The Register
Leading global enterprise tech news site covering software, IT, security, and more
AI Framework Flaws Put Enterprise Clouds at Risk of Takeover
Two critical flaws were discovered in the open‑source AI framework Chainlit, allowing arbitrary file reads (CVE‑2026‑22218) and server‑side request forgery (CVE‑2026‑22219). The vulnerabilities can expose environment variables, API keys and cloud credentials, and enable attackers to forge authentication tokens for full system takeover. Zafran reported the issues to Chainlit, which issued a patched version (2.9.4) in December 2025. Enterprises using Chainlit for production chat‑bots must upgrade immediately to mitigate the risk.
Anthropic Quietly Fixed Flaws in Its Git MCP Server that Allowed for Remote Code Execution
Anthropic has patched three critical flaws in its Git MCP server that could be chained with the Filesystem MCP server to achieve remote code execution via prompt injection. The vulnerabilities – CVE‑2025‑68145 (path‑validation bypass), CVE‑2025‑68143 (unrestricted git_init), and CVE‑2025‑68144 (git_diff...
ERP Isn't Dead yet – but Most Execs Are Planning the Wake
A new Censuswide survey of 4,295 C‑suite leaders shows 70 percent believe traditional ERP’s heyday is over, yet opinions diverge on the next evolution. Thirty‑six percent favor a composable, API‑driven, best‑of‑breed model, while 33 percent back an AI‑agentic ERP that embeds autonomous...
Hiring at India’s Big Four Outsourcers Stalls, as AI Seemingly Makes an Impact
India’s four largest IT outsourcers – HCL, Infosys, TCS and Wipro – have essentially halted hiring in the latest quarter, adding only 3,910 staff year‑to‑date, a stark contrast to their usual 10,000‑plus quarterly hires. Revenue growth remains modest, with HCL...
Experiment Suggests AI Chatbot Would Save Insurance Agents a Whopping 3 Minutes a Day
Researchers at Dakota State University and Safety Insurance built Axlerod, a Gemini‑2.5‑Pro powered chatbot for independent auto‑insurance agents. In controlled tests the tool cut average search‑oriented task time from 7.55 seconds to 5.13 seconds, a 2.42‑second gain per query. Each...
AWS Flips Switch on Euro Cloud as Customers Fret About Digital Sovereignty
Amazon Web Services launched its European Sovereign Cloud to general availability, promising a fully EU‑located environment that is physically and logically separate from other AWS regions. The offering initially includes 90 services spanning compute, storage, networking, security, and AI, and...
CrowdStrike Shareholders Lose Battle to Recoup Losses From 2024 Outage
U.S. District Judge Robert Pitman dismissed a class‑action lawsuit by CrowdStrike shareholders alleging securities fraud over the July 2024 outage. While the court found two statements plausibly misleading, it ruled the plaintiffs did not sufficiently allege scienter, a required element...
Birmingham Pauses Oracle Relaunch to Get Staff on Board
Birmingham City Council has delayed the relaunch of its Oracle Fusion ERP system until at least summer, citing the need for staff to adapt to standard processes. The 2022 go‑live disaster left the council unable to produce auditable accounts and...
Accenture Bets AI Will Ring up Retail Sales with Profitmind Investment
Accenture Ventures has invested in Profitmind, an agent‑based AI platform that automates pricing, inventory and merchandising decisions for retailers. The startup’s technology also creates GEO‑optimized product copy to improve visibility in AI‑driven search. Salesforce research shows AI agents generated $262 billion,...
Bank of England's Oracle Cloud Migration Bill Triples as Project Grinds On
The Bank of England has tripled its spend on Oracle systems integrator Version 1, raising the contract to £21.5 million from an original £7 million tender. The increase reflects a shift from a two‑phase to a multi‑phase Oracle Cloud migration covering finance, procurement,...
Why Colos Are City Slickers and Hyperscalers Are Country Bumpkins
Datacenter location strategies diverge: colocation providers cluster in urban centers to serve latency‑sensitive customers, while hyperscale giants such as Amazon, Google, and Microsoft concentrate massive facilities in low‑density regions with cheaper power and land. A Rice University and Harvard Business...
IBM's AI Agent Bob Easily Duped to Run Malware, Researchers Show
IBM's AI coding assistant Bob, released in a closed‑beta, was shown to be vulnerable to prompt‑injection attacks that let it execute malicious commands. Researchers from PromptArmor demonstrated that both the command‑line interface and the IDE could be tricked into running...
Microsoft Scraps Exchange Online Spam Clamp After Customers Cry Foul
Microsoft has abandoned its planned 2,000‑per‑day external recipient limit for Exchange Online after strong customer pushback. The original 2024 policy aimed to curb spam and compromised accounts by capping outbound emails for new tenants, with a phased rollout to existing...
HSBC App Takes a Dim View of Sideloaded Bitwarden Installations
HSBC’s UK mobile banking app is refusing to run on devices where the open‑source password manager Bitwarden is installed via the F‑Droid sideloading catalog. Customers who installed Bitwarden outside Google Play reported being locked out of the HSBC app. HSBC...
