Cyber - 2026-06-19 - EVE
##
Symantec Enterprise Blogs
View Articles
1291 - Search - Internet of Things (IoT) security(3)
1292 - Search - Cyberattacker techniques, tools, and infrastructure(164)
1293 - Search - Microsoft Defender for Office 365(37)
1294 - Search - Microsoft Defender for Cloud Apps(22)
1295 - Search - Microsoft Defender External Attack Surface Management(4)
1296 - Search - Microsoft Defender Experts for XDR(7)
1297 - Search - Microsoft Defender Experts for Hunting(7)
1298 - Search - Microsoft Purview Insider Risk Management(1)
1299 - Search - Microsoft Purview Data Lifecycle Management(1)
1300 - Search - Cloud C² — Command & Control
1301 - Search - Essential, Elite and Red Team
1302 - Search - Terms of Service & Policies
1303 - Search - PAYLOAD AWARDSGet your payload in front of thousands and enter to win. Nearly $10,000 in annual Hak5 prizes!
1304 - Search - DUCKYSCRIPT COURSELearn directly from the creators! Unlock your creative potential with this comprehensive course.
1305 - Search - only for BIS license exception ENC favorable treatment countries
1306 - Search - English: Europe, Middle East, Africa
1307 - Search - FeaturedJoin a live Protect event—learn how to protect people, data, and AILive Events
1308 - Search - FeaturedExperience Core Email Protection in action—block 99.99% of email threatsInteractive Demo
1309 - Search - See why Proofpoint is a leader
1310 - Search - FeaturedUnderstand the top data security risks organizations face — and how to stay aheadResearch Report
1311 - Search - Secure every layer of your AI
1312 - Search - Secure AI Usage by People
1313 - Search - Secure AI Usage by Agents
1314 - Search - Secure MCP Across Your Enterprise
1315 - Search - Featured"The partnership with Proofpoint, it’s an extention of our team." –Celesta CapitalCustomer Story
1316 - Search - Combat Email and Cloud Threats
1317 - Search - FeaturedSecuring and Governing Data for AIWhite Paper
1318 - Search - FeaturedDiscover the security risks healthcare organizations can’t afford to ignoreThreat Report
1319 - Search - FeaturedNew Agents, New Attacks: Securing Collaboration in the Agentic EraLive Webinar Series—Register Now
1320 - Search - FeaturedProofpoint DISCARDED Tales from the threat research trenchesPodcast
1321 - Search - FeaturedStop Threats at Every Layer—People, Data, AIProofpoint provides intent-based protection for every human, every AI agent, across all data.
1322 - Search - View How a Technology Company Closed the Gaps Cisco IronPort Couldn't—and Finally Got Ahead of Phishing and BEC
1323 - Search - View Security Awareness Isn’t the Problem. How We Frame It Is.
1324 - Search - View Sayonara, SocGholish: Operation Endgame Disrupts Major Cybercrime Operation
1325 - Search - Human Resilience & Security Awareness
1326 - Search - Seeing the Full Picture: How to Measure Email Security Effectiveness the Right Way
1327 - Search - Strengthening Public-Private Collaboration in the Fight Against Cybercrime: Proofpoint Joins Europol EC3’s Advisory Group on Internet Security
1328 - Search - Governing Claude like you govern your people—with the Claude Compliance API
1329 - Search - Momentum in the New Frontier
1330 - Search - Identity & Access Mgmt Security
1331 - Search - FIFA Bug Exposes World Cup Streams to Remote Takeover
1332 - Search - Salesforce Data Thefts Continue via Klue App Compromise
1333 - Search - Heard It From a CISO
1334 - Search - Stressors, AI Forcing Changes to Cybersecurity Teams
1335 - Search - Novo Nordisk Breach Exposes Software Development Pipeline Risk
1336 - Search - Operation Escaneo Signals Shift in LatAm Threat Landscape
1337 - Search - EU Gets a Head Start in Developing 6G Network Security
1338 - Search - INC Ransomware Thrives by Mastering the Basics
1339 - Search - Sweeping Credential-Harvesting Heist Compromises 30K+ Fortinet Devices
1340 - Search - UK Social Media Ban for Minors Has Privacy Experts Worried
1341 - Search - Fileless Phantom Stealer Targets Browser Credentials
1342 - Search - Security Community Slams US Ban on Exporting Mythos, Fable
1343 - Search - SprySOCKS Windows Variant Abuses Kernel Drivers to Evade Detection
1344 - Search - Rokarolla Android Trojan Levels Up to Full Device Control, Persistence
1345 - Search - ‘Lorem Ipsum’ Malware Pivots to ClickFix Delivery
1346 - Search - HTTP/2 Bomb Attacks Put Telcos, Healthcare Orgs at Risk
1347 - Search - Copilot ‘SearchLeak’ Attack Allows 1-Click Data Theft
1348 - Search - China-Nexus Actor Spies on US Researchers Undetected for a Year
1349 - Search - US Cracks Down on Anthropic AI Models Amid Abuse Concerns
1350 - Search - ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed
1351 - Search - Claude Fable 5 Doesn’t Change the Mythos Security Story
1352 - Search - Phishing Attack Volume Down 20%, But Risk Still Rising
1353 - Search - Max-Severity Ivanti Flaw Exploited 24 Hours After Disclosure
1354 - Search - Chinese, N. Korean Threat Groups Build on Asia-Pacific Success
1355 - Search - CISA Rewrites Federal Patching Requirements for AI Threat Era
1356 - Search - Bug Bounty Research Triggers ServiceNow Security Alert
1357 - Search - Nightmare-Eclipse Drops Yet Another Microsoft Exploit, RoguePlanet
1358 - Search - Blame AI: Patch Tuesday Hits Record 206 CVEs
1359 - Search - Microsoft Exchange Flaw Lets Attackers Spoof Any Email Address
1360 - Search - Miasma Supply Chain Worm Burrows Into 73 Microsoft Repositories
1361 - Search - Russian Attackers Weaponize WinRAR Flaw Against Ukrainian Orgs
1362 - Search - Silent Ransom Group Hits US Law Firms in Escalating Extortion Attacks
1363 - Search - Check Point VPN Flaw Exploited Since Early May
1364 - Search - ‘Hades’ Campaign Against PyPI Puts New Spin on Shai-Hulud
1365 - Search - Exposed Fuel Tank Gauges Under Attack in the US
1366 - Search - Adaptive, Agentic AI Worms Loom as Next Enterprise Threat
1367 - Search - 20 Leaders Who Built the CISO Era: 2 Decades of Change
1368 - Search - It’s Patch Tuesday for Microsoft & Not a Zero-Day In Sight
1369 - Search - The Future of the Datacenter
1370 - Search - 2,000 retired Google Pixel phones get a second life as a private cloudYou might say the system packs two kilapixels of compute
1371 - Search - Waymo hits the brakes after robotaxis keep missing the signs for freeway construction zonesNearly 4,000 vehicles recalled for driving past closure warnings and between cones marking shut lanes
1372 - Search - Researchers drop checkm8-style BootROM exploit for A12 and A13 iPhonesOwners of affected iPhones can stop checking for patches now: the fix for this SecureROM bug comes in a new handset
1373 - Search - Bcachefs exits experimental status in new ‘performance release’More Rust, but more trouble with AI slop, too
1374 - Search - Tensordyne makes a big bet on log math to beat NvidiaWho needs compute-hungry multiplications when you can just add logarithms
1375 - Search - Devs in the trenches are stressed from the mandate to automate everything, but Render thinks it can helpSan Francisco plays host to hosting company’s Localhost conference
1376 - Search - Geopolitical jitters push Europe’s internet registry away from cloud-first strategyMembers aren’t RIPE for a new charging scheme, though
1377 - Search - securityFeds freaked over Fable 5 after simple ‘fix this code’ prompt, not jailbreak, says researcher
1378 - Search - ON-PREMAmazon owns up to using 2.5bn gallons of H2O in its bit barns last year
1379 - Search - scienceAI and brain-computer interface allow speechless ALS patient to work a full-time job
1380 - Search - PUBLIC SECTORCapita is about to sail past deadline to fix civil service pensions scheme
1381 - Search - virtualizationTesco is sprinting to quit VMware and Broadcom despite rapid migration risks
1382 - Search - Everpure’s AI Strategy Is Almost Purely Based On Nvidia
1383 - Search - The Server Boom Balances Price Increases Against Chip Shortages
1384 - Search - HPE’s Datacenter Networking Picture Comes Into Clearer Focus
1385 - Search - Quantum Pulse Does Industrial Light Magic To Deliver Massive Boost In Qubits
1386 - Search - Storage news ticker - 19 June 2026
1387 - Search - Zilliz lays out vector database and lakebase differences
1388 - Search - VDURA adds multi-tenancy and faster S3 to PanFS
1389 - Search - Databricks expands Lakehouse to unify OLAP and OLTP
1390 - Search - Inside the cloud’s new agentic AI-ready, Arm-powered foundation
1391 - Search - Python JIT compiler project under threat after steering council says proper process wasn’t followed
1392 - Search - Microsoft Build: Surface RTX Spark Dev Box, Coreutils for Windows, air-gapped GitHub and more
1393 - Search - TypeScript devs no longer need to tangle with C# to use Aspire dev stack after Microsoft update
1394 - Search - DON’T MISSAnthropic sues US government after unprecedented national security designationBrands Trump administration decision ’legally unsound’ and has ’no choice but to challenge it in court’
1395 - Search - Midjourney pivots from AI image generation to body scanning medical spa where patients bathe in ‘golden light'1 day ago
1396 - Search - NASA payload to ride commercial Mars orbiter from rocket biz yet to reach orbit1 day ago
1397 - Search - Neuromorphic computing may one day offer AI a power-saving brainwave1 day ago
1398 - Search - OpenAI’s agent chained decade-old DoS attacks to crash web servers in secondsCodex drops an HTTP/2 Bomb
1399 - Search - How to access the Dark Web using the Tor Browser
1400 - Search - How to enable Kernel-mode Hardware-enforced Stack Protection in Windows 11
1401 - Search - How to use the Windows Registry Editor
1402 - Search - How to backup and restore the Windows Registry
1403 - Search - How to start Windows in Safe Mode
1404 - Search - How to remove a Trojan, Virus, Worm, or other Malware
1405 - Search - How to show hidden files in Windows 7
1406 - Search - How to see hidden files in Windows
1407 - Search - Reach out to get featured—contact us to send your exclusive story idea, research, hacks, or ask us a question or leave a comment/feedback!
1408 - Search - Welcoming the Philippine Government to Have I Been Pwned
1409 - Search - 1,000 Data Breaches Later, the Disclosure Lag is Worse Than Ever
1410 - Search - Welcoming the Bhutanese Government to Have I Been Pwned
1411 - Search - Welcoming the Bahamian Government to Have I Been Pwned
1412 - Search - Welcoming the Bangladesh Government to Have I Been Pwned
1413 - Search - Data breach disclosure 101: How to succeed after you’ve failed
1414 - Search - Data from connected CloudPets teddy bears leaked and ransomed, exposing kids’ voice messages
1415 - Search - Here’s how I verify data breaches
1416 - Search - When a nation is hacked: Understanding the ginormous Philippines data breach
1417 - Search - How I optimised my life to make my job redundant
1418 - Search - U.S. Space Force Procures Additional Next-Generation GPS Satellites
1419 - Search - NATO Prioritizes Data-Centricity for Digital Sovereignty, Interoperability
1420 - Search - NATO and EDA Eye 2030 Deadline for Cloud, AI and Emerging Technology
1421 - Search - NATO Prioritizes Rapid Procurement, Industry Collaboration
1422 - Search - NATO Task Force Maven Is a Good Thing, Says Program Director
1423 - Search - PQC Is Here, More Policies Are Coming
1424 - Search - What the J6 Wants You To Know
1425 - Search - Cyber Talent a Priority for the Department of War
1426 - Search - Lofty Goals for the Next Version of the Military Cloud
1427 - Search - DISA Pushes Zero-Trust Qualification Forward
1428 - Search - DOW CIO Highlights a ‘Common Sense’ Approach for the Military’s Technology
1429 - Search - A New Vision for Mission Partner Networking
1430 - Search - DISA Director Calls for Industry Partnerships as Frontier AI Reshapes Warfighting
1431 - Search - DISA Goes Full Steam Ahead on Multi-Partner Environment, Zero Trust
1432 - Search - Fresh Efforts Ease Hiring Issues at DISA
1433 - Search - Promoting Faith in AI for National Security
1434 - Search - Initial Counter-Drone Technologies Deliver a Sting
1435 - Search - German Cyber Innovation Agency Tackles Bureaucracy With Tech Challenges
1436 - Search - CISA Issues Binding Directive on Security Updates to Federal Agencies
1437 - Search - Pentagon Establishes New Cyber Workforce Incentive Framework
1438 - Search - Developing the Next Generation of Cyber Talent Is a Priority for the Military’s CIO
1439 - Search - Stealth in the Face of Adversaries: Integrating Intelligence Data Into Cyber Operations
1440 - Search - New Leader at the Defense Intelligence Agency
1441 - Search - Five Key Takeaways From the Five Eyes Discussion
1442 - Search - Risk Aversion Strategy, Incentive Structure Need Fundamental Modifications
1443 - Search - Building an Intelligent Network Fabric for Command, Control and Defense
1444 - Search - Rethinking the Meeting Experience With Mission-Embedded, AI-Enabled Collaboration Infrastructure
1445 - Search - Advancing Geo Simulation Technology for Precision Missions
1446 - Search - Bridging the Divide: How Grandinetta Group Is Redefining Military Transition
1447 - Search - Data Centricity for Decision Advantage in Space: Unifying Operations in the Ultimate High Ground
1448 - Search - From Carrier Pigeons to Sensor Fusion - Speed Matters in Information
1449 - Search - Wireless Common Vulnerabilities and Exposures Continue To Escalate
1450 - Search - Software Overlay Provides Identity-Based Security Layer to OSI Model
1451 - Search - Communications: Enabling Next-Generation Command and Control
1452 - Search - Hunt the Cyber Threat— Before It Hunts You
1453 - Search - Bringing Overmatch to Battlefield Communications
1454 - Search - President’s Commentary: A Missile Defense Umbrella That Holds Against the Storm
1455 - Search - Disruptive By Design: Adaptive Leadership and Followership
1456 - Search - On Point: Q&A With Jordan Dunseth
1457 - Search - Cross-Cloud Collaboration Paves the Way for Data Transparency: OPM’s Groundbreaking Analytics Solution
##
Krebs on Security
View Articles
1458 - Search - ‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm
1459 - Search - bundle or come pre-installed with software
1460 - Search - Who Runs the Ransomware Group ‘The Gentlemen?’
