Name That Toon: Mark of (Security) Progress
Feeling creative? Have something to say about the last 20 years of cybersecurity? Our editors will award the best cybersecurity-related caption with a $20 gift card.
Security & Lifecycle News
Aggregated from vendor advisories, security research, and industry publications.
Microsoft releases first big update after Nadella's vow to 'win back fans'
Lots of fixes, some performance tweaks. Fingers crossed there's no out-of-band patch to follow Microsoft is following through on its promise to prioritize Windows stability with it…
20 Years in Cyber: Dark Reading Marks Milestone With Month of Special Coverage
On this day in 2006, Dark Reading went live. We have a celebration planned that spans our two decades of covering the industry, and you, dear readers, are invited.
OpenAI locks GPT-5.5-Cyber behind velvet rope despite slamming Anthropic for doing exactly that
Altman's crew now doing the same gatekeeping it recently mocked OpenAI is lining up a limited release of its new GPT-5.5-Cyber model to a handpicked circle of "cyber defenders," ju…
Two US Security Experts Sentenced to Prison for Helping Ransomware Gang
Ryan Goldberg of Georgia and Kevin Martin of Texas were each sentenced to four years in prison. The post Two US Security Experts Sentenced to Prison for Helping Ransomware Gang ap…
A Ransomware Negotiator Was Working for a Ransomware Gang
Someone pleaded guilty to secretly working for a ransomware gang as he negotiated ransomware payments for clients.
SpaceX rocket set for unintentional Moon landing – well, a piece of it anyway
But unlike most junkers, it'll be traveling faster than the speed of sound, claims astronomy software dev An astronomy software dev claims a Falcon 9 upper stage will hit the Moon …
Microsoft now lets admins choose pre-installed Store apps to uninstall
Microsoft has updated a Windows 11 in-box app removal policy introduced in October to include a dynamic list that lets IT admins choose which preinstalled Store apps to uninstall. …
Sophisticated Deep#Door Backdoor Enables Espionage, Disruption
The stealthy Python-based backdoor framework deploys a persistent Windows implant likely designed for espionage. The post Sophisticated Deep#Door Backdoor Enables Espionage, Disrup…
Pro-Iran crew turns DDoS into shakedown as Ubuntu.com stays down
313 Team tells Canonical: pay up or the packets keep coming Canonical says its web infrastructure is under attack after a pro-Iran hacktivist group instructed its members to target…
UK pensions dept goes shopping for spy-van tech with £2M surveillance tender
Covert cameras, live-streaming systems, and in-vehicle recording kit sought to catch out fraudsters The Department for Work and Pensions has gone shopping for covert cameras, live-…
Top Five Sales Challenges Costing MSPs Cybersecurity Revenue
The managed security services market is projected to grow from $38.31 billion in 2025 to $69.16 billion by 2030[1], with cybersecurity being the fastest-growing sector[2]. Despite …
Cisco Releases Open Source Tool for AI Model Provenance
The new kit aims to address risks related to poisoned models, regulatory issues, supply chain integrity, and incident response. The post Cisco Releases Open Source Tool for AI Mode…
Windows 11 KB5083631 update released with 34 changes and fixes
Microsoft has released the KB5083631 optional cumulative update for Windows 11, which includes 34 changes, such as a new Xbox mode for Windows PCs, enhanced security and performanc…
Who needs ghost train scares when Windows is such a fright?
Things that go bork in the night Bork!Bork!Bork! What frightens you? What, as an IT professional, would make you shriek like a small child? What tech horrors are lurking under your…
Two Cybersecurity Professionals Get 4-Year Sentences in BlackCat Ransomware Attacks
The U.S. Department of Justice (DoJ) on Thursday announced the sentencing of two cybersecurity professionals to four years each in prison for their role in facilitating BlackCat ra…
Poisoned Ruby Gems and Go Modules Exploit CI Pipelines for Credential Theft
A new software supply chain attack campaign has been observed using sleeper packages as a conduit to subsequently push malicious payloads that enabled credential theft, GitHub Acti…
Passport to £££: Home Office adds £216M to travel doc contract before a single bid's been placed
Start date pushed back a year, annual cost up a third, and UK's now handing out eight million passports a year The Home Office has increased the annual value and overall duration o…
Hugging Face, ClawHub Abused for Malware Distribution
Threat actors are relying on social engineering to lure users into downloading files containing malicious instructions. The post Hugging Face, ClawHub Abused for Malware Distributi…
DVLA's 14-week driving license fiasco – the tech, people and chatbot trying to clear it
Medical license applicants still waiting months while agency insists it's 'putting things right' The Driver and Vehicle Licensing Agency (DVLA) has introduced new techto support dr…
FBI Warns of Surge in Hacker-Enabled Cargo Theft
A new alert from the FBI says criminal enterprises are hacking both brokers and carriers to steal cargo for resale. The post FBI Warns of Surge in Hacker-Enabled Cargo Theft appear…
US ransomware negotiators get 4 years in prison over BlackCat attacks
Two former employees of cybersecurity incident response companies Sygnia and DigitalMint were sentenced to four years in prison each for targeting U.S. companies in BlackCat (ALPHV…
1,800 Hit in Mini Shai-Hulud Attack on SAP, Lightning, Intercom
The compromised Lightning and Intercom packages have a combined monthly download count of nearly 10 million. The post 1,800 Hit in Mini Shai-Hulud Attack on SAP, Lightning, Interco…
User found the perfect formula to make Excel misbehave
For once, Oracle ERP wasn’t the problem On Call Fridays can be a drag, but The Register has a formula to inject a little fun by delivering a new instalment of On Call – the reader-…
Qualcomm teases ‘dedicated CPU for agentic experiences’ and ‘agentic smartphones’
Enters the custom AI silicon business with secret silicon for an un-named hyperscaler Qualcomm has quietly entered the market for custom hyperscale silicon, and datacenter CPUs…
Fujitsu confirms mainframe biz to die in 2035, in time for quantum AI supercomputers to take over
In talks with Japan, the UK, and Australia on defense tech that can ‘contribute to global stability’ Japanese tech giant Fujitsu has confirmed the demise of its mainframe business …
Your biggest vulnerability is your shitty compensation
Article URL: https://green.spacedino.net/your-biggest-vulnerability-is-your-shitty-compensation/ Comments URL: https://news.ycombinator.com/item?id=47971134 Points: 102 # Comments:…
When 170,000 people show up: Network refresh readies Churchill Downs for Kentucky Derby
Churchill Downs may be best known for the Kentucky Derby’s two-minute spectacle, but behind the scenes, the historic venue is undergoing a network transformation that offers lesson…
ICANN opens applications for new generic top-level domains for the first time since 2012
$227k gets you a hearing for your dot.vanity project, or strings in one of 27 scripts The Internet Corporation for Assigned Names and Numbers (ICANN) on Thursday kicked off a new a…
The never-ending supply chain attacks worm into SAP npm packages, other dev tools
Mini Shai-Hulud caught spreading credential-stealing malware The wave of supply chain attacks aimed at security and developer tools has washed up more victims, namely SAP and Inter…