Ring Embraces the End of the World, Starts Using Home Cameras to Track Wildfires
Ring announced Fire Watch, an AI‑driven feature that turns compatible outdoor cameras into wildfire detectors. The service partners with the nonprofit Watch Duty to push real‑time fire alerts to nearby users, with a nationwide rollout planned for spring 2026. Ring...
HackerOne 'Ghosted' Me for Months over $8,500 Bug Bounty, Says Researcher
Researcher Jakub Ciolek disclosed two critical denial‑of‑service vulnerabilities in Argo CD through HackerOne's Internet Bug Bounty (IBB) program, earning an $8,500 reward. Despite CVEs being issued and patches released, HackerOne failed to acknowledge the reports for months, only responding after media...
Claude Devs Complain About Surprise Usage Limits, Anthropic Blames Expiring Bonus
Developers using Anthropic's Claude Code have reported a sudden 60% drop in token usage limits after a holiday‑season bonus expired. Users say the new limits cause accounts to max out within minutes, disrupting development workflows. Anthropic attributes the change to...
AWS Raises GPU Prices 15% on a Saturday, Hopes You Weren't Paying Attention
AWS announced a roughly 15% price increase for its EC2 Capacity Blocks that guarantee GPU capacity for machine‑learning workloads. The p5e.48xlarge instance with eight NVIDIA H200 accelerators rose from $34.61 to $39.80 per hour, and the p5en.48xlarge climbed similarly, with...
Gmail Preparing to Drop POP3 Mail Fetching
Google announced that, starting January 2026, Gmail will discontinue support for POP3 mail fetching and the Gmailify feature that applied Gmail’s spam protection and organization tools to third‑party accounts. The change removes the ability to consolidate external email accounts directly within...
Capita Tells Civil Servants to Wait for Chatbots to Fix Pension Portal Woes
Capita secured a £239 million contract to operate the UK Civil Service Pension Scheme, serving 1.7 million members and managing £189 billion in future benefits. The new pension portal, launched on 1 December 2025, immediately suffered widespread errors, broken links, and placeholder text, prompting user...
New Zealand Orders Review Into ManageMyHealth Cyberattack
New Zealand Health Minister Simeon Brown has ordered a comprehensive review of the cyberattack on private health‑record platform ManageMyHealth, which may have exposed data of 6‑7% of the nation’s 1.85 million users. The breach, claimed by a hacker known as Kazu,...
Safe CEO: AI Is an Assistant, Not a Replacement
Safe Software CEO Don Murray argues that artificial intelligence should be treated as an assistant rather than an authority, especially in high‑stakes fields like engineering. He stresses the necessity of a human‑in‑the‑loop for safety‑critical decisions, noting that current AI accuracy...
ServiceNow Lays Out Possible Co-CEO Structure, but Says No Change Imminent
ServiceNow has amended CEO Bill McDermott’s employment contract, extending his tenure through December 31 2030 and adding the possibility of serving as co‑CEO, executive chairman or non‑executive chairman. The SEC filing emphasizes that no leadership change is imminent and that any role shift...
Tis the Season when Tech Leaders Rub Their Crystal Balls
Leading tech firms Dell, Microsoft, Salesforce, ServiceNow and Snowflake released 2026 AI workplace predictions, emphasizing AI governance, on‑prem deployment, and measurable ROI. Dell forecasts a shift toward private, on‑prem AI factories to ensure security and resilience, while ServiceNow stresses turning...
Oracle's New AI-Enhanced Support Portal Leaves Users Fuming
Oracle launched an AI‑enhanced My Oracle Support (MOS) portal in early December, promising streamlined navigation, AI‑driven search and better knowledge access. Within weeks, customers and support engineers reported missing tickets, broken links, and an inability to locate critical patch notes...
EU Offers UK Early Gift: Data Adequacy Until 2031
The European Commission has renewed its GDPR adequacy decision for the United Kingdom, extending frictionless data transfers until 27 December 2031. The six‑year extension, subject to a review after four years, follows a brief technical extension that prevented a lapse at the...
Europe Gets Serious About Cutting Digital Umbilical Cord with Uncle Sam's Big Tech
Europe remains 90% dependent on U.S. cloud providers, a vulnerability exposed by the CLOUD Act, which can compel American firms to hand over data despite GDPR protections. The legal clash forces European public bodies to reassess their IT strategies, prompting...
Workers Should Control the Means of Agentic Production, Suggests WorkBeaver Boss
WorkBeaver CEO Bars Juhasz argues AI agents should be adopted from the worker’s perspective, not top‑down mandates, to prevent premature layoffs. The no‑code platform lets non‑technical staff automate tasks through a menu‑driven interface and an upcoming version that learns by...
Snowflake Update Caused a Blizzard of Failures Worldwide
Snowflake’s latest release introduced a backwards‑incompatible schema change, causing a major outage that affected 10 of its 23 global regions for about 13 hours. The failure prevented users from executing queries and ingesting data across Azure and AWS data centres...
NHS Tech Supplier Probes Cyberattack on Internal Systems
DXS International, a supplier of NHS digital tools, disclosed a cyber‑attack that targeted its office servers early Sunday. The breach was quickly contained by the company’s IT team, and frontline clinical services, including the ExpertCare platform used by roughly 2,000...