Blog

Microsoft admits it ‘cannot guarantee’ data sovereignty

Under oath in French Senate, exec says it would be compelled – however unlikely – to pass local customer info to US admin Microsoft says it "cannot guarantee" data sovereignty to customers in France – and by implication the wider European Union – should the Trump administration demand…

Advisor to Brit tech contractors Qdos confirms client data leak

Policy management not affected, but some personal data may have been snaffled Updated  Business insurance and employment status specialist Qdos has confirmed that an intruder has stolen some customers personal data, according to a communication to tech contractors that was seen by The Register.…

DNS security is important but DNSSEC may be a failed experiment

Nobody thinks of running a website without HTTPs. Safer DNS still seems optional Systems Approach  Last week I turned on DNSSEC (Domain Name System Security Extensions) for the systemsapproach.org domain. No need to applaud; I was just trying to get an understanding of what the barriers to adoption…

Laptop farmer behind $17M North Korean IT worker scam locked up for 8.5 years

Plus she has to cough up a slice of Pyongyang’s payday An Arizona woman who ran a laptop farm from her home - helping North Korean IT operatives pose as US-based remote workers - has been sentenced to eight and a half years behind bars for her role…

So much for watermarks: UnMarker tool nukes AI provenance tags

Boffins insist your deepfake tracking tech won't work Computer scientists with the University of Waterloo in Ontario, Canada, say they've developed a way to remove watermarks embedded in AI-generated images.…

Microsoft: SharePoint attacks now officially include ransomware infections

Let the games begin Ransomware has officially entered the Microsoft SharePoint exploitation ring.…

Coyote malware abuses Microsoft’s UI Automation to hunt banking creds

Some coyotes hunt squirrels, this one hunts users' financial apps A new variant of the Coyote banking trojan abuses Microsoft's UI Automation (UIA), making it the first reported malware to use UIA for credential theft.…

The EFF is 35, but the battle to defend internet freedom is far from over

Palantir, data brokers, and judicial overreach are all on the horizon, executive director Cindy Cohn warns Interview  In July 1990, before the World Wide Web even existed, an unusual alliance was formed to fight for the rights of the emerging online community.…

Compromised Amazon Q extension told AI to delete everything – and it shipped

Malicious actor reportedly sought to expose AWS 'security theater' The official Amazon Q extension for Visual Studio Code (VS Code) was compromised to include a prompt to wipe the user's home directory and delete all their AWS resources.…

VMware prevents some perpetual license holders from downloading patches

Despite pledging help for those who don’t sign for subs, Broadcom says validating their entitlements will delay support Exclusive  Some customers of Broadcom’s VMware business currently cannot access security patches, putting them at greater risk of attack.…

Copyright © 2026 Lugapel