1461 - Search - A Record-Breaking Patch Tuesday for June 2026
1462 - Search - Hackers Used Meta’s AI Support Bot to Seize Instagram Accounts
1463 - Search - Netherlands Seizes 800 Servers, Arrests 2 for Aiding Cyberattacks
1464 - Search - Lawmakers Demand Answers as CISA Tries to Contain Data Leak
1465 - Search - created a public GitHub profile
1466 - Search - Alleged Kimwolf Botmaster ‘Dort’ Arrested, Charged in U.S. and Canada
1467 - Search - seizing the technical infrastructure for Kimwolf
1468 - Search - identified Butler as the Kimwolf botmaster
1469 - Search - secure a widespread critical security weakness
1470 - Search - Patch Tuesday, May 2026 Edition
1471 - Search - Canvas Breach Disrupts Schools & Colleges Nationwide
##
Industrial Cyber
View Articles
1473 - Search - FCC to review telecom supply chain security reporting requirements amid rising cybersecurity, espionage threatsThe U.S. Federal Communications Commission (FCC) is seeking public comment on an information collection review tied to its supply chain security oversight, highlighting the growing regulatory focus on cybersecurity risks in telecom infrastructure. As part of the FCC’s review under…
1474 - Search - NCSC’s Horne warns UK infrastructure under sustained cyber pressure from Russia, China and Iran; urges resilienceThe head of the U.K.’s National Cyber Security Centre (NCSC) warned that hostile states are driving the majority of cyber activity targeting the country’s critical infrastructure, saying around 75% of attacks can be linked to state actors. Speaking at the…
1475 - Search - Manufacturing cyber threats shift toward identity-driven attacks as credential leaks and vishing surge, Doppel warnsNew data from Doppel identified that manufacturing remains one of the most heavily targeted sectors for cyberattacks, as threat actors increasingly exploit the industry’s dependence on operational uptime, complex supplier ecosystems, and trusted third-party relationships. The report found that attackers…
1476 - Search - NIST SP-1339 releases OT Backup Quick Start Guide to boost industrial cyber resilience, accelerate incident recoveryThe U.S. National Institute of Standards and Technology (NIST) released Special Publication 1339, an OT (Operational Technology) Backup Quick Start Guide aimed at helping industrial organizations strengthen cyber resilience and recovery readiness. The guidance emphasizes that OT backups are a…
1477 - Search - Accenture’s Dragos investment marks new phase for OT cybersecurity in critical infrastructureAccenture announced on Thursday that it is acquiring a majority stake in Dragos at a $3.25 billion valuation, along with full acquisitions of runZero and NetRise, bringing the combined enterprise value to $4.175 billion and creating the highest-valued OT (operational…
1478 - Search - CISC unveils Enhanced CIRMP Rules to address AI, legacy systems, supply chain, and insider risks across critical infrastructureAustralia’s Cyber and Infrastructure Security Centre (CISC) announced enhanced security requirements to strengthen protections for the nation’s critical infrastructure. These Security of Critical Infrastructure Legislation Amendment (Enhanced Critical Infrastructure Risk Management Program) Rules 2026 are designed to ensure that critical…
1479 - Search - Healthcare sector faces escalating ransomware, supply chain and APT risks as cyber threats intensify, CYFIRMA warnsCYFIRMA reported that healthcare organizations are facing an increasingly hostile cyber threat environment, with ransomware emerging as the sector’s most significant risk. Over the past 90 days, healthcare accounted for 216 verified ransomware victims, representing 9.05% of ransomware victims globally…
1480 - Search - Resecurity details Anubis ransomware attack on Adriatic Port Authority, exposing maritime infrastructure risksNew cyber threat intelligence from Resecurity provided further details on the Anubis ransomware group, which targeted the Adriatic Port Authority in a cyberattack that disrupted maritime logistics and exposed the growing risks facing critical transportation infrastructure. Hackers allegedly gained initial…
1481 - Search - White House rolls out NSPM-12 to boost cybersecurity governance, oversight, accountability for national security systemsThe White House issued National Security Presidential Memorandum 12 (NSPM-12), establishing a new cybersecurity governance framework for National Security Systems (NSS), including military, intelligence, and other federal systems that process classified information. The memorandum re-establishes the Committee on National Security…
1482 - Search - How AI is quietly rewiring Purdue Model, forcing industrial defenders to rethink trust across operational environmentsThe Purdue Model was built for a different world. Segmented zones, deterministic systems, and hard boundaries between IT…Jun 16, 202620 min read
1483 - Search - Why OT security remediation stalls after assessment and what manufacturers are doing to move programs forwardIn manufacturing environments, a technical assessment of OT (operational technology) environments is the point at which managers shift…Jun 09, 202615 min read
1484 - Search - Cyber adversaries shift from data theft to operational disruption as industrial crown jewels come under siegeProtecting industrial crown jewels from espionage begins with recognizing a hard truth that in modern OT (operational technology)…Jun 03, 202615 min read
1485 - Search - Zero trust in OT moves beyond identity as industrial operators prioritize visibility, segmentation, operational resilienceWith increasing levels of connectivity within industrial environments, traditional notion of trusted users, devices, and networks being fundamentally…May 24, 202622 min read
1486 - Search - State-backed ransomware activity raises new concerns over escalating threats to OT, critical infrastructure operationsRansomware groups are increasingly being used as proxy weapons in geopolitical cyber warfare, enabling nation-states to exert pressure…May 17, 202615 min read
1487 - Search - Manufacturing cybersecurity entering operational era defined by recovery readiness, resilience and production continuityThere is a shift underway in how manufacturing cybersecurity is being discussed across regions. The language has changed….May 10, 202620 min read
1488 - Search - Cyber-physical resilience reshaping industrial cybersecurity beyond perimeter defense to protect core processesCyber-physical resilience is forcing a shift away from perimeter-centric security toward protecting the integrity of industrial processes themselves….May 03, 202617 min read
1489 - Search - Supply chain risk takes center stage in cyber sovereignty as hidden dependencies, long-tail vendors come into focusCyber sovereignty is becoming clearer, and for critical infrastructure operators, that clarity could not have come soon enough,…Apr 26, 202616 min read
1490 - Search - Eight Years In, the Industry is Catching Up to the Threat: The 2026 Buyers’ GuideIndustrial cybersecurity did not change overnight. There was no single incident that forced a reset, no moment where…Apr 19, 20266 min read
1491 - Search - Industrial systems face structural gap as quantum risks drive urgency for crypto-agility and post-quantum readinessTransitioning to post-quantum cryptography (PQC) is one of the largest and most impactful changes industrial organizations can implement…Apr 12, 202617 min read
1492 - Search - Accenture expands OT cybersecurity capabilities with Dragos stake, acquires runZero and NetRise
1493 - Search - Dispel debuts Site Console to deliver on-prem zero trust remote access for NERC CIP-regulated OT environments
1494 - Search - iOT365 advances OT cybersecurity with multi-vector detection for emerging post-quantum threats
1495 - Search - Beyond Horizontal Standards: Why We Must Converge ISA 99 and ISA 84 to Protect Cyber-Physical Systems
1496 - Search - UK Cyber Growth Action Plan set to invest £16 million to boost the cyber sector, secure critical services
1497 - Search - The EU’s Cybersecurity Blueprint and the Future of Cyber Crisis Management
1498 - Search - US Coast Guard issues expanded cybersecurity guidance, making risk assessments central to maritime resilience
##
Varonis Blog
View Articles
1499 - Search - Reprompt: The Single-Click Microsoft Copilot Attack that Silently Steals Your Data
1500 - Search - From CPU Spikes to Defense: How Varonis Prevented a Ransomware Disaster
1501 - Search - How Attackers can Abuse Shadow Resources in Google Cloud Dataflow
1502 - Search - Threat ResearchSearchLeak: How We Turned M365 Copilot Into a One-Click Data Exfiltration WeaponDolev Taler5 min readVaronis Threat Labs discovered SearchLeak, a critical vulnerability chain in Microsoft 365 Copilot Enterprise that allows an attacker to steal sensitive data — MFA codes, email messages, meeting details, and private organizational files — with a single click.Dolev Taler5 min read
1503 - Search - AI SecurityZero Trust for AI Agents: How to Enforce Anthropic’s FrameworkNolan Necoechea4 min read
1504 - Search - Threat ResearchPhishing for Lobsters: How We Tricked OpenClaw into Spilling SecretsItay Yashar6 min read
1505 - Search - Why AI Agents Are Making Database Activity Monitoring Critical Again
1506 - Search - What is AI Security Posture Management (AI-SPM)?
1507 - Search - How Enverus Secures Salesforce Data and Prevents Data Breaches with Varonis
1508 - Search - Threat ResearchJun 19, 2026MyBait: Why We Lured Attackers To Encrypt Our Cloud MySQLVaronis Threat Labs deployed MySQL honeypots across GCP, AWS, and Azure. Only GCP was compromised. Here’s what it means for cloud database security.Gil Weizman4 min read
1509 - Search - AI SecurityVaronis ProductsMay 21, 2026Varonis Announces Integration with the Claude Compliance APIVaronis Atlas secures Claude Enterprise and Claude Platform by detecting misuse and threats in the context of sensitive data, permissions, and access risk.Nolan Necoechea2 min read
1510 - Search - AI SecurityMay 21, 2026How Webster Bank Strengthens Customer Trust and Accelerates Secure AI Adoption with VaronisDiscover how Webster Bank uses Varonis to ensure robust data security, securely adopt AI, and adhere to compliance in a complex landscape.Nolan Necoechea3 min read
1511 - Search - Cloud SecurityMay 20, 2026Varonis Joins AWS Security Hub Extended to Power Unified, Data-Centric SecurityThe integration helps security teams cut through alert noise, accelerate remediation, and protect sensitive data in AWS and across their entire data estate.Nolan Necoechea2 min read
1512 - Search - Threat ResearchMay 20, 2026GitHub Breach via Malicious VS Code Extension: What You Need to KnowGitHub’s breach, caused by a malicious VS Code extension, exposed 3,800 internal repositories. Learn how to secure your environment.Chen Levy Ben Aroy3 min read
1513 - Search - Threat ResearchMay 19, 2026GhostTree: Unveiling Path Manipulation Techniques to Bypass Windows SecurityVaronis Threat Labs discovered a new technique that abuses NTFS junctions to generate infinite file paths, causing EDR products to hang and leave files unscanned.Dolev Taler3 min read
##
Pentest Partners Blog
View Articles
1514 - Search - Shameless Self PromotionPTP Cyber Fest 2026. Built for people to get involved6 Min ReadJun 12, 2026
1515 - Search - Digital Forensics and Incident ResponseClickFix, CrashFix and the growing family of copy and paste attacks13 Min ReadJun 10, 2026
1516 - Search - Hardware HackingVulnerabilities and DisclosuresShelly Wall Display exposed RPC over Bluetooth4 Min ReadMay 26, 2026
1517 - Search - OT, ICS, IIoT, SCADAOT pen test findings that plant teams can actually use16 Min ReadMay 14, 2026
1518 - Search - Artificial IntelligenceDigital Forensics and Incident ResponseAI can help in DFIR, but it cannot replace investigator judgement10 Min ReadApr 21, 2026
1519 - Search - OT, ICS, IIoT, SCADAYou can pen test OT networks without breaking them11 Min ReadApr 09, 2026
1520 - Search - Cyber RegulationGRC Consultancy AdviceDigital Operational Resilience Act (DORA)9 Min ReadMar 31, 2026
1521 - Search - Cloud SecurityInsecure IAM is the root of many cloud security failures6 Min ReadMar 24, 2026
1522 - Search - Hardware HackingHow TosReverse EngineeringTaming the dragon: reverse engineering firmware with Ghidra14 Min ReadMar 12, 2026
