TheRegister
Server-room lock was nothing but a crock
PWNED Welcome back to Pwned, the column where we immortalize the worst vulns that organizations opened up for themselves. If you’re the kind of person who leaves your car doors unlocked with a pile of cash in the center console, this week’s story is for you.…
QUIC will soon be as important as TCP – but it's vastly different
While Larry was producing most of the content for the "Request/Reponse" chapter for the next edition of our book, I took the lead on writing a section on QUIC (Quick UDP Internet Connections), since I have closely followed its development.…
Bullet train upgrade brings 5G windows and noise-cancelling cabins to Japan
Some Japanese bullet trains will soon be equipped with private suites that include windows with embedded 5G antennas and noise-cancelling technology that envelops passengers in a bubble of quiet.…
Indian government investigating TCS after police sting finds sexual harassment
Police in the Indian city of Nashik conducted a sting operation at Tata Consultancy Services and allegedly found instances of sexual harassment and other revolting behavior.…
Google Chrome lacks protection against one of the most basic and common ways to track users online
Google markets its Chrome browser by citing its superior safety features, but according to privacy consultant Alexander Hanff, Chrome does not protect against browser fingerprinting – a method of tracking people online by capturing technical details about their browser.…
Anthropic's Project Glasswing CVE tally is still anyone's guess
Last week, Anthropic surprised the world by declaring that its latest model, Mythos, is so good at finding vulns that it would create chaos if released. Now, under the title of Project Glasswing, over 50 selected companies and orgs are allowed to test the hyped up LLM to find security holes in their own products. But just how many problems have they really discovered?…
Don't let the bot play doctor! AI gets early diagnoses wrong 80% of the time
People ask AI for all kinds of advice, including the kind of questions you'd ask a physician. However, the next time you're tempted to query ChatGPT if that growth on your face is skin cancer, consider this: research shows today's leading AI models fail at early differential diagnosis in more than 8 out of 10 cases.…
Customers revolt as GitHub Copilot 'fixes' rate limits
Microsoft's GitHub last week told Copilot customers that they'd have to reduce their use of the AI service to ease the strain on company servers. This follows the company's discovery last month of a token counting bug that appears to have broken the company's pricing model.…
Shoe company says it's getting into AI infrastructure and yes this is the top
OPINION Back in December 2017, an obscure American soft drinks company changed its name from Long Island Iced Tea to Long Blockchain.…
Patch these critical Fortinet sandbox bugs that let attackers bypass login, run commands over HTTP
Watch out for more Fortinet vulns! Two critical bugs in Fortinet's sandbox could allow unauthenticated attackers to bypass authentication or execute unauthorized code on vulnerable systems.…
Decades-old Linux UI bug fixed by dev younger than the window manager
No one can tell software developer Kamila Szewczyk that newer is better: She just fixed a 20-year-old bug in Enlightenment E16, the old-school Linux window manager she favors partly because, she tells us, it is actually finished software.…
Bad teacher bots can leave hidden marks on model students
New research warns about the dangers of teaching LLMs on the output of other models, showing that undesirable traits can be transmitted "subliminally" from teacher to student, even when they are scrubbed from training data.…
Automotive data biz Autovista blames ransomware for service disruption
Autovista confirms that it called in outside support to help clean up a ransomware infection currently affecting systems in Europe and Australia.…
Not all networks can handle AI traffic – and experts are sounding alarms
AI is reshaping the demands on network infrastructure, and many organizations are not prepared – including some of the so-called neocloud providers offering AI services.…
Windows takes a crash dump after one McDonald's order too many
Bork!Bork!Bork! Windows is doing what it does best in California, with a Blue Screen of Death on the wall of a fast food restaurant where order progress is supposed to be.…
French cops free mother and son after 20-hour crypto kidnap ordeal
A mother and her ten-year-old son are now free after being kidnapped for around 20 hours while the father was being extorted for hundreds of thousands of euros.…
US states can't account for datacenter tax breaks. Literally
Many US states and local authorities are violating generally accepted accounting principles (GAAP) by failing to disclose revenue lost to datacenter tax subsidy schemes, according to Good Jobs First.…
Headless 360: Salesforce's latest pitch to let AI do the dev work
Salesforce has introduced what it calls Headless 360 at its developer event TDX, which starts today in San Francisco, designed to expand the reach of its app-building tools beyond traditional developers.…
Ancient Excel bug comes out of retirement for active attacks
While Microsoft was rolling out its bumper Patch Tuesday updates this week, US cybersecurity agency CISA was readying an alert about a 17-year-old critical Excel flaw now under exploit.…
Raspberry Pi OS ends open-door policy for sudo
The latest version of Raspberry Pi OS now requires a password for sudo by default.…