Cybersecurity editor @theregister.com Contact me with tips: jessica.lyons@theregister.com or jess.825 on Signal Mama bear, book worm, outdoor lover, coffee and wine snob. PNW after decades in Santa Cruz but Blazers fan always.https://bsky.app/profile/jessicalyons.bsky.socialhttps://bsky.app/profile/jessicalyons.bsky.social/post/3mlt4burggs2i“At first, yes, this means more patches and thus more work for admins,” @dustinchilds.bsky.social told me. “The goal over time would be to eliminate as many as possible, and, over time, that monthly number goes down.” https://www.theregister.com/patches/2026/05/14/welcome-to-the-vulnpocalypse-as-vendors-use-ai-to-find-bugs-and-patches-multiply-like-rabbits/524002714 May 2026 15:15 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mlt4burggs2ihttps://bsky.app/profile/jessicalyons.bsky.social/post/3mkqc2sjho22z"I'm concerned about what they are leaving behind: What type of C2 on a sleep cycle is still lingering in these environments?" TrendAI VP Tom Kellermann told me in an exclusive interview about the never-before-seen campaign. https://www.theregister.com/2026/04/30/chinese_spies_lurking_networks/30 Apr 2026 18:55 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mkqc2sjho22zhttps://bsky.app/profile/jessicalyons.bsky.social/post/3mjztpfi2mk2k"Felony murder law does not require that a defendant pull the trigger, only that they commit a dangerous felony that results in death," ex-FBI cyber chief/Halcyon SVP Cynthia Kaiser told lawmakers. https://www.theregister.com/2026/04/21/exfbi_cyber_chief_urges_felony_charges_ransomware/21 Apr 2026 20:39 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mjztpfi2mk2khttps://bsky.app/profile/jessicalyons.bsky.social/post/3mjp3rrintk2pA design flaw – or expected behavior based on a bad design choice, depending on who is telling the story – baked into Anthropic's official Model Context Protocol (MCP) puts as many as 200,000 servers at risk of complete takeover, according to security researchers. https://www.theregister.com/2026/04/16/anthropic_mcp_design_flaw/17 Apr 2026 14:05 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mjp3rrintk2phttps://bsky.app/profile/jessicalyons.bsky.social/post/3mjkuggn3r22pAnthropic surprised the world by declaring that its latest model, Mythos, is so good at bug hunting that it would create chaos if released. Now, with Project Glasswing, 50+ select orgs are testing the hyped up LLM to find holes in their own products. But just how many problems have they discovered? https://www.theregister.com/2026/04/15/project_glasswing_cves/15 Apr 2026 21:42 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mjkuggn3r22phttps://bsky.app/profile/jessicalyons.bsky.social/post/3mjkbgvy2ec2pEXCLUSIVE: Security researchers hijacked three popular AI agents that integrate with GitHub Actions by using a new type of prompt injection attack to steal API keys and access tokens, and the vendors who run agents didn’t disclose the problem. https://www.theregister.com/2026/04/15/claude_gemini_copilot_agents_hijacked/15 Apr 2026 16:03 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mjkbgvy2ec2phttps://bsky.app/profile/jessicalyons.bsky.social/post/3mjfpdmq4ak2pAn unknown malware slinger targeting open source software developers via Slack impersonated a real Linux Foundation official and used pages hosted on Google to steal developers' credentials and take over their systems. https://www.theregister.com/2026/04/13/linux_foundation_social_engineering/13 Apr 2026 20:28 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mjfpdmq4ak2phttps://bsky.app/profile/jessicalyons.bsky.social/post/3mja62ujkfs2pHere's my latest: A tale of two supply-chain attacks. Different attackers, but they both targeted open source software and developer environments and shares similar end goals. https://www.theregister.com/2026/04/11/trivy_axios_supply_chain_attacks/11 Apr 2026 15:36 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mja62ujkfs2phttps://bsky.app/profile/jessicalyons.bsky.social/post/3mj5l22mkhs2pThe