The Register

ERP giant patches flaw that allows total takeover of NetWeaver, Microsoft has nothing under attack for once

September’s Patch Tuesday won’t require Microsoft users to rapidly repair rancid software, but SAP users need to move fast to address extremely dangerous bugs.…

Including messages sent to users, a potential problem for the privacy-conscious

Updated  Encrypted messaging app Signal is rolling out a free storage system for its users, with extra space if folks are willing to pay for it.…

We're making billions on AI, how about you?

Google Cloud CEO Thomas Kurian says the Chocolate Factory's rental computing business has $106 billion of unfulfilled contracts, and he expects Google Cloud will be able to realize about half of that in revenue within two years.…

Miscreants cost victims time rather than money

During the two-hour window on Monday in which hijacked npm versions were available for download, malware-laced packages reached one in 10 cloud environments, according to Wiz researchers. But crypto-craving crims did little more than annoy defenders.…

iPhone 17 Air shows company lightening up

Apple on Tuesday showed off its iPhone 17 lineup at a media event dubbed, "Awe Dropping," favoring timeworn self-adulation over a more literal pun like "Four Play."…

Now if only someone would remember to apply those rules inside the DoD

It's about to get a lot harder for private companies that are lax on cybersecurity to get a contract with the Pentagon, as the Defense Department has finalized a rule requiring contractor compliance with its Cybersecurity Maturity Model Certification (CMMC) program.…

If you're within 50 miles of Redmond, then it's time to come in

Microsoft is rolling out a new return-to-office policy that will see first Redmond, then US, and then global staff getting back on-prem at least three days a week.…

'The practice… has since been fixed,' Pentagon official tells The Reg

The US Department of Defense, up until this week, routinely left its social media accounts wide open to hijackers via stream keys - unique, confidential identifiers generated by streaming platforms for broadcasting content. If exposed, these keys can allow attackers to output anything they want from someone else's channel.…

Microsoft invitation lost in mail after HoloLens made soldiers sick

The US Army's troubled attempt at outfitting soldiers with mixed-reality headsets is getting a $354 million boost and a new pair of lead contractors as part of a second attempt to make the kit stick without making troops sick.…

HelloGym's data security clearly skipped leg day

Exclusive  Sensitive info from hundreds of thousands of gym customers and staff – including names, financial details, and potentially biometric data in the form of audio recordings – was left sitting in an unencrypted, non-password protected database, according to a security researcher who shut it down.…

Analyst bets smart money on 'proactive digital companion' upgrade cycle

Generative AI will supposedly spark a smartphone renaissance, driving both unit shipments and the value of devices sold this calendar year – or so claims a rather optimistic forecast from Gartner's consultants.…

Microsoft feared too many machines would end up bricked

Microsoft vet Raymond Chen first told the story of HLT and Windows 95 more than 20 years ago. The instruction tells the CPU to effectively shut itself down until the next hardware interrupt – ideal for laptops, since power consumption would be hugely reduced.…

For the third time in a decade

Streaming platform Plex is warning some users to reset their passwords after suffering yet another breach.…

Netherlands based Nebius Group to deliver capacity from facility in New Jersey

As the AI frenzy shows no signs of letting up, Microsoft has signed an agreement that could be worth up to $19.4 billion with Netherlands-based Nebius Group – formerly known as Yandex N.V. – in exchange for access to its GPU infrastructure over five years.…

First, server products go end of life, now datacenter gets the chop, and larger customers will pay more

Atlassian is discontinuing its datacenter products, including Jira, Confluence and Bamboo, in favor of Atlassian Cloud. There is a partial exception for Bitbucket, a source code repository manager, which will have a license option covering both cloud and datacenter.…

Dreams of one satellite constellation die so another can live

EchoStar has agreed to sell the company's AWS-4 and H-block spectrum licenses to SpaceX in a transaction worth $17 billion.…

Package queues jammed until Monday despite brief downtime

When is an outage not an outage? According to Canonical's forum, it's when a 36-minute server disruption creates a multi-day backlog that leaves users unable to install or update Ubuntu systems.…

Ivalo XE handset targets governments and security critical sectors, though Qualcomm silicon keeps it tied to the US

Finnish phone maker HMD Global is launching a business unit called HMD Secure to target governments and other security-critical customers, and has its first device ready to go.…

AI security reviews add new risks, say researchers

App security outfit Checkmarx says automated reviews in Anthropic's Claude Code can catch some bugs but miss others – and sometimes create new risks by executing code while testing it.…

From fast food fiascos to botched databases, there are fresh honors for machine learning misadventures

It was bound to happen. The Darwin Awards are being extended to include examples of misadventures involving overzealous applications of AI.…