1523 - Search - How TosVirtual EnvironmentsBreaking Out of Citrix and other Restricted Desktop Environments25 Min ReadMar 02, 2026
1524 - Search - Automotive SecurityOpinionsEV batteries as grid infrastructure and the security risk that follows6 Min ReadFeb 24, 2026
1525 - Search - Internet Of ThingsVulnerabilities and DisclosuresShelly IoT door controller config fail: leaving your garage, home and security exposed8 Min ReadFeb 11, 2026
1526 - Search - Social EngineeringCovert recording is easy, which is the problem5 Min ReadFeb 03, 2026
1527 - Search - OpinionsMovie breakdown: Hackers (1995)6 Min ReadJan 30, 2026
1528 - Search - Cyber RegulationPreparing for the EU Cyber Resilience Act (CRA)8 Min ReadJan 22, 2026
1529 - Search - PasswordsVulnerabilities and DisclosuresCarlsberg… probably not the best cybersecurity in the world7 Min ReadJan 16, 2026
1530 - Search - Cloud SecurityCompromising a multi-cloud environment from a single exposed secret6 Min ReadJan 13, 2026
1531 - Search - Artificial IntelligenceVulnerabilities and DisclosuresAI noise and the effect it’s having on vulnerability disclosure programs5 Min ReadJan 09, 2026
1532 - Search - Digital Forensics and Incident Response2025, the year of the Infostealer12 Min ReadJan 06, 2026
1533 - Search - Cloud SecurityBeyond cloud compliance dashboards, what’s next?6 Min ReadJan 05, 2026
1534 - Search - Artificial IntelligenceVulnerabilities and DisclosuresEurostar AI vulnerability: when a chatbot goes off the rails19 Min ReadDec 22, 2025
1535 - Search - Digital Forensics and Incident ResponseHow TosThe built-in Windows security features you should be using6 Min ReadDec 04, 2025
1536 - Search - AndroidAndroid Activities 1019 Min ReadNov 27, 2025
1537 - Search - Cloud SecurityHow TosCommon Kubernetes misconfigurations and how to avoid them6 Min ReadNov 18, 2025
1538 - Search - Internet Of ThingsExploiting AgTech connectivity to corner the grain market6 Min ReadNov 13, 2025
1539 - Search - Digital Forensics and Incident ResponseFinding your path into DFIR9 Min ReadNov 11, 2025
1540 - Search - Cyber RegulationWhat testers need to know about the changes to the CHECK scheme4 Min ReadNov 04, 2025
1541 - Search - Consumer AdviceHow TosSecurity awareness: four pillars for staying safe online12 Min ReadOct 30, 2025
1542 - Search - How TosHardening your home lab16 Min ReadOct 23, 2025
1543 - Search - Consumer AdviceHow TosStop payroll diversion scams before they start6 Min ReadOct 21, 2025
1544 - Search - Digital Forensics and Incident ResponseThe logs you’ll wish you had configured if (when) you are breached…7 Min ReadOct 17, 2025
1545 - Search - How TosCompiling static Nmap binary for jobs in restricted environments8 Min ReadOct 14, 2025
1546 - Search - Security BlogWhat Speed 2 gets right and wrong about ship hacking8 Min ReadOct 08, 2025
1547 - Search - Digital Forensics and Incident ResponseHoneypotsSpot trouble early with honeypots and Suricata12 Min ReadOct 02, 2025
1548 - Search - Digital Forensics and Incident ResponseDiscord as a C2 and the cached evidence left behind11 Min ReadSep 16, 2025
1549 - Search - Cyber RegulationSecurity BlogA buyer’s guide to CHECK in 20255 Min ReadSep 10, 2025
1550 - Search - Hardware HackingHow TosStart hacking Bluetooth Low Energy today! (part 3)11 Min ReadSep 04, 2025
1551 - Search - AndroidHow TosAndroid Broadcast Receivers 1016 Min ReadSep 02, 2025
1552 - Search - Hardware HackingHow TosStart hacking Bluetooth Low Energy today! (part 2)9 Min ReadAug 27, 2025
1553 - Search - Hardware HackingHow TosStart hacking Bluetooth Low Energy today! (part 1)15 Min ReadAug 21, 2025
1554 - Search - Cloud SecurityTerraform Cloud token abuse turns speculative plan into remote code execution12 Min ReadAug 15, 2025
1555 - Search - Digital Forensics and Incident ResponseThumbnail forensics. DFIR techniques for analysing Windows Thumbcache7 Min ReadAug 08, 2025
1556 - Search - Cloud SecurityHow TosHow to transfer files in AWS using SSM4 Min ReadAug 05, 2025
1557 - Search - Digital Forensics and Incident ResponseDFIR tools and techniques for tracing user footprints through Shellbags9 Min ReadJul 31, 2025
1558 - Search - Cyber Liability InsuranceRethinking cyber insurance questions to find real risk5 Min ReadJul 30, 2025
1559 - Search - Shameless Self PromotionOur capabilities. A story about what we can achieve15 Min ReadJul 28, 2025
1560 - Search - AndroidHow TosAndroid Services 1019 Min ReadJul 25, 2025
1561 - Search - Internet Of ThingsLeaked data. Continuous glucose monitoring5 Min ReadJul 22, 2025
1562 - Search - Artificial IntelligenceDigital Forensics and Incident ResponseUsing AI Chatbots to examine leaked data4 Min ReadJul 18, 2025
1563 - Search - Vulnerabilities and DisclosuresFramework 13. Press here to pwn5 Min ReadJul 16, 2025
1564 - Search - Digital Forensics and Incident ResponseSil3ncer Deployed – RCE, Porn Diversion, and Ransomware on an SFTP-only Server7 Min ReadJul 11, 2025
1565 - Search - How TosHow to conduct a Password Audit in Active Directory (AD)11 Min ReadJul 08, 2025
1566 - Search - Consumer AdvicePet microchip scams and data leaks in the UK6 Min ReadJul 04, 2025
1567 - Search - Automotive SecurityHow we turned a real car into a Mario Kart controller by intercepting CAN data9 Min ReadJun 26, 2025
1568 - Search - How TosCSP directives. Base-ic misconfigurations with big consequences9 Min ReadJun 23, 2025
1569 - Search - Cyber RegulationHow TosPrepare for the UK Cyber Security and Resilience Bill4 Min ReadJun 19, 2025
1570 - Search - AndroidArtificial IntelligenceAndroid AI UX is great until it leaks your data8 Min ReadJun 17, 2025
1571 - Search - Shameless Self PromotionPTP Cyber Fest 2025. More than just another conference4 Min ReadJun 13, 2025
1572 - Search - Vulnerabilities and DisclosuresFire detection system been pwned? You’re not going to sea10 Min ReadMay 30, 2025
1573 - Search - How TosHow to load unsigned or fake-signed apps on iOS10 Min ReadMay 28, 2025
1574 - Search - Digital Forensics and Incident ResponseShameless Self PromotionWar stories from the DFIR front line11 Min ReadMay 27, 2025
1575 - Search - OT, ICS, IIoT, SCADAFully segregated networks? Your dual-homed devices might disagree9 Min ReadMay 22, 2025
1576 - Search - Artificial IntelligenceRed TeamingBypass SharePoint Restricted View to exfiltrate data using Copilot AI and more…17 Min ReadMay 20, 2025
1577 - Search - How TosVNC. RDP for all to see5 Min ReadMay 16, 2025
1578 - Search - Cyber RegulationSustainabilityNew cybersecurity rules for smart heat pump manufacturers5 Min ReadMay 13, 2025
1579 - Search - Hardware HackingVulnerabilities and DisclosuresRCEs and more in the KUNBUS GmbH Revolution Pi PLC15 Min ReadMay 08, 2025
1580 - Search - Artificial IntelligenceRed TeamingExploiting Copilot AI for SharePoint10 Min ReadMay 07, 2025
1581 - Search - Digital Forensics and Incident ResponseThe remote desktop puzzle. DFIR techniques for dealing with RDP Bitmap Cache8 Min ReadMay 01, 2025
1582 - Search - PasswordsHiding behind a password5 Min ReadApr 29, 2025
1583 - Search - Consumer AdviceThe dangers of web based messaging apps6 Min ReadApr 25, 2025
1584 - Search - Digital Forensics and Incident ResponseUnallocated space analysis5 Min ReadApr 23, 2025
1585 - Search - Digital Forensics and Incident ResponseNot everything in a data leak is real3 Min ReadApr 15, 2025
1586 - Search - How TosDon’t use corporate email for your personal life5 Min ReadApr 09, 2025
1587 - Search - Cyber RegulationInternet Of ThingsPreparing for the EU Radio Equipment Directive security requirements3 Min ReadApr 03, 2025
1588 - Search - How TosBackdoor in the Backplane. Doing IPMI security better7 Min ReadMar 31, 2025
1589 - Search - Digital Forensics and Incident ResponseThe first 24 hours of a cyber incident. A practical playbook6 Min ReadMar 24, 2025
1590 - Search - OpinionsCybersecurity communities. Small hacker groups, big impact5 Min ReadMar 19, 2025
1591 - Search - How TosTake control of Cache-Control and local caching4 Min ReadMar 12, 2025
1592 - Search - GRC Consultancy AdviceHow I became a Cyber Essentials Plus assessor10 Min ReadMar 06, 2025
1593 - Search - How TosDNSSEC NSEC. The accidental treasure map to your subdomains9 Min ReadMar 04, 2025
1594 - Search - Hardware HackingA dive into the Rockchip Bootloader8 Min ReadFeb 26, 2025
1595 - Search - Aviation Cyber SecurityPen testing avionics under ED-203a3 Min ReadFeb 21, 2025
1596 - Search - How TosWatch where you point that cred! Part 18 Min ReadFeb 18, 2025
1597 - Search - Cyber RegulationMaritime Cyber SecurityNew mandatory USCG cyber regulations. What you need to know4 Min ReadFeb 14, 2025
1598 - Search - GRC Consultancy AdvicePCI DSS v4.0 Evidence and documentation requirements checklist6 Min ReadFeb 13, 2025
1599 - Search - GRC Consultancy AdvicePCI DSS. Where to start?4 Min ReadFeb 11, 2025
1600 - Search - OT, ICS, IIoT, SCADAICS testing best results. Hint: Blend your approach6 Min ReadFeb 07, 2025
1601 - Search - How TosA tale of enumeration, and why pen testing can’t be automated7 Min ReadFeb 05, 2025
1602 - Search - Digital Forensics and Incident ResponseHow Garmin watches reveal your personal data, and what you can do8 Min ReadJan 28, 2025
1603 - Search - Maritime Cyber SecurityCyber security guidance for small fleet operators10 Min ReadJan 24, 2025
1604 - Search - Hardware HackingHow to secure body-worn cameras and protect footage from cyber threats4 Min ReadJan 21, 2025
1605 - Search - Consumer AdviceSecurity flaws found in tiny phones promoted to children9 Min ReadJan 15, 2025
1606 - Search - Artificial IntelligenceDigital Forensics and Incident ResponseTackling AI threats. Advanced DFIR methods and tools for deepfake detection14 Min ReadJan 13, 2025
1607 - Search - Aviation Cyber SecurityThe unexpected effects of GPS spoofing on aviation safety8 Min ReadJan 09, 2025
1608 - Search - Digital Forensics and Incident Response10 Non-tech things you wish you had done after being breached5 Min ReadJan 07, 2025
1609 - Search - Aviation Cyber SecurityThe surprising existence of the erase button on cockpit voice recorders8 Min ReadJan 03, 2025
1610 - Search - Internet Of ThingsHeels on fire. Hacking smart ski socks3 Min ReadDec 23, 2024
1611 - Search - Digital Forensics and Incident ResponsePractice being punched in the face. The realities of incident response preparation4 Min ReadDec 20, 2024
1612 - Search - Hardware HackingHow easily access cards can be cloned and why your PACS might be vulnerable12 Min ReadDec 11, 2024
1613 - Search - Hardware HackingMaking sure your door access control system is secure: Top 5 things to check3 Min ReadDec 09, 2024
##
The Register
View Articles
1614 - Search - NetworksTelegram founder accuses Meta of sabotaging access in India with BGP hijacksAllegations of fake routes are fake news, says Indian telco Jio
1615 - Search - Everything’s bigger and better in Texas – even data breachesHunting and fishing license incident catches 3M residents
1616 - Search - Vercel debuts eve open source agent framework, tries to fix shadow AI with PassportCost premium of using AWS indirectly via Vercel is mitigated by more efficient use of compute resources, CTO claims
1617 - Search - Microsoft’s latest Windows bug belongs in the Recycle BinFile deletion dialog swaps recognizable names for internal gibberish
1618 - Search - SecurityBritain’s privacy watchdog quits after ‘poor judgment’ admissionJohn Edwards says his position had become ‘untenable’ following investigation into conduct including inappropriate attempts at humor
1619 - Search - Rights groups brand Home Office’s AI age guesser for asylum-seekers as biased and inaccurateCampaigners say tech is unable to reliably distinguish between kids and adults at the boundary where use is planned
1620 - Search - OFFBEATRockstar Games faces full hearing over alleged union bustingTribunal rejects bid to strike blacklisting claims, with proceedings due to conclude shortly before GTA VI launches
1621 - Search - Nutanix’s Tech Day London 2026 offers infrastructure insightsSPONSORED POST: Come join this working afternoon for infrastructure teams
1622 - Search - Use of HMRC’s taxing IR35 status tool drops 71% in two yearsData suggests firms are turning away from CEST as critics say it fails to reflect recent court rulings
1623 - Search - Users claimed they’d never seen a spell checker and panicked at the sight of red squigglesTechie couldn’t help but be a little blunt when the support call came in – but has no regrets!
