The Register-Weekly Security Newsletter.

- August 18, 2025

"UK expands police facial recognition rollout with 10 new vans heading to a town near you."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents. Accessed on 18 August 2025, 2112 UTC.

Content and Source: "The Register-Weekly Security Newsletter."

https://mail.google.com/mail/u/0/?ogbl#trash/FMfcgzQcpKkHCtljPFgKJSRhFfRPTSnH

URL--https://www.theregister.com

Please check email link, URL, or scroll down to read your selections. Thanks for joining us today.

Russ Roberts (http://www.hawaiicybersecurityjournal.net).

Hi Russell Roberts Roberts | Log in

Weekly security newsletter

18th August 2025

UK expands police facial recognition rollout with 10 new vans heading to a town near you

Seven additional regions across England will now have access to the controversial tech

CSO News

Red teams are safe from robots for now, as AI makes better shield than spear

The bad news? The machines, and their operators, are coming on fast

Deepfake detectors are slowly coming of age, at a time of dire need

By video, picture, and voice – the fakers are coming for your money

Google Workspace: A more secure alternative

Whitepaper

Gemini for Google Workspace Prompt Guide

Whitepaper

Cyber-crime News

Typhoon-adjacent Chinese crew broke into Taiwanese web host

Is that a JuicyPotato on your network?

Cyberattack on Dutch prosecution service is keeping speed cameras offline

Who knew zero-days could be so useful to highway speedsters?

Telco giant Colt suffers attack, takes systems offline

London-based multinational takes customer portal and Voice API platform offline as 'protective measure' following breach

Ransomware crews don't care about your endpoint security – they've already killed it

Some custom malware, some legit software tools

Psst: wanna buy a legit FBI email account for $40?

Government and police employee credentials sold at bargain-basement prices on underground forums

Law and water: Russia blamed for US court system break-in and Norwegian dam drama

Moscow-linked miscreants accused of swiping sealed US court files and fiddling with a Norwegian dam’s floodgates

Italian hotels breached en masse since June, government confirms

Nearly 100,000 records allegedly up for sale after apparent breach at booking system

Ransomware crew spills Saint Paul's 43GB of secrets after city refuses to cough up cash

Minnesota’s capital is the latest to feature on Interlock’s leak blog after late-July cyberattack

Crypto-crasher Do Kwon admits guilt over failed not-so-stablecoin that erased $41 billion

Tells court 'What I did was wrong and I want to apologize for my conduct'

Manpower franchise discloses data theft after RansomHub posts alleged stolen data

And yes, there’s the usual credit monitoring

BlackSuit ransomware crew loses servers, domains, and $1m in global shakedown

US cops yank servers, domains, and crypto from the Russia-linked gang - but the crooks remain at large

Oh, great.Three notorious cybercrime gangs appear to be collaborating

Scattered Spider, ShinyHunters, and Lapsus$ spent the weekend bragging to each other on a Telegram channel

Russia's RomCom among those exploiting a WinRAR 0-day in highly-targeted attacks

A few weeks earlier 'zeroplayer' advertised an $80K WinRAR 0-day exploit

US scrambles to recoup $1M+ nicked by NORKs

The alleged perpetrators remain at large

UK retail giant M&S restores Click & Collect months after cyber attack, some services still down

Many core offerings now back in action, says retailer

Patches News

Cisco's Secure Firewall Management Center now not-so secure, springs a CVSS 10 RCE hole

Switchzilla's summer of perfect 10s

Fortinet discloses critical bug with working exploit code amid surge in brute-force attempts

If there's smoke?

Research News

'MadeYouReset' HTTP/2 flaw lets attackers DoS servers

Researchers had to notify over 100 vendors of flaw that builds on 2023's Rapid Reset with neat twist past usual mitigations

Poisoned telemetry can turn AIOps into AI Oops, researchers show

Sysadmins, your job is safe

Security News

Someone's poking the bear with infostealers targeting Russian crypto developers

If you wanted to hurt Putin’s ransomware racketeers, these info-stealing npm packages are one way to do it

P2P payment service Zelle sued for enabling payment fraud hell

PLUS: Kryptos solution up for auction; Canadian parliament springs a leak; Fake crypto lawyers; And more

Election workers fear threats and intimidation without feds' support in 2026

'Hope for the best, but prepare for the worst,' one tells The Reg

LLM chatbots trivial to weaponize for data theft, say boffins

System prompt engineering turns benign AI assistants into 'investigator' and 'detective' roles that bypass privacy guardrails

Should UK.gov save money by looking for open source alternatives to Microsoft? You decide

As £9 billion MoU sparks debate about value for money, it's time to have your say

Lock down your critical infrastructure, CISA begs admins

The agency offered some tips for operational technology environments, where attacks are rising

BtcTurk suspends operations amid alleged $49M hot wallet heist

Turkish exchange is the latest victim of a recent spate of major crypto thefts

Stock in the Channel pulls website amid cyberattack

Intruders accessed important systems but tells customers their data is safe

The £9 billion question: To Microsoft or not to Microsoft?

Are UK taxpayers getting real value from SPA24 — or just high cost convenience?

Crooks can't let go: Active attacks target Office vuln patched 8 years ago

CVE-2017-11882 in discontinued Equation Editor still attracting keylogger campaigns despite software being killed off in 2018

UK expands police facial recognition rollout with 10 new vans heading to a town near you

Seven additional regions across England will now have access to the controversial tech

Marc Andreessen wades into the UK's Online Safety Act furor

Shock news: billionaire techpreneur is not a fan

Microsoft wares may be UK public sector's only viable option

For now at least, even though government buying can improve, open source is not all it's cracked up to be

Secure chat darling Matrix admits pair of 'high severity' protocol flaws need painful fixes

Foundation warns federated servers face biggest risk, but single-instance users can take their time

Microsoft's Patch Tuesday baker's dozen: 12 critical bugs plus a SharePoint RCE

None under active exploit…yet

Major outage at Pennsylvania Attorney General's Office blamed on 'cyber incident'

Website, emails, and phones are down for a second day

Hyundai: Want cyber-secure car locks? That'll be £49, please

Automaker's answer to spate of car thefts is to charge customers for extra

The White House could end UK's decade-long fight to bust encryption

Home Office officials reportedly concede Brit government on back foot as Trump moves to protect US Big Tech players

Wikimedia Foundation loses first court battle to swerve Online Safety Act regulation

But it can contest if it lands up in 'Category 1,' and the move hurts operations, says judge

Intel chief Lip-Bu Tan to visit White House after Trump calls for him to step down

Amid hints by president he may announce 100% tariffs on imported chips, semiconductors

Your CV is not fit for the 21st century – time to get it up to scratch

And yes, that means (retch) catering to AI searchers

Unleashing the power of NotebookLM: Your AI research and learning companion

ebook

State of CPS Security: Healthcare Exposures 2025

Report

This email was sent to kh6jrm@gmail.com
You can update your preferences or unsubscribe
Situation Publishing Ltd, 315 Montgomery Street, 9th & 10th Floors, San Francisco, CA 94104, USA
The Register and its contents are Copyright © 2025 Situation Publishing. All rights reserved.
Privacy Policy

Comments