struggle is real… [contains quote post or other embedded content]10 Apr 2026 14:50 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mj5l22mkhs2phttps://bsky.app/profile/jessicalyons.bsky.social/post/3mitfku32nc2p"Everybody's glorifying threat actors, and that's not helping our customers or organizations. These are just individuals, they just use computers, and they just want to steal your data and make money. They're not mythical. They don't have superpowers," Trellix VP John Fokker told me. https://www.theregister.com/2026/04/05/trellix_john_fokker_roasting_crims/06 Apr 2026 13:45 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mitfku32nc2phttps://bsky.app/profile/jessicalyons.bsky.social/post/3mijrdfcld22pTens of thousands of people eagerly downloaded the leaked Claude Code source code this week, and hundreds - if not more - of those downloads came with a side of credential-stealing malware. https://www.theregister.com/2026/04/02/trojanized_claude_code_leak_github/02 Apr 2026 17:49 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mijrdfcld22phttps://bsky.app/profile/jessicalyons.bsky.social/post/3mhth3siqv22pWe are seeing a dangerous convergence between supply chain attackers and high-profile extortion groups like Lapsus$," Ben Read, a lead researcher at Wiz, told me via @theregister.com on Tuesday. https://www.theregister.com/2026/03/24/1k_cloud_environments_infected_following/24 Mar 2026 20:47 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mhth3siqv22phttps://bsky.app/profile/jessicalyons.bsky.social/post/3mhdpgnbzi22p“We can remove their navy. We can remove their air power. We can attack them across all instruments of power, diplomatic, information, military, and economic. And they'll still have the ability to hack," retired US Army Lt. Gen. Ross Coffman told me via @theregister.com https://www.theregister.com/2026/03/18/irans_cyberattack_against_stryker/18 Mar 2026 14:34 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mhdpgnbzi22phttps://bsky.app/profile/jessicalyons.bsky.social/post/3mgusyqdqp22aBREAKING: FBI, international cops take down SocksEscort, a residential proxy service used by criminals to compromise hundreds of thousands of routers worldwide. FBI Deputy Assistant Director Jason Bilnoski spoke exclusively to @theregister.com about the disruption. https://www.theregister.com/2026/03/12/socksescort_fraud_proxy_taken_down_fbi/12 Mar 2026 16:28 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mgusyqdqp22ahttps://bsky.app/profile/jessicalyons.bsky.social/post/3mgprmkcixc2qIt's good to be back with @theregister.com Kettle! Give us a listen and subscribe on Apple podcasts, Spotify, whatever podcast platform you like. [contains quote post or other embedded content]10 Mar 2026 16:20 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mgprmkcixc2qhttps://bsky.app/profile/jessicalyons.bsky.social/post/3mgprg5w6w22qResearchers at red-team security startup CodeWall told us their AI agent hacked McKinsey's internal AI platform and gained full read and write access to the chatbot in just two hours. https://www.theregister.com/2026/03/09/mckinsey_ai_chatbot_hacked/10 Mar 2026 16:16 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mgprg5w6w22qhttps://bsky.app/profile/jessicalyons.bsky.social/post/3mgnlf6g3ss2qShinyHunters told me via @theregister.com that the extorion crew has stolen data from about 100 high-profile companies in its latest Salesforce customer data heist, including Salesforce itself. https://www.theregister.com/2026/03/09/shinyhunters_claims_more_highprofile_victims/09 Mar 2026 19:23 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mgnlf6g3ss2qhttps://bsky.app/profile/jessicalyons.bsky.social/post/3mg6w5sgtn22qA developer says their company is on the hook for more than $82,000 in unauthorized charges after a stolen Google Gemini API key racked massive usage costs up in just 48 hours. https://www.theregister.com/2026/03/03/gemini_api_key_82314_dollar_charge/03 Mar 2026 23:26 