1624 - Search - Midjourney pivots from AI image generation to body scanning medical spa where patients bathe in ‘golden light’The underlying technology is real…and borrowed from a partner the company failed to mention
1625 - Search - AI AND MLCommitted skeptic finds himself warming to new Amazon AI products that actually don’t suckEd’s note to Corey: Blink once if you’re safe, twice if you’re in danger
1626 - Search - VIRTUALIZATIONCitrix now lets you run virtual desktops like a cost-conscious private equityeerSoaring PC prices make alternatives to hardware refreshes interesting
1627 - Search - OS platformsCanonical reveals Myna, its local speech-to-text appBird-branded AI will ride on Stonking Stingray
1628 - Search - SCIENCENASA payload to ride commercial Mars orbiter from rocket biz yet to reach orbitAeolus mission promises better Martian weather models, assuming Relativity Space can get its Terran R off the ground
1629 - Search - SecurityGoogle told researcher ‘Nice catch!’ Then denied bug bounty for flaw it still hasn’t fixedEXCLUSIVE ‘Working as intended’ for the win … again
1630 - Search - Yes! It’s true! Windows 11 is an agentic platformIt always has been, but Microsoft didn’t realize itRupert Goodwins
1631 - Search - AWS reportedly to tuck Elon Musk’s Grok into Bedrock, despite zero enterprise demandThe energy drink of frontier modelsCorey Quinn
1632 - Search - EU’s digital sovereignty boo-boo may be the best thing to ever happen to the projectRupert Goodwins
1633 - Search - Utah tells porn sites to take the P out of VPNs, and it’s their fault that they can’tRupert Goodwins
1634 - Search - AWS to Quick admins: The access control didn’t work, but you weren’t using it anyway, so what’s the problem?Corey Quinn
1635 - Search - AI will soon be capable of telling convincing liesMark Pesce
1636 - Search - Taiwan’s train cyber-trauma reveals a global system that’s coming off the tracksRupert Goodwins
1637 - Search - Trump jumps from ‘anything goes’ to ‘strict regulation’ AI policySteven J. Vaughan-Nichols
1638 - Search - Microsoft’s bad obsession is showing up in shabby services and slipshod software. Here’s proofRupert Goodwins
1639 - Search - SCIENCENeuromorphic computing may one day offer AI a power-saving brainwaveHybrid systems could bring efficiency gains at the edge, but conventional infrastructure isn’t going anywhere fast
1640 - Search - OS PlatformsKDE Plasma 6.7 brings the X11 era to a closePlenty of new shiny in the service of improved usability
1641 - Search - AI AND MLAI nose uses ‘Smell Language Model’ to sniff out signs of diseaseSampling patients’ breath may save lives and emergency room resources
1642 - Search - OFFBEATMicrosoft once used its own brand of ‘Lego’ to optimize WindowsMaking software feel snappier when you only have 12 MB RAM
1643 - Search - PUBLIC SECTORIndia blocks Telegram ahead of scandal-hit medical school entrance exam2.3 million people sit test chasing 100,000 places, and country already canceled it once this year
1644 - Search - OS PLATFORMSFreeBSD 15.1 lands, but desktop dabblers still have to draw their own GUIBetter laptop sleep and Wi-Fi support make the beastie more portable-friendly, but getting beyond the shell remains a DIY job
1645 - Search - PUBLIC SECTORTransport for London keeps Capita behind wheel of road charging ops in £912M extensionReplacement deal now expected in mid-2029 as body says safe transition will take at least five years
1646 - Search - Oracle support timelines for Fusion Middleware tighter than expectedBig Red drops ominous mention of ‘Market Driven Support’ beyond 2027 - but there’s good news for AIX users
1647 - Search - Public sectorUK Cabinet Office hiring AI and innovation ‘influencer’ to build ‘AI-first culture’ in civil serviceEvery buzzword deployed in quest to transform into ‘country that is equipped for an AI world’
1648 - Search - RoachFest London 2026: The database as competitive assetSPONSORED POST: Operate without fear. Build with confidence. Adapt to the AI era
1649 - Search - SECURITYMajor US carrier stored credit card info in the clear, employee learned on first dayIt happened at a major US telco in the early 2000s
1650 - Search - cyber-crimeCyber offenses now account for around a third of all crime across Asia and South PacificLatest Interpol review shows how scams continue to dominate, and AI-enabled attackers prove too hot to handle for cash-strapped regions
1651 - Search - AI + MLEstonia intends to recognize AI agents with digital IDsI am not a number! I am a free agent (that just happens to have a number)
1652 - Search - devopsGit good with Epic Games’ new open source VCS, LoreGot big binaries? Tired of other version control systems that treat them like inferior files? Lore might be worth a look
1653 - Search - AI AND MLSmelly config files will make your agents waste tokens, researchers warnResearchers urge developers to see that less is more when it comes to instructions
1654 - Search - NetworkSNvidia-backed optics vendor to boost wafer output by 4x to meet AI interconnect demandJensen can’t risk semiconductor supply chains derailing the AI hype train
1655 - Search - CYBER-CRIMEMassive password-stealing attack hits 75k Fortinet firewallsWhy are you even reading this?! Rotate your passwords!!
1656 - Search - systemsUncle Sam bets $500M that Alphabet spinoff’s AI can dig up new semiconductor materialsAI drug discovery is so last year, even though it hasn’t accomplished much yet
1657 - Search - ON-PREMOnly half of US datacenter capacity planned for 2026 is actually under constructionAnother fun example of AI hype and reality colliding
1658 - Search - Personal TechSmartphone market to shrink 15 percent this year due to memory crisisBuyers put off by rising prices expected to turn to second-hand phones instead
1659 - Search - DEVOPSAWS hypes continuous agentic DevOps, puts Kiro in your pocketTrust is the biggest barrier to AI adoption, says AI chief, claiming that new features in Bedrock AgentCore will prevent bad outcomes
1660 - Search - PERSONAL TECHSurface tension rises as Microsoft’s latest kit starts at a pricey $1,499Snapdragon X2 silicon and recycled aluminum are nice, the sticker shock less so
1661 - Search - SecurityCisco adds another SD-WAN box to max-severity bug advisoryUpdated at the time? No sweat. Check those logs, though
1662 - Search - DevOpsHomebrew 6.0 released with new security mechanism, Linux sandbox and moreHomebrew was “less vulnerable 10 years ago than npm is today,” project lead tells us
1663 - Search - SoftwareApple’s WebKit performance tax leaves iOS browsers stuck in the slow lane, says MicrosoftRival rendering engines could make pages load almost 30% faster on iPhones, Redmond claims
1664 - Search - SYSTEMSIntel starts cooking up enhanced 18A-P silicon for would-be foundry customersChipzilla claims 9% speed bump without extra power draw but is compatible with designs for 18A
1665 - Search - OS PLaTFORMSWindows devs rerolled old code to save precious bytesThere really was a time when Microsoft cared about every KB
1666 - Search - Public sectorUK.gov links up with LinkedIn for jobs market intel from 40M accountsWhat anonymized data taught me about B2B sales… and reliance on the private sector for statistical info
1667 - Search - PERSONAL TECHBrit competition cops order Google to make search rankings less mysteriousNew rules cover organic rankings, AI Overviews, and user-approved search data sharing
1668 - Search - Cyber-crimeHelpdesk scammers are making house calls to make their lies feel more real15-year-old among six arrested after Dutch cops target suspected bank fraud call center
1669 - Search - PERSONAL TECHWindows update leaves third-party Office document launches in limboMicrosoft won the OLE vs OpenDoc wars. Now it’s saying OLE dependencies don’t matter
1670 - Search - Personal TechSystem76 boss reckons he can liberate the entire PC stack… just give him another 15 yearsBootstrapped Linux box-botherer flogs new Thelio kit, talks up COSMIC, and politely declines to bolt AI onto everything
1671 - Search - virtualizationTesco is sprinting to quit VMware and Broadcom despite rapid migration risksSupermarket giant has turned to third-party support as court sets date to hear licensing dispute
1672 - Search - AI and MLDevelopers build the best tools for developers – and are now defanging the AI menaceFear and even grief are natural reactions to machines that do your job. The next reactions – acceptance and innovation – are more useful
1673 - Search - CYBER-CRIMECyberattack sees crops kept in the groundBitter harvest for Australia’s Mackay Sugar, attacked in peak cane crushing season
1674 - Search - SYSTEMSAMD’s Mext buy shows how AI could solve the RAM shortage it createdRunning low on memory, can’t afford more? The House of Zen’s latest acquisition puts an AI spin on flash-based memory expansion
1675 - Search - ai + mlThe new Siri makes one of Apple’s most convenient OS features a cumbersome messGoodbye, useful Spotlight; hello force-fed Apple intelligence bloatware that feels distressingly like Google AI Overviews
1676 - Search - AI AND MLPython dev saved from disaster by intuition… and AII’m sorry, Dave. I can’t install that repo that will totally hose your system
1677 - Search - HPCIntel-born networking tech resurfaces as InfiniBand alternative for DoE supersOmni-Path lights up Lawrence Livermore system at 400 Gbps
1678 - Search - scienceAI and brain-computer interface allow speechless ALS patient to work a full-time jobThe hardware isn’t new, but a UC Davis research team’s machine learning-powered method of translating brain activity in an ALS patient into sentences with 92% accuracy is
1679 - Search - SecurityThree critical Fortinet sandbox bugs splattered by unknown attackersAll have patches, so make sure you upgrade to a fixed version
1680 - Search - Personal techCommodore gets into the phone biz with Sailfish-powered retro ‘Callback’Ships sans email, web, or socials, but with plenty of beige plastic
1681 - Search - SYSTEMSThere’s no such thing as an agentic CPUAI agents are a general-purpose workload no different from any other
1682 - Search - SoftwareFirefox 152 understands ‘Sssh!‘As Google continues crippling Chrome ad-blockers, it’s a good time to try Firefox
1683 - Search - SystemsEurope built sovereign clouds to escape US control. Then forgot about the processorsIntel ME and AMD PSP: The silicon layer nobody certifies
1684 - Search - SecurityNobody believes the ‘criminals and scumbags’ who hacked Canvas really deleted stolen student dataOther than Instructure execs - maybe?
1685 - Search - Europe wants out from under US tech – but first it has to find the exitsReport maps the weak points in cloud, identity, and public sector procurement
1686 - Search - France’s digital sovereignty push is struggling to escape the Microsoft gravity well
1687 - Search - Dutch chip startup claims all-European fab flow – with help from a very American friend
1688 - Search - Neo4j plots Palantir alternative with GraphAware acquisition
1689 - Search - LibreOffice brands Euro-Office a ‘de facto ally’ of Microsoft’s lock-in strategy
1690 - Search - Canada wants to make its own AI, break free from US bots
1691 - Search - KDE bags €1.3M as Europe realizes it might need an OS of its own
1692 - Search - Vietnam to develop domestic cloud so it can ditch risky overseas operators for government workloads
1693 - Search - SOFTWAREMicrosoft faces down sueball, capacity problems in series of challengesMisleading statements about Copilot and AI? Surely not!
1694 - Search - Cyber-crimeCrooks found a new way to collaborate using Teams – by hiding command-and-control trafficCustom malware routed communications through legitimate Microsoft services, making malicious activity look like routine corporate collaboration
1695 - Search - OS PLATFORMSLinux kernel 7.1 sends Intel 486 support to silicon heavenMore than 140,000 lines of code bite the dust as ancient CPUs, bus mice, and other legacy leftovers face the chop
1696 - Search - SYSTEMSNon-x86 servers now nearly half the market, IDC saysDemand for AI systems plus the shortage of DRAM and NAND are shaping the global market
1697 - Search - PUBLIC SECTORNHS Palantir claims face scrutiny after data suggests uneven resultsCampaign group says FOI figures show some trusts carried out fewer procedures than before
1698 - Search - SCIENCENASA said nyet to Roscosmos plan to cut into leaky ISS segmentCrew sheltered in SpaceX Dragon as aging Zvezda segment’s cracks continue to test orbital nerve
1699 - Search - CYBER-CRIMECardiac monitor maker’s security skips a beat as data thieves go for the jugularAttackers used social engineering to access third-party business apps and steal patient information
1700 - Search - SystemsQualcomm said to be circling AI chip biz Tenstorrent in $10B RISC-V power playPotential takeover would represent significant commitment to the open instruction set architecture
1701 - Search - cyber-crimeScammers keep scoring: Brits fleeced for £1.3B as Americans lose $3.5B to impersonatorsMore reasons to love social media and AI
1702 - Search - PUBLIC SECTORCapita is about to sail past deadline to fix civil service pensions schemeUnion says outsourcer will miss June 30 target after portal meltdown and mounting complaints
1703 - Search - DATABASESSQL Server may be too lucrative for Microsoft to ditch, but too legacy to loveAnalysts say Redmond still has billions of reasons to keep backing its flagship DBMS, even as Azure, Postgres, and AI hog the spotlight
1704 - Search - AI AND MLERP users may soon get ahead by going headless, says Rimini Street bossLook to AI agents and open source to escape the vendor-driven upgrade cycle
1705 - Search - SK Hynix to boost memory production 3x … you can wait another 8 years, right?We’re moving as fast as we can, says SK Group chair
1706 - Search - Delos Data offers AI chip startups a fast track to rack scaleHalf the trouble of building an Nvidia NVL or AMD Helios competitor is just getting the networking out of the box
1707 - Search - AI + MLA modest proposal: Reformat everything to make documents more palatable to AIWhat’s up, DocLang?
1708 - Search - PATCHESCisco SD-WAN make-me-root bug under attackSecond Catalyst SD-WAN Manager flaw exploited as an 0-day this month
1709 - Search - securityFeds freaked over Fable 5 after simple ‘fix this code’ prompt, not jailbreak, says researcherAccording to the one person who actually read the research paper
1710 - Search - offbeatDARPA seeks swappable satellites to help with future star warsWorried that an unexpected strike could take out critical orbital systems, Pentagon researchers want to know how fast the industry thinks it could launch replacements
1711 - Search - AI AND MLAnthropic reserves right to check ID for Claude subsHow can I help you today? Present your papers to begin
1712 - Search - VirtualizationHPE offers VMware refugees a year off the meterFree VM Essentials license and cut-price Zerto dangled at customers eyeing a platform escape
1713 - Search - CYBER-CRIMECouncil of Europe hacked in ShinyHunters’ PeopleSoft heistJoins the ranks of Nottingham Uni and 100 other unnamed victims
1714 - Search - DevOpsJava’s Project Valhalla finally lands a preview in JDK 28Don’t hold your breath, though – architect Brian Goetz warns devs it will likely still be preview in next LTS release
1715 - Search - PUBLIC SECTORFeds snooze as US datacenter law set to lapse with no replacement in siteFederal Data Center Enhancement Act (FDCEA) of 2023 covers standards including security and sustainability
1716 - Search - offbeatThe Y2K bug is back! Dutch dev digs up untimely flaw in old BSD build26 years late and no threat unless you still run a PDP-11/70 and rely on short-wave timekeeping broadcasts
1717 - Search - SCIENCENASA management wants a word and won’t say whyA mystery calendar event is certainly one way to find out about being selected for the Artemis III crew
1718 - Search - SOFTWARERed Hat gives Ubuntu a bootc up the backside at Canonical shindigBootable containers pitch shows how distro can be managed with familiar OCI tooling
1719 - Search - SecurityMicrosoft site throwing warnings after someone forgot to renew certConnectivity checker trips browser alarms thanks to lapsed security paperwork
1720 - Search - AI and MLSalesforce reels in customer support AI specialist Fin for $3.6BSupport bot maker claims its AI agents can resolve three-quarters of customer queries without human help
1721 - Search - RESEARCHPRC-linked spies hid inside medical and military networks for more than a year, snooping through Gmail and stealing dataGoogle says the intruders were on the hunt for everything from drone tech to pathogens
1722 - Search - SecurityArch Linux locks down AUR signups amid wave of malicious commitsCommunity repo freezes new accounts after attackers swamp it with poisoned package updates
1723 - Search - AI AND MLUS clampdown on Anthropic models sends EU sovereignty surge into overdriveBrussels says access curbs prove Europe needs greater technological independence
1724 - Search - SOFTWAREFlatpak-NG sounds like bad news for systemd refuseniksLinux app packaging rethink could leave alternative-init distros in the cold
1725 - Search - AI and MLUK AI hiring surges as firms seek people to babysit the botsPwC says AI hiring jumped 61 percent despite wider slowdown in vacancies, with employers increasingly looking for workers who can use AI rather than build it
1726 - Search - PUBLIC SECTORUK Treasury hunts CTO on salary that may not compute for top tech talent
1727 - Search - Public SectorPalantir’s NHS data deal called in for a second opinionExperts welcome contract review after claims NHS England missed chance to grow UK health tech market
1728 - Search - Personal TechBritain plots digital bedtime after kicking under-16s off social mediaUK plans to go further than Australia, while also targeting stranger contact, livestreaming, and addictive platform features
1729 - Search - Ai and mlGoogle found liable for bad AI Overview results. Let’s play Truth Or ConsequencesHush. children, what’s that sound? Has the flood gates’ key been found?
