The Register

Not to be confused with all the other reports of Chinese intruders on US networks that came to light this week

RedNovember, a Chinese state-sponsored cyberspy group, targeted government and critical private-sector networks around the globe between June 2024 and July 2025, exploiting buggy internet-facing appliances to deploy a Go-based backdoor called Pantegana and other offensive security tools, including Cobalt Strike and SparkRAT.…

Chinese giant maps out datacenters across Europe and beyond, yet US chip curbs cast a long shadow

Analysis  Alibaba this week opened an AI war chest containing tens of billions of dollars, a revamped LLM lineup, and plans for AI datacenters in Europe. But it also prompted a flurry of questions over how it will achieve all this in an increasingly fragmented IT landscape, when critical resources are in short supply.…

Act passed in 2015 is due to lapse unless a continuing resolution passes - and that's unlikely

Barring a last-minute deal, the US federal government would shut down on Wednesday, October 1, and the 2015 Cybersecurity Information Sharing Act would lapse at the same time, threatening what many consider a critical plank of US cybersecurity policy.…

Upgraded nasty slips into Xcode builds, steals crypto, and disables macOS defenses

The long-running XCSSET malware strain has evolved again, with Microsoft warning of a new macOS variant that expands its bag of tricks while continuing to target developers.…

CRM giant denies security shortcomings as claims allege stolen data used for ID theft

Salesforce is facing a wave of lawsuits in the wake of a cyberattack that exposed customer data.…

Researchers say tens of thousands of instances remain publicly reachable

Security researchers have confirmed that threat actors have exploited the maximum-severity vulnerability affecting Fortra's GoAnywhere managed file transfer (MFT), and chastised the vendor for a lack of transparency.…

Operation Cronos didn’t kill LockBit – it just came back meaner

Trend Micro has sounded the alarm over the new LockBit 5.0 ransomware strain, which it warns is "significantly more dangerous" than past versions due to its newfound ability to simultaneously target Windows, Linux, and VMware ESXi environments. …