The Register
Watch out, another max-severity, make-me-root Cisco bug on the loose
Cisco has issued a patch for a critical 10 out of 10 severity bug in its Identity Services Engine (ISE) and ISE Passive Identity Connector (ISE-PIC) that could allow an unauthenticated, remote attacker to run arbitrary code on the operating system with root-level privileges. …
Quantum code breaking? You'd get further with an 8-bit computer, an abacus, and a dog
The US National Institute for Standards and Technology (NIST) has been pushing for the development of post-quantum cryptographic algorithms since 2016.…
Microsoft offers vintage Exchange and Skype server users six more months of security updates
Microsoft has extended its security update programs for Exchange Server 2016 and 2019, and Skype for Business 2015 and 2019.…
Ukrainian hackers claim to have destroyed major Russian drone maker's entire network
Ukrainian hackers claim to have taken out the IT infrastructure at Russia's Gaskar Integration plant, one of the largest suppliers of drones for its army, and also destroyed massive amounts of technical data related to drone production. …
Operation Eastwood shutters 100+ servers used to DDoS websites supporting Ukraine
International cops shut down more than 100 servers belonging to the pro-Russian NoName057(16) network this week as part of the Europol-led Operation Eastwood.…
Crims hijacking fully patched SonicWall VPNs to deploy stealthy backdoor and rootkit
Unknown miscreants are exploiting fully patched, end-of-life SonicWall VPNs to deploy a previously unknown backdoor and rootkit, likely for data theft and extortion, according to Google's Threat Intelligence Group.…
Retailer Co-op: Attackers snatched all 6.5M member records
Co-op Group's chief executive officer has confirmed that all 6.5 million of the organization's members had their data stolen during its April cyberattack - Scattered Spider is believed to be behind the digital heist.…
Turbulence at Air Serbia, the latest airline under cyber siege
Exclusive Aviation insiders say Serbia's national airline, Air Serbia, was forced to delay issuing payslips to staff as a result of a cyberattack it is battling.…
Security shop Adarma ceases trading, confirms it will enter administration
UK cybersecurity shop Adarma has confirmed it has entered administration.…
Curl creator mulls nixing bug bounty awards to stop AI slop
Daniel Stenberg, founder and lead developer of the open-source curl command line utility, just wants the AI slop to stop.…
Ex-US soldier who Googled 'can hacking be treason' pleads guilty to extortion
A former US Army soldier, who reportedly hacked AT&T, bragged about accessing President Donald Trump's call logs, and then Googled "can hacking be treason," and "US military personnel defecting to Russia," pleaded guilty to conspiring to break into telecom firms' databases and extort at least $1 million.…
Britain's billion-pound F-35s not quite ready for, well, anything
The F-35 stealth fighter is not meeting its potential in British service because of availability issues, a shortage of support personnel, and delays in integrating key weapons that are limiting the aircraft's effectiveness.…
Someone hijacked Elmo's X account to post antisemitic rants
Someone hacked Elmo's X account on Sunday, making it appear as if the lovable Sesame Street monster with the habit of referring to themselves in the third-person spewed a series of now-removed antisemitic, racist, and anti-Trump posts.…
Nvidia A6000 GPUs flip memory bits if beaten by GPUHammer
The Rowhammer attack on computer memory is back, and for the first time, it's able to mess with bits in Nvidia GPUs, despite defenses designed to protect against this kind of hacking.…
A software-defined radio can derail a US train by slamming the brakes on remotely
When independent security researcher Neil Smith reported a vulnerability in a comms standard used by trains to the US government in 2012, he most likely didn't expect it would take until 2025 to sort the matter out, but here we are. …
GPS on the fritz? Britain and France plot a backup plan
Britain and France are to work more closely on technology to back up the familiar Global Positioning System (GPS), which is increasingly subject to interference in many regions around the world.…
UK's NCA disputes claim it's nearly three times less efficient than the FBI
The UK's National Crime Agency (NCA) has hit back at a think tank after it assessed its US counterpart, the FBI, to be nearly three times more effective.…
Iran seeks at least three cloud providers to power its government
The Information Technology Organization of Iran (ITOI), the government body that develops and implements IT services for the country, is looking for suppliers of cloud computing.…
Nvidia warns its GPUs – even Blackwells – need protection against Rowhammer attacks
Infosec In Brief Nvidia last week advised customers to ensure they employ mitigations against Rowhammer attacks, after researchers found one of its workstation-grade GPUs is susceptible to the exploit.…
You have a fake North Korean IT worker problem - here's how to stop it
By now, the North Korean fake IT worker problem is so ubiquitous that if you think you don't have any phony resumes or imposters in your interview queue, you're asleep at the wheel.…