1730 - Search - OS PlatformsHistory of CentOS: How a biochemist’s Linux hobby project became the enterprise world’s default operating systemWhen a community came together after Red Hat said Windows was ‘probably the right product’
1731 - Search - Netflix wiz creates app to slash AI bills, then open sources itProject Headroom could save you big money, too
1732 - Search - OpenBSD 7.9 arrives, a diamond in the rough proud of every sharp edgeSixtieth release adds more cores, delayed hibernation, and basic Wi-Fi 6 without losing its ascetic streak
1733 - Search - Fedora: Microsoft is all aboard, but Deepin is dumpedRed Hat’s free distro loses a desktop, but makes an important new friend
1734 - Search - OFFBEATMunch Museum Windows display gives visitors something to scream aboutWhen art reflects modern realities
1735 - Search - offbeatChinese e-tailer claimed 14-inch box stretched the size of a 9-inch tabletThis is why you don’t let junior staff ‘save the company a few dollars’
1736 - Search - Off-PREMFire burns Google Cloud India’s network, which remains slow a week laterPLUS: Japan’s space truck is back in business; Zoho’s DIY servers; Record tech exports for Korea, and more!
1737 - Search - OFFBEATUS Army picks out Vampire to fill a gap in its layered drone defensesL3Harris supplies system that can down incoming drones with laser-guided rockets
1738 - Search - AI AND MLAI is code – and can’t be prompted into being smarterFrom Java tests to Shai-Hulud, bots keep proving they’ll swallow anything you feed them
1739 - Search - OFF-PREMEU sovereignty push gives tech buyers a new alphabet soup to swallowBrussels presses on despite US fury as it looks to enforce cloud autonomy and bolster open source
1740 - Search - personal techScientists pour cold water on claims phones are rewiring kids’ brainsMPs told that while concerns over handsets and social media grows, evidence they’re changing children’s brains is limited
1741 - Search - OFFBEATWorld Cup AI predictor now lets users ask daft what-ifsSpoiler: It doesn’t end well for Team Register
1742 - Search - NetworksAWS rolls the dice for faster, more efficient networkingHoney, I flattened the datacenter network
1743 - Search - DatabasesNHS patients can’t opt out of Palantir’s data platform – but their hospital canMinister says trusts can go it alone on procurement as Parliament mulls February 2027 FDP contract renewal
1744 - Search - offbeatXP-era Windows spotted haunting London’s driverless railwayA blast from the past greets commuters
1745 - Search - ai and mlNanoClaw now armed with JFrog for safer packagesAI agents can’t be trusted, so don’t give them dangerous powers
1746 - Search - ZTE and China Telecom Guangdong advance cross‑vendor IP network simulation pilots, paving the way for intelligent network operations
1747 - Search - The AI tipping point: where enterprise AI runs at scale
1748 - Search - Digital sovereignty needs an operating model
1749 - Search - ZTE Day 2026 in Almaty Showcases Innovations Shaping Kazakhstan’s Intelligent Telecom Future
1750 - Search - Europe’s AI paralysis has a solution - and it starts with a semantic twin
1751 - Search - ZTE wins three Selular Award 2026 honors for AI-powered network innovation
1752 - Search - Cost per sample? Try cost per attempt
1753 - Search - ZTE Demonstrates Integrated AI, Connectivity and Digital Utility Technologies at TNB Energy Transition Conference
1754 - Search - ZTE showcases AI-driven project management innovations at the 14th IPMA Research Conference 2026
1755 - Search - SoftwareHoly git! Microsoft code-sharing site suffers downtime, despite move to AzureGitHub caught off guard by customers actually using the AI being evangelized
1756 - Search - SOFTWAREMX Linux 25.2 provides possible refuge from AI as well as systemdPlus, Raspberry Pi edition finally catches up
1757 - Search - SecurityFired IT worker jailed for 21 months after sabotaging old school districtIowan’s scheme undone after misplacing trust in former coworker
1758 - Search - AI and MLKPMG’s AI report becomes an accidental demo of AI hallucinationsGPTZero claims only 5 of the report’s 45 citations matched their sources, raising questions about how the Big Four’s AI study was assembled
1759 - Search - SecurityNovo Nordisk reports cyberattack as UK gives Wegovy pill the nodClinical trial participant data stolen, but pharma giant says exposed records were pseudonymized
1760 - Search - ON-PREMAmazon owns up to using 2.5bn gallons of H2O in its bit barns last yearThe West’s biggest online shopping mall comes clean about its datacenter water usage
1761 - Search - OffbeatTech support chap hauled out to help SWAT team saw his life flash before his eyes
1762 - Search - NetworksRussian oligarch’s financial network crashed thanks to a crank and a cleaner
1763 - Search - SoftwareMarketing demanded IT add website feature that was already working
1764 - Search - SystemsOn-call techie decided job was done and hit the bottle – just before his pager went offLazy weekend of Grand Prix fun turned into a terrifying all-nighter
1765 - Search - On-PremCustom PC worked in the lab, failed on site – and so did the angry client
1766 - Search - ApplicationsUser found the perfect formula to make Excel misbehave
1767 - Search - NetworksTo fix this Wi-Fi network, we’ll need a crane
1768 - Search - NetworksSupport tech caught by ‘Technician Aura’: the bug that only hides when you’re watching
1769 - Search - AI and MLUncle Sam considers buying a seat on the TitanicL’etat, c’est AI
1770 - Search - Department of Work and Pensions’ answer to AI job fears is a bot to polish your CVWhitehall says Work Assistant will help jobseekers apply around the clock – provided employers don’t mind machine-written applications
1771 - Search - ‘It would be good for the world’ to slow down AI sprints, Anthropic saysThe plea for caution comes the same week it beat AI archrival OpenAI to filing for an IPO
1772 - Search - Google explains how it will infuse ads into AI answersJust like in The Truman Show
1773 - Search - Google touts its tokenmaxxing and capex spending amid AI orgyChocolate Factory readies always-on agents for searchers
1774 - Search - UK banks offered access to OpenAI’s GPT-5.5 amid exclusion from Anthropic’s Glasswing expansion150 new organizations inducted to cyber’s Soho House, including the first outside the US
1775 - Search - Cisco sings Mythos’ praises - but doesn’t say how many bugs the model uncoveredMeanwhile, Anthropic adds 150 partners to Project Glasswing
1776 - Search - SECURITYMicrosoft has mostly repaired flaw in Surface hardware that allowed unprotected devices to be bricked by a single packetAnd it was Microsoft Copilot that unwittingly revealed the longstanding vulnerability
1777 - Search - SecurityGoogle fires sueball at alleged Chinese phishers over AI-powered fraud opsTelegram-based ‘Outsider Enterprise’ accused of sending millions of scam texts and impersonating trusted brands
1778 - Search - OFFBEATElon Musk is now worth more than $1,000,000,000,000Retail investors lined up to get a handful of Musk’s magic beans in SpaceX’s debut
1779 - Search - AI and mlMet Police boss threatens to cut 700 frontline jobs after Palantir deal blockedCommissioner Mark Rowley says automation savings are now ‘at risk’
1780 - Search - SecurityPlymouth council exposes hundreds in latest local government email gaffeAuthority admits mass message to home-schooling families revealed recipients’ addresses, prompting ICO report and apology
1781 - Search - Public SectorUK digital ID gets brain trust to ‘challenge’ ministers on policyCEO of Mumsnet among the six-member team
1782 - Search - BOFHBOFH: For one ambitious security type, chaos is a ladderMission Control sends its regards
1783 - Search - offbeatWindows bowls a BSOD at sports fansIt’s just not cricket
1784 - Search - Personal TechThis is your BIOS speaking. Please fix me. Your PC is brokenCasual IT team learns that building bespoke PCs can be a false economy
1785 - Search - ai and mlClaude is ready for its corporate close-upIDC says recent moves show Anthropic racing to meet enterprise requirements
1786 - Search - ai and mlEveryone hates frontier AI labs, says Palantir boss’Enterprises are fed up,’ says Alex Karp, because LLM makers ‘want to tokenmax’ instead of understanding enterprise needs
1787 - Search - SECURITYSignal says UK plan to scan devices for nude images ’endangers us all’Encrypted messaging app warns device-level checks could be repurposed for censorship
1788 - Search - SECURITYChrome’s zero-day Whac-A-Mole continues with fifth exploited bug of the yearGoogle paid researcher a tidy $55K bounty for its discovery
1789 - Search - SecurityFrance probes compromise of gov messaging platform after account hijackAuthorities say the breach only exposed public chat rooms, but alleged attacker claims to have accessed far more data
1790 - Search - Cyber-crimeQilin NHS breach tally grows as Essex trust confirms stolen recordsTwo years on from ransomware attack, hospitals are still trying to identify and warn patients
1791 - Search - Norks blast 250+ fake job offers to developers over 6 weeks to try and snarf creds and cryptoWhen an unsolicited job offer sounds too good to be true …
1792 - Search - cyber-crimeRansomware crims got a month-long head start on Check Point VPN 0-day that now has a fixScumbags, including a Qilin ransomware affiliate, began hitting this hole May 7
1793 - Search - Cyber-crimeRansomware sends Illinois high school on an early summer vacationMeanwhile, 13 schools in Wales affected by separate attack
1794 - Search - securityGitHub nukes 70+ Microsoft repos, breaks CI/CD pipelines, following suspected worm infectionsMiasma worm shapeshifts, but cloud secret-scouting remains the goal
1795 - Search - Researchers drop checkm8-style BootROM exploit for A12 and A13 iPhones
1796 - Search - AI AND MLAnthropic recruits army to sell Claude to nonprofitsJoin Claude Corps, see the world, spread the gospel of AI
1797 - Search - SecurityShinyHunters hacked 100+ orgs by exploiting an Oracle PeopleSoft 0-dayUniversity of Nottingham is first of many, Shiny tells The Reg
1798 - Search - ai and mlGoogle’s new open-weights model brings image-generation tricks to AI text generationLanguage model builds on diffusion tech to boost output performance by up to 4x, claims Chocolate Factory
1799 - Search - SecurityMicrosoft’s worst ‘Nightmare’ unleashes BitLocker bypass 0-dayAnother day, another Windows exploit code
1800 - Search - offbeatHand-cranked AI box lets you get a workout while you wait for answersWe’re all familiar with AI cranks by now, but what about crank-powered AIs?
1801 - Search - PAAS AND IAASGraviton 5 impresses, but please, for the love of all that’s holy, stop calling them ‘AI chips’AWS better at running chip fabs than their mouths
1802 - Search - PERSONAL TECHTrump phone has HTC guts. Tremendous guts. The best gutsiFixit teardown reveals two-year-old, mid-range, Chinese Android
1803 - Search - securityVRChat says somebody faked a breach notice with the Maine AG’s office’We have no reason to believe that our data or systems have been compromised. We are in the process of contacting the Maine Attorney General’s office to have this removed.’
1804 - Search - DEVOPSApple gives Mac devs a WSL-ish thing to call their ownBlending containers and VMs but some features half-baked
1805 - Search - ScienceRace against re-entry: Swift’s would-be saviour straps itself to a rocketKatalyst’s LINK spacecraft is go for integration, with a launch from Kwajalein expected within weeks
1806 - Search - ApplicationsApple version of Office 2019 becomes useless in a monthThe only solution is to buy an upgrade (or switch providers)
1807 - Search - off premGoogle, Canonical team up to certify Ubuntu images for TPU VMsChocolate Factory shifts Tensor Processing Unit Ubuntu support back upstream
1808 - Search - Arm moves into the heart of the cloud stackSPONSORED POST: Hyperscaler adoption and AI workloads are accelerating multi-architecture infrastructure
1809 - Search - off-PremSnowflake to burn $6B on AWS Graviton CPUs and AI acceleratorsDataware house gambles cloud conveniences, AI accelerated insights will justify the cost.
