless a continuing resolution passes - and that's unlikely

Barring a last-minute deal, the US federal government would shut down on Wednesday, October 1, and the 2015 Cybersecurity Information Sharing Act would lapse at the same time, threatening what many consider a critical plank of US cybersecurity policy.…

Categories: News

Microsoft spots fresh XCSSET malware strain hiding in Apple dev projects

The Register - Fri, 26/09/2025 - 16:23
Upgraded nasty slips into Xcode builds, steals crypto, and disables macOS defenses

The long-running XCSSET malware strain has evolved again, with Microsoft warning of a new macOS variant that expands its bag of tricks while continuing to target developers.…

Categories: News

Salesforce facing multiple lawsuits after Salesloft breach

The Register - Fri, 26/09/2025 - 16:15
CRM giant denies security shortcomings as claims allege stolen data used for ID theft

Salesforce is facing a wave of lawsuits in the wake of a cyberattack that exposed customer data.…

Categories: News

‘An attacker's playground:’ Crims exploit GoAnywhere perfect-10 bug

The Register - Fri, 26/09/2025 - 15:32
Researchers say tens of thousands of instances remain publicly reachable

Security researchers have confirmed that threat actors have exploited the maximum-severity vulnerability affecting Fortra's GoAnywhere managed file transfer (MFT), and chastised the vendor for a lack of transparency.…

Categories: News

Pages

Subscribe to Sec Tec Limited aggregator - News