RESEARCH Google says the intruders were on the hunt for everything from drone tech to pathogens Chinese government spies remained hidden in the networks of

Security Community repo freezes new accounts after attackers swamp it with poisoned package updates A wave of malicious commits hit the Arch User Repository (AUR)

Cybercrime A phishing kit subverting Microsoft’s legitimate authentication flow lets attackers break into accounts without stealing passwords or creating fake login pages Christian Ali Bravo

The author of Java property-testing tool jqwik did not want AI coding agents using his project. So he told them not to. Then he went

ai and ml AI agents can’t be trusted, so don’t give them dangerous powers NanoClaw, a secure agent framework, has partnered with supply chain platform

A disgruntled IT worker faces 21 months behind bars after being found guilty of sabotaging his former employer’s systems for more than a year and

Security Clinical trial participant data stolen, but pharma giant says exposed records were pseudonymized Pharmaceutical giant Novo Nordisk says data related to clinical trial participants

EXCLUSIVE For the past 90 days, Microsoft has been quietly patching a firmware flaw in Surface devices that allowed the hardware to be bricked with

security Telegram-based ‘Outsider Enterprise’ accused of sending millions of scam texts and impersonating trusted brands Google has sued an alleged China-based cybercrime operation it says

security Authority admits mass message to home-schooling families revealed recipients’ addresses, prompting ICO report and apology Plymouth City Council has joined the growing ranks of

PUBLIC SECTOR CEO of Mumsnet among the six-member team The UK government has set up an advisory board for its digital ID project, intended “to challenge

EPISODE 11 “And uh… what are you doing?” the Head of Security asks, entering the Security office as I’m making my way to the exit –

Security University of Nottingham is first of many, Shiny tells The Reg Data theft and extortion group ShinyHunters claims to have exploited a critical Oracle

Security Another day, another Windows exploit code Nightmare Eclipse, the prolific zero-day vulnerability hunter with an axe to grind against Microsoft, released yet another exploit

security No disclosure via official channels, no offer of identity theft monitoring, no problem Online chat platform VRChat says a recent cyberattack compromised the data

Our tracking of OceanLotus activities from 2024–2026 reveals a shift in operational focus. During this period, the Vietnam-aligned OceanLotus adopted a more selective approach to

Our tracking of OceanLotus activities from 2024–2026 reveals a shift in operational focus. During this period, the Vietnam-aligned OceanLotus adopted a more selective approach to

SECURITY The CEO thought this was the best way to deal with some email issues PWNED Welcome, once again, to PWNED, the weekly screed where