1810 - Search - Off-premBig Tech extracts retirement-scale wealth from UK internet users, research showsBritain’s ‘free’ internet economy is powered by invisible data extraction that feeds advertisers, AI firms, and digital platforms
1811 - Search - Off-PremOpen Compute urges local government to bask in the warm glow of excess datacenter heatOrg that represents Meta, Google and Microsoft plans more heat reuse guidelines as debate over bit barn social license burns red hot
1812 - Search - Off-PremGoogle Cloud suspended major customer Railway.com without cause, causing outageThis is the service we get when we spend $10m plus? asks automated code deployment outfit
1813 - Search - Off-PremBroadcom finds a VMware customer willing to stick around: London Stock ExchangeLSEG signs up for five more years of Cloud Foundation, but keeps quiet on how much it’ll cost
1814 - Search - Off-PremBaidu says the quiet part out loud – you can’t build AI infrastructure, so clouds can cash inCFO says GPU rentals are ‘structurally higher margin than CPU cloud’
1815 - Search - AI and MLOpenAI could go from AI pioneer to AI’s BlackBerry, says ForresterAs OpenAI courts investors and chases enterprise customers, Forrester says today’s AI leader could become tomorrow’s cautionary tale
1816 - Search - PAAS AND IAASOracle’s AI datacenter splurge gives investors the capex jittersQ4 sales climbed 21%, but Wall Street more interested in $70B buildout bill
1817 - Search - Personal techMet Police joins forces with Apple to choke London’s stolen phone tradeIntelligence-sharing pact tracks kit that comes back online after being nicked
1818 - Search - Cyber-crimeMalware scare keeps schoolkids home for a second dayGreat Marlow restricts network access while it investigates suspected infection
1819 - Search - PUBLIC SECTORNS&I dangles £220K salary for CEO willing to straighten out £3B IT messComes with a corner office, government scrutiny, and the ‘full-spectrum disaster’ known as Project Rainbow
1820 - Search - Cyber-crimeNottingham Uni says student records raided after ShinyHunters claims cyberattackCrooks claim 40 GB haul as breach database pegs number of exposed email addresses at 455K
1821 - Search - SAASUK Treasury still deciding whether to show up to £1.7B ERP program it agreed to fundMove from Oracle put back until December following delays to Workday rollout
1822 - Search - SECURITYEvery employee’s password was stored in a single Excel fileThe CEO thought this was the best way to deal with some email issues
1823 - Search - SecurityChinese agents caught rebuilding botnets and stirring the pot on AI datacenter debatePRC eyes are watching you
1824 - Search - AI + MLMemory and personalization make AI more likely to tell you what you want to hearA little knowledge is a dangerous thing, particularly for enterprise applications
1825 - Search - offbeatBlockbuster new Raspberry Pi project turns any screen into old-school VCRWho needs fancy menus and high definition? 240-MP will play your media files like it’s 1999
1826 - Search - AI AND MLIt blocked us at ‘hello!’ Anthropic Fable 5 refusing innocuous promptsHyper-vigilant safety classifiers turn Fable into cautionary tale
1827 - Search - Consultant mistakenly deleted a ton of data – but reported it as a bug
1828 - Search - Techie expensed a bag of oranges and then juiced up a stupid security incident
1829 - Search - Under-trained techie didn’t claim overtime for mistakenly failing to phone it in
1830 - Search - Backup script ingested an accidental asterisk and deleted everything
1831 - Search - Lab worker built a fake PC to nuke his lunch
1832 - Search - Hope your holiday was horrid: You botched the last thing you did before leaving
1833 - Search - PowerPoint punishment sent users into an infinite loop after lunch
1834 - Search - ‘Invisible mouse’ made a mess of PC rebuild
1835 - Search - IT manager approved downtime over lunch, but made a meal of it
1836 - Search - The developer who came in from the cold and melted a mainframe
1837 - Search - Security contractor blew the whistle on support crew’s viral indifference
1838 - Search - Junior disobeyed orders and tried untested feature during a live robot demo
1839 - Search - Brilliant backups that kept data alive for ages landed web developer in big trouble
1840 - Search - Bug that wiped customer data saved the day – and a contract
1841 - Search - Server crashes traced to one very literal knee-jerk reaction
1842 - Search - Work experience kids messed with manager’s PC to send him to Ctrl-Alt-Del hell
1843 - Search - Final step to put new website into production deleted it instead
1844 - Search - Tech support chap invented fake fix for non-problem and watched it spread across the office
1845 - Search - Techie’s one ring brought darkness by shorting a server
1846 - Search - Marketing ‘genius’ destroyed a printer by trying to fix a paper jam
1847 - Search - ATM maintenance tech broke the bank by forgetting to return a key
1848 - Search - Techie banned from client site for outage he didn’t cause
1849 - Search - Techie turned the tables on office bullies with remote access rumble
1850 - Search - New boss was bad, his attitude was ugly, so the tech team pranked him good
1851 - Search - Techie ‘forgot’ to tell boss their cost-saving idea meant a day of gaming
1852 - Search - Untrained techie broke the rules, made a mistake, and found a better way to work
1853 - Search - Web dev’s crawler took down major online bookstore by buying too many books
1854 - Search - Dev’s last-day-of-contract code helped to crash app used by 350,000 people
1855 - Search - Developer made one wrong click and sent his AWS bill into the stratosphere
1856 - Search - Techie ran up $40,000 bill trying to download a driver
1857 - Search - ‘ERP down for emergency maintenance’ was code for ‘You deleted what?’
1858 - Search - Frustrated consultant ‘went full Hulk’ and started smashing hardware
1859 - Search - Company that made power systems for servers didn’t know why its own machines ran out of juice
1860 - Search - Techies tossed appliance that had no power cord, but turned out to power their company
1861 - Search - Techie found an error message so rude the CEO of IBM apologized for it
1862 - Search - Intern had no idea what not to do, so nearly mangled a mainframe
1863 - Search - Bored developers accidentally turned their watercooler into a bootleg brewery
1864 - Search - After deleting a web server, I started checking what I typed before hitting ‘Enter’
1865 - Search - Playing ball games in the datacenter was obviously stupid, but we had to win the league
1866 - Search - I was a part-time DBA. After this failover foul-up, they hired a full-time DBA
1867 - Search - CIO made a dangerous mistake and ordered his security team to implement it
1868 - Search - Teen interns brute-forced a disk install, with predictable results
1869 - Search - Pay attention, class: Today you’ll learn the wrong way to turn things off
1870 - Search - Tech bro denied dev’s hard-earned bonus for bug that overcharged a little old lady
1871 - Search - Intern did exactly what he was told and turned off the wrong server
1872 - Search - Under-qualified sysadmin crashed Amazon.com for 3 hours with a typo
1873 - Search - Junior developer’s code worked in tests, destroyed data in production
1874 - Search - Yes, I wrote a very expensive bug. In my defense I was only seven years old at the time
1875 - Search - Junior sysadmin’s first lines of code set off alarms. His next lot crashed the company
1876 - Search - NETWORKSAmazon Leo’s satellite homework is late, but FCC won’t flunk it just yetOrbital broadband biz will miss its July 30 deadline to have 1,616 spacecraft in place
1877 - Search - networksBrit regulator finds mobile network service on trains is far from first class
1878 - Search - networksBend the beam like Beckham to defeat anti-jamming tech
1879 - Search - networksDon’t repeat 5G mistakes with 6G, plead mobile operators
1880 - Search - NetworksThe tech that could make Marvell the next trillion dollar company
1881 - Search - Geopolitical jitters push Europe’s internet registry away from cloud-first strategy
1882 - Search - Marvell enters the AI network fray with 102.4 Tbps switch silicon
1883 - Search - SecurityAngry bug hunter with Microsoft beef drops new Windows 0-dayRevenge is a dish best served code
1884 - Search - on-premGM gets datacenter fever, decides to build grid-scale sodium-ion batteriesDetroit automaker partners with Peak Energy to try a saltier route to energy storage
1885 - Search - on-premDatacenter growth may run into a power wall by 2030Grid operators could struggle to support new bit barn construction
1886 - Search - OS PLATFORMSmacOS 27 beta boots Asahi Linux off Apple SiliconPartition’s still there, but good luck seeing it and don’t upgrade until fix lands, says team
1887 - Search - LEGALVercel escapes contempt rap after admitting it botched FBI warrant responseFiles sought by feds were sitting in a deletion queue, not gone for good
1888 - Search - OS PLATFORMSLinux Lite 8.0 sheds Chrome, slims down, and finds its name fits better than everFirefox is in, Snap and Flatpak are still out, but a default AI helper may raise eyebrows
1889 - Search - AI AND MLBrit workers waste nearly six hours a week ‘botsitting’Productivity gains lost as staff spoon-feed AI and correct its cock-ups
1890 - Search - DevOpsGitHub pulls pin on npm’s auto-run scriptsShai-Hulud worm exploited exactly this. Better late than never, says everyone except the malware authors
1891 - Search - SCIENCENASA names crew for Artemis III lunar lander rehearsal
1892 - Search - PatchesIvanti tells Sentry customers to patch now as critical bugs hit 10.0 and 9.9Remote, unauthenticated RCE with root privileges is about as bad as it gets
1893 - Search - ON-PREMBrussels’ datacenter efficiency scorecard may come with a credit warningMoody’s says proposed A-to-G green grades for bit barns could affect financing
1894 - Search - ChannelNode4 CEO Neil Muller found dead at home after suspected stabbingMSP says it is ‘absolutely devastated’ as woman arrested on suspicion of murder
1895 - Search - systemsSpacemiT shows off usably quick RISC-V mini desktopActual RVA23 hardware and useful performance – for a certain price
1896 - Search - bootnotesFrance and Germany agree to disagree, ditch joint next-gen Euro fighterAircraft at core of the Future Combat Air System canned as parties could not decide who leads on the work
1897 - Search - PERSONAL TECHLogitech knows when to fold ’emMeet Mobi Fold - creased popster or clever portable mouse
1898 - Search - PATCHESAI is making Patch Tuesday (kinda) fun againUnless you’re an admin or vulnerability manager – then you’re totally screwed
1899 - Search - SaaSSalesforce cuts staff amid acquisition spree and $50 billion share buybackThe layoffs come after CEO Marc Benioff boasted of record revenue and ‘incredible cashflow’ two weeks ago
1900 - Search - personal techIf your sex life is dead, you can blame Steve JobsEconomists find signs of a ‘large and causal relationship between iPhones and fertility’ in AT&T exclusivity-era data
1901 - Search - Next stop, C:\ … Paris Metro screen goes off the tracksProchain arrêt: Gare du Bork! French capital city train does the tech can-can
1902 - Search - NASA’s Secret: Moon astronauts will be rocking Prada underwearWhat, you think any old liquid-cooled bodysuit would be acceptable to pair with such a fashionable outer layer?
1903 - Search - Brit maritime agency heralds fresh global rules for crewless cargo shipsIf you thought driverless cars were bad, imagine a 200,000 ton container ship
1904 - Search - Rocket exhibit at National Space Centre pulls off unintentional NASA SLS impression5, 4, 3, 2, 1… pfft
1905 - Search - FCC warns US broadcasters their licenses are a privilege, not a rightTV and radio stations told to review current practices to align with public interest obligations
1906 - Search - FAA grounds SpaceX’s Starship after another launch mishapIPO? More like IP-uh-oh
1907 - Search - Microsoft Excel champ proves he still has the formulaDiarmuid Early dominates Amsterdam qualifier as competitive spreadsheeting sets sights on Vegas finals
1908 - Search - InPost locker caught shipping unactivated WindowsContactless collection meets Microsoft’s licensing reminder
1909 - Search - Gothenburg’s self-driving bus trammed on day oneAutonomous shuttle’s second passenger trip ends with rear-end collision and a tow truck
1910 - Search - Digital sovereignty, the musical: One engineer’s bizarre crusade against hyperscalersA French engineer has declared war on AWS, Google and Microsoft using AI-generated sea shanties, satirical poetry, and a multilingual protest campaign
1911 - Search - No captain, my captain: Navantia floats crewless warshipSpanish shipbuilder’s 75-meter drone vessel comes with sensors, modular payloads, and no room for sailors
1912 - Search - Deus ex machina: Half of US Christians trust AI’s spiritual adviceAI sycophancy + spirituality = uh oh
1913 - Search - UK Typhoon jets fitted with bargain-bin drone busters for Middle East sortiesLow-cost laser-guided rockets offer cheaper way to swat Shahed-style threats than firing pricey air-to-air missiles
1914 - Search - Yes, you can serve a website from a $1 microcontrollerWell, page is more accurate, but the source code is available if you want to try doing something even crazier
1915 - Search - UK reloads artillery plans with £1B remote-control howitzer order72 Boxer-mounted RCH 155s due from 2028 as Britain fills the gap left by AS-90s sent to Ukraine
1916 - Search - Grad-to-be turns graduation cap into Rust-powered light showEric Park tells us he doesn’t plan to wear his modified cap to commencement, but his code’s available for anyone with no such qualms and an upcoming ceremony
1917 - Search - Dude… where’s my password? Claude reunites forgetful stoner with $400k Bitcoin stashAI to the rescue as 11-year search for password turns up in old PC files
1918 - Search - This browser add-in doesn’t just hide ads, it tells you to OBEYChromium extension swaps promos for John Carpenter-style subliminal slogans
1919 - Search - Man jailed for packing printer with something more expensive than toner: CocaineClass A drugs loaded instead of A4
1920 - Search - US Army goes green-ish, wants soldiers munching on plant proteinsPowders, gels, and fermented nutrients could someday join the battlefield menu
1921 - Search - Windows update prompt joins the Post Office queueCustomers left staring at restart plea with no keyboard, mouse, or hope
1922 - Search - The latest innovation in UK public transport: Schrödinger’s trainsWho knows what is going where. Might as well have a lovely beer instead.
1923 - Search - London’s BT Tower to get rooftop swimming poolImagine taking a dip 177m above the streets of London’s West End
1924 - Search - Vi clone written in BASIC proves old habits :wq hardA few hundred lines of Yabasic recreate just enough to keep modal editing muscle memory alive
1925 - Search - Lego throws its own Hail MaryMovie-inspired set ticks the clever Technic box, but at a price
1926 - Search - Bus station display takes the Windows 10 road to nowhereSpikes deter pigeons, but Microsoft still managed to foul the screen
1927 - Search - Young evil genius forces hamster to run on wheel to power his gadgetsOkay, the rodent was a willing participant - after all, who turns down treats for a spin that charges a phone?
