The Register
Microsoft issues 117 patches – some for flaws already under attack
Patch Tuesday It's the second Tuesday of the month, which means Patch Tuesday, bringing with it fixes for numerous flaws, bugs and vulnerabilities in major software. And this one is a doozy.…
Qualcomm urges device makers to push patches after 'targeted' exploitation
Qualcomm has issued 20 patches for its chipsets' firmware, including one Digital Signal Processor (DSP) software flaw that has been exploited in the wild.…
Using iPhone Mirroring at work? You might have just overshared to your boss
If you're using iPhone Mirroring at work: it's time to stop, lest you give your employer's IT department the capability to snoop through your dating apps, photos, messages — and anything else you might want to keep to yourself.…
Happy birthday, Putin – you've been pwned
Ukrainian hackers shut down Russian state news agency VGTRK's online broadcasting and streaming services on Monday – president Vladimir Putin's 72nd birthday – as Kremlin officials vowed to bring those responsible for the "unprecedented" cyber attack to justice.…
Google brings better bricking to Androids, to curtail crims
Google has apparently started a global rollout of three features in Android designed to make life a lot harder for thieves to profit from purloined phones.…
Feds reach for sliver of crypto-cash nicked by North Korea's notorious Lazarus Group
The US government is attempting to claw back more than $2.67 million stolen by North Korea's Lazarus Group, filing two lawsuits to force the forfeiture of millions in Tether and Bitcoin.…
American Water stops billing for H2O due to 'cybersecurity incident'
American Water, which supplies over 14 million people in the US and numerous military bases, has stopped issuing bills and has taken its MyWater app offline while it investigates a hacking incident.…
Cops love facial recognition, and withholding info on its use from the courts
Police around the United States are routinely using facial recognition technology to help identify suspects, but those departments rarely disclose they've done so - even to suspects and their lawyers. …
Chinese cyberspies reportedly breached Verizon, AT&T, Lumen
Verizon, AT&T, and Lumen Technologies were among the US broadband providers whose networks were reportedly hacked by Chinese cyberspies, possibly compromising the wiretapping systems used for court-ordered surveillance.…
Embattled users worn down by privacy options? Let them eat code
Opinion The people are defeated. Worn out, deflated, and apathetic about the barrage of banners and pop-ups about cookies and permissions.…
Ryanair faces GDPR turbulence over customer ID checks
Ireland's Data Protection Commission (DPC) has launched an inquiry into Ryanair's Customer Verification Process for travelers booking flights through third-party websites or online travel agents (OTA).…
UK's Sellafield nuke waste processing plant fined £333K for infosec blunders
The outfit that runs Britain's Sellafield nuclear waste processing and decommissioning site has been fined £332,500 ($440,000) by the nation's Office for Nuclear Regulation (ONR) for its shoddy cybersecurity practices between 2019 and 2023.…
About a quarter million Comcast subscribers had their data stolen from debt collector
Comcast says data on 237,703 of its customers was in fact stolen in a cyberattack on a debt collector it was using, contrary to previous assurances it was given that it was unaffected by that intrusion.…
Apple fixes bug that let VoiceOver shout your passwords
Apple just fixed a duo of security bugs in iOS 18.0.1 and iPadOS 18.0.1, one of which might cause users' saved passwords to be read aloud. It's hardly an ideal situation for the visually impaired.…
Visit CyberThreat 2024 to hone your cybersecurity skills
Sponsored Post This year's CyberThreat returns to London to provide a place for cybersecurity professionals to share experiences, new tools and techniques to help organisations stay ahead of the latest cyber threats.…
Harvard duo hacks Meta Ray-Bans to dox strangers on sight in seconds
A pair of inventive Harvard undergraduates have created what they believe could be one of the most intrusive devices ever built – a wake-up call, they tell The Register, for the world to take privacy seriously in the AI era.…
Big names among thousands infected by payment-card-stealing CosmicSting crooks
Ray-Ban, National Geographic, Whirlpool, and Segway are among thousands of brands whose web stores were reportedly compromised by criminals exploiting the CosmicSting flaw in hope of stealing shoppers' payment card info as they order stuff online.…
DOJ, Microsoft seize 107 domains used in Russia's Star Blizzard phishing attacks
The US Department of Justice and Microsoft have seized 107 websites used by Russian cyberspies in a phishing campaign to steal sensitive information from US government agencies, think tanks, and other victims.…
Average North American CISO salary now $565K, mainly thanks to one weird trick
A survey of nearly 700 CISOs in the US and Canada has found that salaries have risen over the last year to an average of $565,000 and a median of $403,000, with the top 10 percent of execs pulling in over $1 million.…
Two British-Nigerian men sentenced over multimillion-dollar business email scam
Two British-Nigerian men were sentenced for serious business email compromise schemes in the US this week, netting them millions of dollars from local government entities, construction companies, and colleges.…