TheRegister
Not again! Microsoft blames config tweak for 365 outage in parts of North America
Microsoft had a midweek meltdown on Wednesday as a chunk of its productivity suite fell out of the cloud.…
Orange Belgium mega-breach exposes 850K customers to serious fraud
A significant data theft at Orange Belgium has opened hundreds of thousands of its customers to serious cybersecurity risks.…
US cops wrap up RapperBot, one of world's biggest DDoS-for-hire rackets
RapperBot, a botnet-for-hire blamed for hundreds of thousands of DDoS attacks, has been yanked offline by the Feds, who also hauled in its alleged Oregon-based mastermind.…
Apple rushes out fix for active zero-day in iOS and macOS
Apple has shipped emergency updates to fix an actively exploited zero-day in its ImageIO framework, warning that the flaw has already been abused in targeted attacks.…
Colt changes tune, admits data theft as Warlock gang begins auction
A week after its services were disrupted by a cyberattack, UK telco Colt Technology Services has gone back on its initial statement to confirm that data has indeed been stolen.…
Google yet to take down 'screenshot-grabbing' Chrome VPN extension
Security boffins at Koi Security have warned of a shift in behavior of a popular Chrome VPN extension, FreeVPN.One, which recently appears to have begun snaffling screenshots of users' page activity and transmitting them to a remote server without their knowledge – and Google has yet to take it down.…
AI crawlers and fetchers are blowing up websites, with Meta and OpenAI the worst offenders
Cloud services giant Fastly has released a report claiming AI crawlers are putting a heavy load on the open web, slurping up sites at a rate that accounts for 80 percent of all AI bot traffic, with the remaining 20 percent used by AI fetchers. Bots and fetchers can hit websites hard, demanding data from a single site in thousands of requests per minute.…
Microsoft makes MCP in Visual Studio GA but researchers warn of risks
Microsoft has declared general availability for MCP (model context protocol) servers in Visual Studio, likely to be the second most popular IDE after Visual Studio Code and with wide enterprise use.…
FydeOS offers ChromeOS without the Google strings attached
FydeOS is an alternative to ChromeOS Flex, but with a few significant differences – including Google-account-free operation.…
The UK Online Safety Act is about censorship, not safety
opinion Implementation of the U.K.'s Online Safety Act is giving internet users around the globe – including those in U.S. states moving to enact their own age verification laws – real-time proof that such laws impinge on everyone's rights to speak, read, and view freely. …
AWS CEO says using AI to replace junior staff is ‘Dumbest thing I’ve ever heard’
Amazon Web Services CEO Matt Garman has suggested firing junior workers because AI can do their jobs is “the dumbest thing I've ever heard.”…
Baidu robocabs break even in low-fare China, company expects to cash in elsewhere
Chinese web giant Baidu is already breaking even with robotaxi operations in China and is confident they will be profitable once the company rolls into global markets.…
China cut itself off from the global internet for an hour on Wednesday
China cut itself off from much of the global internet for just over an hour on Wednesday.…
Microsoft stays mum about M365 Copilot on-demand security bypass
Microsoft has chosen not to tell customers about a recently patched vulnerability in M365 Copilot.…
Post-privacy AI glasses claim to listen to your every word
The headline-making Harvard duo who turned a pair of Meta smart glasses into a privacy violation machine last year now have their own pair of smart specs to sell, which they tell The Register will make people "super intelligent" by listening in on their conversations 24/7 and offering unsolicited feedback. …
Google tries to trump iPhone launch with AI-powered Pixel 10 range
Video In a celebrity-studded launch event on Wednesday, Google showed off its Pixel 10 hardware, including four smartphones, an updated smartwatch, and earbuds. Unsurprisingly, every gadget comes with a heavy dose of AI.…
Amazon quietly fixed Q Developer flaws that made AI agent vulnerable to prompt injection, RCE
Amazon has quietly fixed a couple of security issues in its coding agent: Amazon Q Developer VS Code extension. Attackers could use these vulns to leak secrets, including API keys from a developer's machine, and run arbitrary code.…
Talk to the bot: Salesforce AI agents could replace US govt employees
American citizens seeking help from the federal government may soon find themselves being assisted by an AI agent, if Salesforce's new public sector offering is a success.…
IETF Draft suggests making IPv6 standard on DNS resolvers - partly to destroy IPv4
A pair of networking researchers have proposed that the Internet Engineering Task Force define support for IPv6 as a best practice for operators of DNS resolvers – the servers that translate URLs into IP addresses – and one of them hopes adoption of the idea will accelerate the demise of IPv4.…
Perplexity's Comet browser naively processed pages with evil instructions
To the surprise of no one in the security industry, processing untrusted, unvalidated input is a bad idea.…