1928 - Search - IBM tried to kill Tab navigation. Microsoft told it Bill Gates’ mother wasn’t interestedBig Blue escalated the OS/2 keyboard squabble through seven layers of management. Redmond’s answer? Nope
1929 - Search - UK puts £20.5M behind ’numberplate for the skies’ to keep tabs on dronesRemote ID system will log aircraft identity and location as ministers try to stop rogue flyers grounding airports
1930 - Search - Viva la revolución: LinkedIn profile visitor lists belong to the people, says NoybGDPR Article 15 doesn’t care if you want to make money by selling users’ data back to them
1931 - Search - DIY mystery box will wow your friends by hinting at what the ionosphere is up toA rough guide to when your signal will behave, or not
1932 - Search - More missions, less money, higher risk: NASA’s back to the ’90s playbookFaster, better, cheaper is back and history suggests you can’t get all three at the same time
1933 - Search - Unexpected item in Windows’ bagging areaActivating Windows will cost more than a couple of cheap carrier bags
1934 - Search - Hobbyist xenomorphs Raspberry Pi into Alien-themed DIY laptopEverything you need to build the PS-85 is available from its designer’s website, even if you can’t get to space
1935 - Search - SCIENCEUK boffin bait lands 18 international researchersGlobal Talent visa program aims to draw in dissatisfied scientists from countries including the US
1936 - Search - SCIENCESerious ISS air leak forces NASA astronauts to temporarily take shelter in Dragon capsule
1937 - Search - scienceTrump pumps federal funds into coal plants in the name of energy securityDoE wants to keep 13 coal-fired power generators going at the same time as funding nuclear research
1938 - Search - ScienceBlue Origin’s New Glenn makes a crater-sized dent in Artemis plansExplosion wrecks rocket and pad, leaving NASA’s lunar ambitions looking less than launch-ready
1939 - Search - ScienceSwift thinking buys NASA observatory a little more time before re-entryRescue mission might have until the end of summer after science operations halted
1940 - Search - scienceNASA to pull an IKEA by dropping tons of plastic, metal, and glass on the MoonAstronauts will get to self-assemble lunar base
1941 - Search - ScienceBezos rocket fell short after cryogenic leak cut engine thrustFrozen hydraulic line blamed for leaving payload in the wrong orbit
1942 - Search - ScienceStarship shows it can deploy satellites, but Moon mission clock still ticksWhat’s a tumbling Super Heavy and a skipped Raptor relight between friends?
1943 - Search - ScienceJapanese Space Agency names arrival date for BepiColombo Mercury missionDue on November 21, eleven months late - but on time to do science!
1944 - Search - scienceFeds unwittingly leak pilots’ pre-crash conversationRelease of spectrogram of cockpit recorder audio allows conversation recovery with ’emerging’ decades-old tech
1945 - Search - BOFH: Vibe-coded solutions arrive for problems nobody hasThe Boss gives common sense an AI wrapper
1946 - Search - BOFH: Nothing says ‘business continuity’ like a dry wooden broomNo sparks, no glory
1947 - Search - BOFH: Arrr, I smell piracy … and it’s comin’ from a machine with executive privilegesHang on, can’t we just turn off the internet?
1948 - Search - BOFH: If the meatbags can’t agree on aircon, AI will decide for themHow were we to know Bikram Choudhury was in the training data?
1949 - Search - BOFH: Are you ready to raise our expense account limits now?Yet another AI sales creep ruined by PFY’s manual reading tactics
1950 - Search - BOFH: What physics defines as impossible, sales calls a challengeThe Boss imagineers a new laptop spec with help from AI
1951 - Search - BOFH: Nobody would be stupid enough to go live with the mirror system, surelyOh. Well. Color us surprised
1952 - Search - BOFH: Loss adjuster discovers liability is a two-way streetInsurance negotiations take a turn for the Thames
1953 - Search - BOFH: Eight pints of a lager and a management breakthroughThe Boss has been on a retreat, which means he needs a factory reset ASAP
1954 - Search - AI AND MLAnthropic spins a Fable of a tamer, safer MythosCompany also changes data retention policy
1955 - Search - cyber-crimeMiasma worms its way onto GitHub as attack kit goes open sourceAs if there weren’t enough package poisonings to worry about
1956 - Search - scienceMIT boffins take electrospray nozzles out of the cleanroom, into the 3D printerWho said sub-millimeter, three-layer science juice had to be expensive to squirt?
1957 - Search - personal techApple’s iOS 27 goes all agentic on compromised passwords, promises to change them with one tapiBiz might not win the AI race, but analysts say it’s focusing on features people may actually use
1958 - Search - Do not share my personal information
1959 - Search - NSO Group back in Meta’s crosshairs after alleged WhatsApp targetingZuckercorp says surveillance-for-hire vendor was still running phishing operations after federal court told it to knock it off
1960 - Search - Oxford Uni student data pwned yet again - this time via career platform breachTotally different attack from the break-in last month. Oh so that’s OK then
1961 - Search - If you don’t fall for these extortionists’ calls, they’ll show up with USB sticksWhen ‘Chatty Spider’ morphs into tech services cosplay spider
1962 - Search - Yet another Cisco SD-WAN 0-day under attack, and no patch in sightGood luck, sys admins
1963 - Search - World Food Programme breach exposes data of 600k vulnerable Gazan familiesThose receiving aid in the famine-threatened, war-torn territory told support will remain
1964 - Search - Council in UK’s City of York outs hundreds of disabled residents with a single email blunderBlue Badge holders exposed to each other after BCC function proves too complex
1965 - Search - Pink is the latest goon squad to use fake helpdesk calls to steal credsA familiar tactic popularized by chaotic crime crew Lapsus$
1966 - Search - Five Eyes: Watch out for odd LinkedIn connection requests, China’s back on the hunt for state secretsCash-for-intel tradecraft continues to concern intelligence officials years after it was first spotted
1967 - Search - Duo who sold car crash victims’ data must repay £118kFresh penalties secured after initial prison, community service sentences for RAC double act
1968 - Search - Nobody needs Mythos or 0-days to build a chaos-causing computer worm – free open source models work just fine’Attackers can now cheaply operationalize known vulnerabilities at scale,’ boffins tell The Reg
1969 - Search - All the passwords were stored in Active Directory description fieldsIt was far too easy for a hacker to get the information
1970 - Search - Commvault says it’s time to rethink resiliency as AI crooks leave victims in a ‘dark, dead’ stateThose backup plans need backup testing
1971 - Search - Another bug hunter leaks Microsoft exploits in defiance of company’s handling of vulnerability disclosuresResearchers follow in Nightmare Eclipse’s footsteps, flipping off Redmond in favor of insta-leaks
##
Security Affairs
View Articles
1972 - Search - 14,971 WordPress Sites Cleaned in Global SocGholish Takedown
1973 - Search - U.S. CISA adds Splunk Enterprise flaw to its Known Exploited Vulnerabilities catalog and urges agencies to fix it by Sunday
1974 - Search - Peter Thiel ’s Secret Society Leak Creates a Perfect Target List for Espionage, Influence Operations, and Blackmail
1975 - Search - 24 Billion Stolen Credentials Exposed in Massive Data Leak
1976 - Search - Cisco fixed a critical ISE vulnerability that lets attackers to gain root access
1977 - Search - F5 Patches Critical NGINX Vulnerabilities Enabling Unauthenticated Code Execution
1978 - Search - Microsoft Confirms RoguePlanet Zero-Day in Defender, Patch Under Development
1979 - Search - FortiBleed Exposes Admin Passwords for 75,000 Fortinet Firewalls
1980 - Search - DragonForce Hid Inside Microsoft Teams and Nobody Noticed for Two Months
1981 - Search - U.S. CISA adds Widget Factory Joomla Content Editor flaw to its Known Exploited Vulnerabilities catalog
1982 - Search - New Rokarolla Android Trojan Targets 217 Banking and Crypto Apps
1983 - Search - EdTech Faces a Cybersecurity Crisis: Data Breaches Surge
1984 - Search - FulcrumSec Targets Novo Nordisk, Leaks Clinical and Research Data
1985 - Search - China-Linked FishMonger Ports SprySOCKS to Windows With Kernel-Level Stealth and UEFI Bootkit Hints
1986 - Search - iRhythm Hit by Cyberattack, Patient Data Stolen and Ransom Demanded
1987 - Search - Fortinet Warned as Three Critical FortiSandbox Bugs Come Under Attack
1988 - Search - CVE-2026-20262: CISCO Catalyst SD-WAN Flaw Under Active Targeted Exploitation
1989 - Search - U.S. CISA adds Cisco Catalyst and LiteSpeed cPanel plugin flaws to its Known Exploited Vulnerabilities catalog
1990 - Search - China-linked actor spent two years inside medical research networks
1991 - Search - Australian Sugar Producer Mackay Sugar Reports Cyber Incident
1992 - Search - Hackers access Booking.com user data, company secures systems
1993 - Search - Inside ZionSiphon: politically driven malware aims at Israeli water systems
1994 - Search - RAMP Uncovered: Anatomy of Russia’s Ransomware Marketplace
1995 - Search - Checkmarx supply chain attack impacts Bitwarden npm distribution path
1996 - Search - Critical CrowdStrike LogScale bug could have allowed file access, but no exploitation was observed
##
The Hacker News
View Articles
1997 - Search - Unpatchable ‘usbliter8’ Exploit Breaks Apple A12 and A13 SecureROM Boot ChainJun 19, 2026Hardware Security / VulnerabilitySecurity researchers at Paradigm Shift have published a working exploit, dubbed usbliter8 , that achieves arbitrary code execution inside the SecureROM of Apple’s A12 and A13 chips. That code is burned into the silicon at manufacture. No software update can reach it. Affected devices will carry this flaw for as long as they stay in use. This is not a remote attack. It requires physical possession of the device, which must be in DFU mode and connected via USB to a dedicated RP2350-based microcontroller board. With that setup, the exploit finishes in under two seconds, before Apple’s signed boot chain loads. The full technical write-up and a working proof of concept went public on June 18, 2026, following coordinated disclosure with Apple Product Security. Affected Devices The public PoC supports A12, A13, S4, and S5 SoCs. A12X and A12Z support is described as theoretically possible but not yet implemented. Device families in that range…
1998 - Search - The Gentlemen RaaS Uses GentleKiller EDR Framework Targeting 400 Security ProcessesJun 19, 2026Ransomware / Endpoint SecurityThe Gentlemen ransomware-as-a-service (RaaS) operation is actively developing and maintaining a suite of endpoint detection and response (EDR) killers that it hands out to affiliates for impairing system defenses before deploying the encryptor. This mature portfolio of EDR-terminating tools is centered around a framework that’s known as GentleKiller . “They also incorporate third-party or leaked tools such as HexKiller, ThrottleBlood, and HavocKiller,” ESET security researcher Jakub Souček said in a report shared with The Hacker News. “These tools are standardized through a shared defense-evasion layer, impersonating predominantly security vendors using fake version information, and copied legitimate certificates and icons.” The Slovakian cybersecurity company also called out the ransomware crew for its ability to “unusually quickly operationalize” newly disclosed proof-of-concept (PoC) exploits related to an attack technique called the bring …
1999 - Search - AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code ExecutionJun 19, 2026Vulnerability / Software Supply ChainMicrosoft researchers have detailed an exploit chain, named AutoJack , that turns an AI browsing agent into a delivery vehicle for remote code execution. Steer the agent to load an attacker’s web page, and that page’s JavaScript can reach a privileged local service on the same machine and spawn a process on the host. No credentials, no sign-in screen, and no further user interaction once the agent loads the page. The attacker only has to get the agent to open it, and a planted link, a URL field, or a prompt injection will do. The flaw sits in AutoGen Studio , the open-source prototyping interface for Microsoft Research’s AutoGen multi-agent framework. This is not a bug that hits everyone who installs the package, and the packaging detail is worth getting right. A plain pip install autogenstudio pulls the current stable release, 0.4.2.2, the build Microsoft inspected, and it has no Model Context Protocol (MCP) route at all. That is the basis for Microsoft…
2000 - Search - Operation Endgame Disrupts SocGholish Servers, Cleans 14,971 WordPress SitesJun 19, 2026Malware / Threat IntelligenceDutch law enforcement authorities, along with counterparts from Canada , Germany, and the U.S., have disrupted malicious infrastructure associated with SocGholish and cleaned up nearly 15,000 infected WordPress websites. “With these actions we deprive cybercriminals of access to infected computer systems,” Maikel Rollman of the Netherlands National High Tech Crime Unit said . “This prevents further damage to the digital systems of citizens, businesses and organizations worldwide and limits the spread of malware. It also reduces the risk that these systems are used for cyber attacks on critical infrastructure and other essential societal processes. This marks the beginning of further action against SocGholish.” The takedown is part of Operation Endgame , an ongoing international law enforcement initiative to combat botnets and associated criminal infrastructures. It was launched in 2024. As part of the effort, 106 servers linked to SocGholish have been t…
2001 - Search - CISA Warns Fortinet Customers as FortiBleed Hits 86,644 FortiGate DevicesJun 19, 2026Threat Intelligence / Firewall SecurityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday urged Fortinet customers with FortiGate appliances to take steps to secure against ongoing malicious activity aimed at thousands of internet-accessible devices. The sweeping campaign, believed to be the work of Russian-speaking threat actors, has been codenamed FortiBleed . The number of compromised devices stands at 86,644 as of June 19, 2026. According to data from SOCRadar, generic admin accounts (35%) and built-in Fortinet system accounts (28.3%) together make up the majority of compromised credentials. Organization-specific accounts account for 36.7% of the remaining breached credentials. “This points directly to a widespread failure to rename default accounts or rotate factory credentials, giving the attacker a highly reliable target list before any brute force was even needed,” SOCRadar said. “Org-specific accounts topping the list is significant. It means the attacker is not ju…
