RSAC 2026 The now-infamous Anthropic report about Chinese cyberspies abusing Claude AI to automate cyberattacks was a Rorschach test for the infosec community, according to

RSAC 2026 Back in the day (circa 2023) when cybercrime group Scattered Spider and its help-desk voice-phishing calls were a relatively new threat, the feds

Strengthen your MFA policies, double-down on anti-phishing training, and for Jobs’ sake, patch all your vulns right away. The past year of intelligence collected by

Google’s Gemini AI agents are crawling the dark web, sifting through upward of 10 million posts a day to find a handful of threats relevant

Voice phishing surged last year to become the second most common method used by cybercriminals to gain initial access to their victims’ IT estate –

Trio-Tech International initially shrugged off a ransomware attack at a Singapore subsidiary as immaterial, only to reverse course days later after discovering stolen data had

kettle When El Reg cybersecurity editor Jessica Lyons joins infosec industry colleagues in San Francisco for RSAC 2026 this week, she’s expecting agentic AI to

Thank you to everyone who participated in the Cybersecurity Framework Profile for Artificial Intelligence (Cyber AI Profile) Workshop in January! The input we received on

Microsoft has released an out-of-band update to resolve bugs introduced by a Windows patch just days after promising improved reliability. The fix, shipped over the

NATO is unprepared to deal with attacks by cheap, mass-produced drones and urgently needs layered, affordable air defense systems to counter the threat, taking a

Infosec In Brief Russian intelligence-affiliated parties are posing as customer support services on commercial messaging applications such as Signal to compromise accounts and conduct phishing

Since February, cryptographer Nadim Kobeissi has been trying to get code fixes applied to Rust cryptography libraries to address what he says are critical bugs.

A UK police force has suspended its deployment of live facial recognition (LFR) technology after a study revealed it was statistically more likely to identify

The US government has moved to disrupt a cluster of IoT botnets behind some of the largest DDoS attacks ever recorded, including traffic bursts topping

The UK’s cyber watchdog has warned that the government’s £1.5 billion bailout of Jaguar Land Rover (JLR) risks setting a troubling precedent for how Britain

Credit: NIST Workshop Details… We’re looking forward to hearing from the community during our “Future Directions” Workshop!  Date: March 31 – April 1, 2026Where: NIST’s

Opinion Last week’s UK government consultation on its plans for digital identity had quite a few things missing. It did not include a price estimate

Cybercriminals go after people’s personal information across every kind of online platform, including WhatsApp, Instagram, LinkedIn, Roblox, YouTube and Spotify, not to mention finance apps.