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mg6w5sgtn22qhttps://bsky.app/profile/jessicalyons.bsky.social/post/3mg43l26ygc2pThinking back to Ben Franklin, we saw society moving in the right direction for the last 500 years because of our commitment to science, human rights, etc., and that seems to be at the very least slowing down, if not reversing,” Jake Braun told me via The Register. https://www.theregister.com/2026/02/28/def_con_jake_braun_fed_up_govt/02 Mar 2026 20:25 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mg43l26ygc2phttps://bsky.app/profile/jessicalyons.bsky.social/post/3mfsbq5kpbk2pwell this is bullshit https://www.nytimes.com/2026/02/26/technology/hateaid-online-abuse-free-speech-europe.html26 Feb 2026 22:48 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mfsbq5kpbk2phttps://bsky.app/profile/jessicalyons.bsky.social/post/3mfktilpwr22pTwo US residents have sued several Homeland Security agencies and officials, including Secretary Kristi Noem, for allegedly using surveillance tools to harass them, branding them as "domestic terrorists," and even showing up at their homes based on license-plate recognition. https://www.theregister.com/2026/02/23/americans_sue_homeland_security_over/23 Feb 2026 23:45 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mfktilpwr22phttps://bsky.app/profile/jessicalyons.bsky.social/post/3mf6c4dmimk2aBREAKING: Adidas has confirmed it is investigating a third-party breach at one of its partner companies after digital thieves claimed they stole information and technical data from the German sportswear giant. https://www.theregister.com/2026/02/18/adidas_investigates_thirdparty_data_breach/19 Feb 2026 00:02 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mf6c4dmimk2ahttps://bsky.app/profile/jessicalyons.bsky.social/post/3mf6bhf463c2aCarGurus allegedly suffered a data breach with 1.7 million corporate records stolen, according to a notorious cybercrime crew that posted the online vehicle marketplace on its leak site on Wednesday. https://www.theregister.com/2026/02/18/shinyhunters_cargurus_breach/18 Feb 2026 23:50 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mf6bhf463c2ahttps://bsky.app/profile/jessicalyons.bsky.social/post/3meoyp642oc2aYour supervisor may like using employee monitoring apps to keep tabs on you, but crims like the snooping software even more. Threat actors are now using legit bossware to blend into corporate networks and attempt ransomware deployment. HT: @huntress.com security operations analyst Michael Tigges https://www.theregister.com/2026/02/12/ransomware_slingers_bossware/12 Feb 2026 22:03 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3meoyp642oc2ahttps://bsky.app/profile/jessicalyons.bsky.social/post/3meocxe552s2aDon't be evil, Google https://theintercept.com/2026/02/10/google-ice-subpoena-student-journalist/12 Feb 2026 15:34 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3meocxe552s2ahttps://bsky.app/profile/jessicalyons.bsky.social/post/3melvfvv6222aEXCLUSIVE: I spoke with Binary Defense lead threat hunter John Dwyer about a new type of payroll scam where attackers call the help desk, force an MFA token reset, and use the org's own VDI to access HR platforms and reroute paychecks. As John told me: "Every employee on earth becomes a target." https://www.theregister.com/2026/02/11/payroll_pirates_business_social_engineering/11 Feb 2026 16:27 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3melvfvv6222ahttps://bsky.app/profile/jessicalyons.bsky.social/post/3me55a4bcrk2aA digital intruder broke into an AWS cloud environment and in just under 10 minutes went from initial access to administrative privileges, thanks to an AI speed assist. https://www.theregister.com/2026/02/04/aws_cloud_breakin_ai_assist/05 Feb 2026 19:37 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3me55a4bcrk2ahttps://bsky.app/profile/jessicalyons.bsky.social/post/3mdy6adb2x22aBest thing I've read all day. https://nesbitt.io/2026/02/03/incident-report-cve-2024-yikes.html03 Feb 2026 20:11 +0000at://did:plc:7wlyiuoythympa6jws4bgdkp/app.bsky.feed.post/3mdy6adb2x22a