2002 - Search - From Assistive to Agentic: The AI Shift That’s Redefining Threat ManagementJun 19, 2026Enterprise Security / Agentic AIIntroduction The average enterprise security team has 40 or more security tools, giving a lot of visibility into internal telemetry and asset data. But often, these tools are working in siloes, generating (overlapping) alerts and data. And yet, breach dwell times remain stubbornly long (~43 days), response windows keep closing before teams can act, and analysts burn out triaging noise instead of stopping threats. The problem isn’t effort. It’s architecture. Security programs were built for a world where threats moved slowly enough for humans to coordinate responses manually. That world no longer exists. With the way AI capabilities are getting developed and used, especially with frontier AI tools, a much more proactive stance to security is needed as well as machine speed response to combat fast moving adversaries. Gartner’s Continuous Threat Exposure Management (CTEM) framework helps this shift from reactive, point-in-time assessments to a continuous, iterative cycl…
2003 - Search - Forget Data Leakage: Shadow AI’s Real Threat Is Access ControlJun 19, 2026Agentic AI / SaaS SecurityThe first wave of enterprise AI concern was straightforward. It was simply employees pasting sensitive data into public AI tools. Security teams responded with usage policies, domain blocks, and data loss prevention rules. That response made sense at the time. It doesn’t fit the problem anymore. Shadow AI has shifted from a data leakage concern to an access control problem. The threat isn’t about what employees type into AI tools. It’s about which AI agents are running inside the organization, what enterprise systems they’re connected to, and what actions they’re authorized,or not, to take. From passive tools to active actors Employees and business units are building AI agents at a pace most security teams can’t keep track of. Custom assistants, coding agents, workflow automations, and agentic applications are being created across departments with some in sanctioned platforms, but many through browser extensions, SaaS-native features, developer tools, M…
2004 - Search - Salesforce Disables Klue App Integration After OAuth Token Abuse Exposes Customer DataJun 19, 2026Data Breach / Cloud SecuritySalesforce has revealed that it disabled the Klue Battlecards app integration within its platform in response to a security incident impacting the competitive intelligence company on June 11, 2026. To that end, organizations will be unable to connect to Salesforce via the app until further notice, the American cloud-based software company noted in an alert published this week. “Salesforce took this action because our security teams recently detected unusual activity involving the app that may have resulted in unauthorized access to a subset of customer data via the app’s connection to Salesforce,” it noted . “This issue is limited to Klue’s app connection and does not arise from a vulnerability within the Salesforce platform.” The development comes as an extortion group dubbed Icarus compromised and exfiltrated data from customers of Klue, including cybersecurity company Huntress. “The data that was copied from our Salesforce account includes b…
2005 - Search - Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via MicrophoneJun 19, 2026Mobile Security / VulnerabilityApple has updated its Beats Studio Buds wireless earbuds to patch a high-severity vulnerability that could be exploited by nearby hackers to eavesdrop on users. The vulnerability, tracked as CVE-2025-20701 (CVSS score: 8.8), refers to a case of incorrect authorization impacting the Airoha Bluetooth audio SDK that makes it possible to pair a Bluetooth audio device without user consent. Successful exploitation of the flaw could lead to remote escalation of privilege without requiring any additional execution privileges or user interaction. The issue has been addressed in Beats Firmware Update 1B211. “An attacker within Bluetooth range may be able to listen through the microphone of a device which is not yet paired and actively seeking pair requests,” Apple said in an advisory released this week. Details of the vulnerability first emerged in June 2025 when ERNW GmbH researchers Dennis Heinze and Frieder Steinmetz flagged it alongside two other flaws in Airoha SoCs…
2006 - Search - F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code ExecutionJun 18, 2026Vulnerability / Cloud SecurityF5 has released security updates to address two critical security flaws in NGINX Open Source that could be exploited to achieve code execution on affected systems. The vulnerabilities are listed below - CVE-2026-42530 (CVSS v4 score: 9.2) - A use-after-free vulnerability in the ngx_http_v3_module that could be triggered by a remote unauthenticated attacker when NGINX Open Source is configured to use the HTTP/3 QUIC module to reopen a QPACK encoder stream by means of a specially crafted HTTP/3 session, and execute code on systems with Address Space Layout Randomization (ASLR) disabled or when the attacker can bypass ASLR. CVE-2026-42055 (CVSS v4 score: 9.2) - A heap-based buffer overflow vulnerability in the ngx_http_proxy_v2_module and ngx_http_grpc_module modules that could be triggered by a remote unauthenticated attacker when the proxy_http_version to 2 or grpc_pass directives are used to proxy HTTP/2 traffic, the ignore_invalid_headers directive is set to off, and the …
2007 - Search - Orphaned AI Agents: How to Find Hidden Access Risks Inside Your NetworkJun 18, 2026AI Security / Data SecurityIf an autonomous AI agent interacts with your company’s core intellectual property today, can your security team instantly name the person who authorized it? For most enterprises, the answer is a simple no . The rush to adopt internal AI tools has left a massive trail of administrative debt: orphaned agents (AI tools left running after their creator leaves the company) and standing privileges (AI that retains permanent, unrestricted access it no longer needs). When an employee moves on, the automated tools they built stay active—often keeping unmonitored access to sensitive databases and source code long after the human’s credentials are revoked. To help security teams bridge this line of accountability, The Hacker News is hosting a technical briefing. Secure your spot today for the live webinar: Orphaned Agents & Standing Privileges: The Hidden Access Risks of Internal AI . Why Existing Security Tools Miss the Signal Traditional access tools treat AI like stand…
2008 - Search - ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More StoriesJun 18, 2026Hacking News / Cybersecurity NewsThe internet did not break this week. It got used exactly as designed, which is worse. Searches were siphoned through shady browser add-ons. AI chat links turned into malware delivery paths. macOS attacks ran in memory and left almost nothing behind. Cloud agents looked like helpers until attackers treated them like open shells. Add exposed edge gear, poisoned packages, cash courier scams, stealers, loaders, and phishing that barely bothers pretending anymore. Here’s the full mess.
2009 - Search - Chrome V8 Zero-Day CVE-2026-11645 Exploited in the Wild - Patch Now
2010 - Search - Researchers Build Self-Replicating AI Worm That Operates Entirely on Local, Open-Weight Models
2011 - Search - Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows
2012 - Search - Anthropic Releases Claude Fable 5, Its Most Powerful AI Yet, With Cyber Safeguards
2013 - Search - Microsoft Patches Record 206 Flaws, Including Three Zero-Days and Critical RCE Bugs
2014 - Search - Ivanti, Fortinet, and SAP Release Patches for Multiple Critical Vulnerabilities
2015 - Search - Cybersecurity Stars Awards 2026: Winners Announced Across 95 Categories
2016 - Search - ThreatsDay Bulletin: Worm Code Leaked, AI Agent Phished, Claude Code Patch + 28 New Stories
2017 - Search - New GreatXML Exploit Bypasses Windows BitLocker via Recovery Partition XML Files
2018 - Search - Agentjacking Attack Tricks AI Coding Agents Into Running Malicious Code
2019 - Search - China-Linked Hackers Backdoored Linux Login Software to Hide for Nearly a Decade
2020 - Search - Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication
2021 - Search - U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals
2022 - Search - Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit
2023 - Search - Palo Alto Warns of Active Exploitation of PAN-OS GlobalProtect VPN Flaw
2024 - Search - ⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More
2025 - Search - Why Runtime Scanning Is Too Late for Your CI/CD Supply Chain SecurityJune 15, 2026Read ➝
2026 - Search - The Riskiest Alerts No One TriagesJune 15, 2026Read ➝
2027 - Search - Why Active Directory Vulnerabilities Demand More Than a PatchJune 15, 2026Read ➝
2028 - Search - Hacking Salesforce Sites With an LLM AgentJune 8, 2026Read ➝
##
ThreatPost
View Articles
2029 - Search - Student Loan Breach Exposes 2.5M Records
2030 - Search - Watering Hole Attacks Push ScanBox Keylogger
2031 - Search - Tentacles of ‘0ktapus’ Threat Group Victimize 130 Firms
2032 - Search - Ransomware Attacks are on the Rise
2033 - Search - Inside the Hackers’ Toolkit – Podcast
2034 - Search - Being Prepared for Adversarial Attacks – Podcast
2035 - Search - The State of Secrets Sprawl – Podcast
2036 - Search - A Blockchain Primer and a Bored Ape Headscratcher – Podcast
2037 - Search - Security Innovation: Secure Systems Start with Foundational Hardware
2038 - Search - Securely Access Your Machines from Anywhere – Presented by Keeper Security
2039 - Search - Log4j Exploit: Lessons Learned and Risk Reduction Best Practices
2040 - Search - How to ID and Protect Sensitive Cloud Data: The Secret to Keeping Secrets
2041 - Search - Cloud Security: The Forecast for 2022
2042 - Search - 2021: The Evolution of Ransomware
2043 - Search - Healthcare Security Woes Balloon in a Covid-Era World
2044 - Search - 2020 in Security: Four Stories from the New Threat Landscape
2045 - Search - Cybercriminals Are Selling Access to Chinese Surveillance Cameras
2046 - Search - Twitter Whistleblower Complaint: The TL;DR Version
2047 - Search - Firewall Bug Under Active Attack Triggers CISA Warning
2048 - Search - Fake Reservation Links Prey on Weary Travelers
2049 - Search - iPhone Users Urged to Update to Patch 2 Zero-Days
2050 - Search - Is your Java up to date?
2051 - Search - Top 5 Tips to Avoid Viruses and Spyware
2052 - Search - U.S. needs to investigate cyberweapons
2053 - Search - Six months later, DNS still taking a hit
2054 - Search - Pwn2Own 2009: Browsers and smart phones are targets
2055 - Search - Telegram Fraudsters Ramp Up Forged COVID-19 Vaccine Card Sales
2056 - Search - How the Pandemic is Reshaping the Bug-Bounty Landscape
2057 - Search - A Cyber ‘Vigilante’ is Sabotaging Emotet’s Return
2058 - Search - Black Hat USA 2020: Critical Meetup.com Flaws Reveal Common AppSec Holes
2059 - Search - Encryption Under ‘Full-Frontal Nuclear Assault’ By U.S. Bills
2060 - Search - Cyber-Spike: Orgs Suffer 925 Attacks per Week, an All-Time High
2061 - Search - PYSA Emerges as Top Ransomware Actor in November
2062 - Search - Encrypted & Fileless Malware Sees Big Growth
2063 - Search - Innovative Proxy Phantom ATO Fraud Ring Haunts eCommerce Accounts
2064 - Search - Women, Minorities Are Hacked More Than Others
2065 - Search - Threatpost Podcast & Video Hub: Going Beyond the Headlines
2066 - Search - Wikileaks Alleges Years of CIA D-Link and Linksys Router Hacking Via ‘Cherry Blossom’ Program
2067 - Search - Bash Exploit Reported, First Round of Patches Incomplete
2068 - Search - Threatpost News Wrap, February 21, 2014
2069 - Search - Jeremiah Grossman on His New Role as CEO of WhiteHat Security
2070 - Search - Threatpost News Wrap, January 24, 2014
2071 - Search - Rich Mogull on the Target Data Breach
2072 - Search - Threatpost News Wrap, January 10, 2014
2073 - Search - 2013: The Security Year in Review
2074 - Search - Lyceum APT Returns, This Time Targeting Tunisian Firms
2075 - Search - National Surveillance Camera Rollout Roils Privacy Activists
2076 - Search - Malware Gangs Partner Up in Double-Punch Security Threat
2077 - Search - How Email Attacks are Evolving in 2021
2078 - Search - Patrick Wardle on Hackers Leveraging ‘Powerful’ iOS Bugs in High-Level Attacks
2079 - Search - Ransomware and IP Theft: Top COVID-19 Healthcare Security Scares
2080 - Search - Experts Weigh in on E-Commerce Security Amid Snowballing Threats
2081 - Search - Cybercriminals Step Up Their Game Ahead of U.S. Elections
2082 - Search - 2020 Cybersecurity Trends to Watch
2083 - Search - Top Mobile Security Stories of 2019
2084 - Search - Facebook Security Debacles: 2019 Year in Review
2085 - Search - Biggest Malware Threats of 2019
2086 - Search - Top 10 IoT Disasters of 2019
2087 - Search - 2019 Malware Trends to Watch
2088 - Search - Top 2018 Security and Privacy Stories
##
CSO Online
View Articles
2091 - Search - blogCSO Security CouncilExpert insights and strategic guidance for CISOs on emerging threats, AI risks, zero trust and enterprise security leadership. This blog is part of the Foundry Expert Contributor Network. Want to join? Learn more here: https://www.csoonline.com/exper...175 articles
##
Troy Hunt
##
Last Watchdog
View Articles
2093 - Search - News alert: SpyCloud report finds phishing surge exposing employee data at Fortune 100 companies
2094 - Search - FIRESIDE CHAT: Deepfakes exploit human emotion, making employee reflex training essential
2095 - Search - GUEST ESSAY: AI pipelines are shattering network security — most companies haven’t even noticed yet
2096 - Search - Leaked secrets no. 1 exposure
2097 - Search - News alert: Heimdal study finds executives are more confident than frontline IT teams on AI risk
2098 - Search - News alert: Aembit secures Copilot Studio agents with identity-based access controls and audit trails
2099 - Search - News alert: GitGuardian adds endpoint protection as developer laptops become credential troves
2100 - Search - News alert: Varist announces AI-scale malware detection for healthcare and medical imaging
2101 - Search - News alert: Cloud security report finds fragmented tools widening the cloud complexity gap
2102 - Search - News alert: Halo Security recognized for helping MSPs manage customers’ external attack surfaces
##
Schneier on Security
View Articles
2103 - Search - Friday Squid Blogging: Victims of Unregulated Squid Fishing
2104 - Search - Anthropic’s Fable and the State of AI
2105 - Search - Embedding Forbidden Text in Spyware to Discourage AI Analysis
2106 - Search - AI Use by the US Government
2107 - Search - Flock Cameras Are Being Used for Stalking
2108 - Search - The FCC Wants to Eliminate Burner Phones
2109 - Search - Posted on June 14, 2026 at 12:07 PM
2110 - Search - Friday Squid Blogging: Squid-Inspired Fluid Pump
2111 - Search - Bernie Sanders’ AI Sovereign Wealth Fund Plan
2112 - Search - Posted on June 11, 2026 at 7:01 AM
2113 - Search - Four Ways AI Is Being Used to Strengthen Democracies Worldwide
2114 - Search - The CrowdStrike Outage and Market-Driven Brittleness
2115 - Search - How Online Privacy Is Like Fishing
2116 - Search - How AI Will Change Democracy
2117 - Search - Seeing Like a Data Structure