News

Intruders claim they stole GlobalX's flight records and manifests

GlobalX, a charter airline used for deportations by the US government, has admitted someone broke into its network infrastructure.…

Providers argue that if end users prioritized security, they'd get it

CYBERUK  Intervention is required to ensure the security market holds vendors to account for shipping insecure wares – imposing costs on those whose failures lead to cyberattacks and having to draft in cleanup crews. The security market must properly incentivize security vendors to do security better.…

We need to make taking IT systems 'off the books' a problem for corporate types

Opinion  It's been a devastating few weeks for UK retail giants. Marks and Spencer, the Co-Op, and now uber-posh Harrods have had massive disruptions due to ransomware attacks taking systems down for prolonged periods.…

PLUS: Celsius scammer sent to slammer; Death-by-hacking victim warns you're never safe; and more

Infosec in brief  Good cybersecurity habits don't appear to qualify anyone to work at DOGE, as one Musk minion seemingly fell victim to infostealer malware.…

Rapid7 threat hunter told The Reg wrote a PoC. No he's not releasing it

RSAC  If Rapid7's Christiaan Beek decided to change careers and become a ransomware criminal, he knows exactly how he'd innovate: CPU ransomware.…

The FBI also issued a list of end-of-life routers you need to replace

Earlier this week, the FBI urged folks to bin aging routers vulnerable to hijacking, citing ongoing attacks linked to TheMoon malware. In a related move, the US Department of Justice unsealed indictments against four foreign nationals accused of running a long-running proxy-for-hire network that exploited outdated routers to funnel criminal traffic.…

France's share of MOD cash is growing while the US's shrinks

The UK's Ministry of Defence (MOD) is gradually shifting its spending from the US to Europe, according to research from Tussell.…

Weapons-grade fuel for fraud

Insight Partners, a mega venture capital firm with more than $90 billion in funds under management, fears network intruders got their hands on internal sensitive data about employees, portfolio companies, investors, and more.…

Linux giant finds Chinese environment to be perilous beneath pretty exterior

SUSE has kicked the Deepin Desktop Environment (DDE) out of its community-driven Linux distro, openSUSE, and the reasons it gives for doing so are revealing.…

Ubuntu 25.10 fitted with Rust-written admin tool by default for memory safety's sake

Canonical's Ubuntu 25.10 is set to make sudo-rs, a Rust-based rework of the classic sudo utility, the default – part of a push to cut memory-related security bugs and lock down core system components.…

Now individual school districts extorted by fiends

An education tech provider that paid a ransom to prevent the leak of stolen student and teacher data is now watching its school district customers get individually extorted by either the same ransomware crew that hit it – or someone connected to the crooks.…

CEO: Neural net tech 'flattens our hiring curve, helps us innovate'

CrowdStrike – the Texas antivirus slinger famous for crashing millions of Windows machines last year – plans to cut five percent of its staff, or about 500 workers, in pursuit of "greater efficiencies," according to CEO and co-founder George Kurtz.…

Judge allows aspects of passenger lawsuit to proceed

A federal judge has cleared the runway for a class action from disgruntled passengers against Delta Air Lines as turbulence from last year's CrowdStrike debacle continues to buffet the carrier.…

We were shocked – SHOCKED – by the answer

Mirror, mirror on the wall, who is the slurpiest mobile browser of them all? The answer, according to VPN vendor Surfshark, is Chrome.…

Lead dev likens flood to 'effectively being DDoSed'

Curl project founder Daniel Stenberg is fed up with of the deluge of AI-generated "slop" bug reports and recently introduced a checkbox to screen low-effort submissions that are draining maintainers' time.…

Prime Minister bemoans bullying, addiction, and inappropriate content – but isn’t planning a rapid vote

New Zealand’s government has signaled its support for a bill to ban social media for children under 16, but without explicitly making it a government initiative.…

Don't f&#k with Zuck

A California jury has awarded Meta more than $167 million in damages from Israeli surveillanceware slinger NSO Group, after the latter exploited a flaw in WhatsApp to allow its government customers to spy on supposedly secure communications.…

What was the plan, showing her his big iron?

A now-former manager at Computacenter claims he was unfairly fired after alerting management that a colleague was repeatedly giving his girlfriend unauthorized access to Deutsche Bank's server rooms.…

(If only that would keep folks off unsanctioned chat app side quests)

The US Department of Defense (DoD) is overhauling its "outdated" software procurement systems, and insists it's putting security at the forefront of decision-making processes.…

Because who needs cybersecurity when there’s culture wars to win

President Trump's dream 2026 budget would gut the US govt's Cybersecurity and Infrastructure Security Agency, aka CISA, by $491 million - about 17 percent – and accuses the organization of abandoning its core mission in favor of policing online speech.…