Russian cyber-spies changed tactics after the UK and US outed their techniques – so here’s a list of those changes
Privacy activist Max Schrems on Microsoft’s EU data move: It won’t keep the NSA away
When not to use edge computing
Cisco HyperFlex web interface has critical flaw that lets attackers get root and execute arbitrary commands
Kids in Hong Kong and other highly surveilled states worry infosec careers are just asking for trouble
Google Play to require privacy labels on apps in 2022, almost two years after Apple
Google will make you use two-step verification to login
Vulnerability in Snapdragon 855 SoCs could pwn Android modems, allow baddies to snoop on conversations
S3 Ep31: Apple zero-days, Flubot scammers and PHP supply chain bug [Podcast]
Firefox for Android gets critical update to block cookie-stealing hole
Crane horror Reg reader uses his severed finger to unlock Samsung Galaxy phone
Chrome on Windows turns on Intel, AMD chip-level defenses against malicious websites
JET engine flaws can crash Microsoft’s IIS, SQL Server, say Palo Alto researchers
21 nails in Exim mail server: Vulnerabilities enable ‘full remote unauthenticated code execution’, millions of boxes at risk
East London council blurts thousands of residents’ email addresses in To field blunder
Dell fixes exploitable holes in its own firmware update driver – patch now!
Twilio’s private GitHub repositories cloned by Codecov attacker, cloud comms platform confirms
What not to expect when you’re expecting: Fertility apps may be selling intimate health secrets
‘Millions’ of Dell PCs will grant malware, rogue users admin-level access if asked nicely
Red Hat open-sources StackRox Kubernetes security product
Apple products hit by fourfecta of zero-day exploits – patch now!
Apple patches iOS, macOS, iPadOS, watchOS, kitchen-sinkOS bugs said to be exploited in the wild
Naked Security Live – Beware ‘Flubot’: the home delivery scam with a difference
Bill to protect UK against harmful foreign investment becomes law
PHP community sidesteps its third supply chain attack in three years
Happy Friday? Darktrace gets 40 per cent boost on London IPO debut
Australia proposes teaching cyber-security to five-year-old kids
Stealthy Linux backdoor malware spotted after three years of minding your business
BadAlloc: Microsoft looked at memory allocation code in tons of devices and found this one common security flaw
Vivaldi update unleashes the ‘Cookie Crumbler’ to simply block any services asking for consent (sites may break)
S3 Ep30: AirDrop worries, Linux pests and ransomware truths [Podcast]
Billions in data protection lawsuits rides on Google’s last-ditch UK Supreme Court defence for Safari Workaround sueball
48 ways you can avoid file-scrambling, data-stealing miscreants – or so says the Ransomware Task Force
When you’re building a cybersecurity pro, you need to get the foundations right
Digital Ocean springs a leak: Miscreant exploits hole to peep on unlucky customers’ billing details for two weeks
Ransomware crooks who broke into Merseyrail used director’s email address to brag about it – report
Gamers update! Nvidia patches GPU driver kernel escalation bugs
Brit MPs and campaigners come together to oppose COVID status certificates as ‘divisive and discriminatory’
Here’s what Russia’s SVR spy agency does when it breaks into your network, says US CISA infosec agency
Ransomware: don’t expect a full recovery, however much you pay
Washington DC police force confirms data breach after ransomware upstart Babuk posts trophies to Tor blog
Patched Exchange to head off Hafnium? You might only be halfway to safety
HashiCorp reveals exposure of private code-signing key after Codecov compromise
Security vendor Proofpoint snapped up by private equity for $12.3bn but still in search of profit
Naked Security Live – Just how (un)safe is AirDrop?
Scam victims find same fraudulent ads lurking on Facebook and Google even after flagging them up
Ethics isn’t a county east of London, but it’s the only way to look at security
GCHQ boss warns China can rewrite ‘the global operating system’ in its own authoritarian image
Cloud security threats are growing – crucially, is your skills toolkit keeping pace?
India orders takedowns of social media posts it claims harm fight against raging COVID-19 outbreak