Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

19 headlines in this view

Refine the feed

Search across headline titles and summaries.

Showing 19 most recent headlines Filtered view
The Register 3 years ago

Life long cyber security learning

SANS training courses are scheduled for multiple locations across the EMEA region this Autumn Sponsored Post Nobody here at is likely to argue with Albert Einstein's idea that "intellectual growth should commence at birth and cease only at death".…

The Register 30 Jun 2023, 9:01 p.m.

Quelle tragédie – techie had to visit the city of lights twice to sort this one out On Call Hard-coded into The Register's week is that each Friday morning you’ll find a new instalment of On Call, our reader contributed tales of tech support troubles.…

The Register 30 Jun 2023, 7:27 p.m.

Cough, cough, use Rust. Plus: Eight more exploited bugs added to CISA's must-patch list The most dangerous type of software bug is the out-of-bounds write, according to MITRE this week. This type of flaw is responsible for 70 CVE-tagged holes in the US government's list of known vulnerabilities that are under active attack and need to be patched, we note.…

Blasted from the sky in February, device never transmitted photos, videos, or radar data it collected, officials say It's been months since "spy balloon" fever gripped the United States, but the headline-grabbing flying object – alleged to have been deployed by China – is back in the news. Preliminary findings from the US inspection of its wreckage show a whole bunch of commercially available hardware made in the States.…

The Register 30 Jun 2023, 5:03 a.m. America China

Just as America's Supremes set a high bar for cyberstalking It's bad enough there's some Android stalkerware out there with the not-at-all-creepy moniker LetMeSpy. Now someone's got hold of the information the app collects – such as victims' text messages and call logs – as well as the email addresses of those who sought out the software, and leaked it all.…

Failure to match metadata with packaged files is perfect for supply chain attacks The npm Public Registry, a database of JavaScript packages, fails to compare npm package manifest data with the archive of files that data describes, creating an opportunity for the installation and execution of malicious files.…

Also: a PII harvest at Dole's server farm, military members mailed mystery smartwatches, and this week's critical vulns Infosec in brief In a case startlingly similar to charges recently unsealed against one-term US president Donald Trump, a former FBI analyst has been jailed for taking sensitive classified material home with her.…

How protective AI is a powerful weapon in the fight against cyber attackers using AI for malicious acts. Webinar In the new age of generative AI, it would be foolhardy to imagine that bad actors won't already be exploiting every opportunity to launch an attack with their own malicious AI generated war machines.…