Fake job applications pack malware that kills EDR before stealing data
Russian-speaking attackers lure HR staff into downloading ISO files that disable defenses
Research10 Mar 2026 | 6
Security
Ericsson blames vendor vishing slip-up for breach exposing thousands of records
Crooks used simple phone scam to compromise vendor account, spilling personal and financial data belonging to more than 15,000 people
Cyber-crime10 Mar 2026 | 2
Protecting democracy means democratizing cybersecurity. Bring on the hackers
Opinion Digital freedom needs a Kali Linux for the rest of us
Security10 Mar 2026 | 2
Polish cops bust alleged teen DDoS kit sellers – youngest just 12
Kids profited from tools used to attack popular websites, say officials
Cyber-crime10 Mar 2026 | 10
AI vs AI: Agent hacked McKinsey's chatbot and gained full read-write access in just two hours
David and Goliath…but with AI agents
Security09 Mar 2026 | 13
ShinyHunters claims more high-profile victims in latest Salesforce customers data heist
And they abused a Mandiant-developed open source tool in the attacks
Cyber-crime09 Mar 2026 |
EV charger biz ELECQ zapped by ransomware crooks, customer contact data stolen
Exclusive An attack on the company’s AWS platform may have exposed customers' names and home addresses
Cyber-crime09 Mar 2026 | 13
Dutch cops warn 100 alleged scammers: Turn yourselves in or we tell Grandma
Two-week deadline to fraudsters to fess up or have their faces plastered across every screen in the country
Security09 Mar 2026 | 19
Russian cybercrims phish their way into officials' Signal and WhatsApp accounts
Dutch spies flag large-scale campaign to hijack secure messaging accounts
Cyber-crime09 Mar 2026 | 11
Microsoft Azure CTO set Claude on his 1986 Apple II code, says it found vulns
This isn't just a nostalgia trip – billions of legacy microcontrollers may be at risk
AI + ML09 Mar 2026 | 42
Royal Navy races to arm ships against drone threat
Britain's Ministry of Defence wants a counter-drone system designed, contracted, and delivered within weeks
Edge + IoT09 Mar 2026 | 103
Iran is the first out-loud cyberwar the US has fought
Kettle Cyber is no longer the hush-hush thing it used to be, as team Trump invades Iran with hackers taking the lead
Security09 Mar 2026 | 26
FBI is investigating breach that may have hit its wiretapping tools
Infosec In Brief PLUS: Europol takes down two crime gangs; LastPass users phished (again); Crooks increase crypto hauls; And more
Security08 Mar 2026 | 8
AI agents now help attackers, including North Korea, manage their drudge work
interview Crims 'will do what gets them their objective easiest and fastest,' Microsoft threat intel boss tells The Reg
Security08 Mar 2026 | 8
Firefox taps Anthropic AI bug hunter, but rancid RAM still flipping bits
Now if only device makers would deliver higher quality components
AI + ML06 Mar 2026 | 32
Spyware disguised as emergency-alert app sent to Israeli smartphones
Steals SMS messages, location data, contacts … and delivers it to Hamas-linked crew
Cyber-crime06 Mar 2026 | 26
Cisco warns of two more SD-WAN bugs under active attack
Switchzilla says flaws could allow file overwrites or privilege escalation
Cyber-crime06 Mar 2026 | 4
Microsoft spots ClickFix campaign getting users to self-pwn on Windows Terminal
Crooks tweak familiar copy-paste ruse so that victims run malicious commands themselves
Cyber-crime06 Mar 2026 | 4
Son of government contractor arrested after alleged $46M crypto heist from US Marshals
FBI and French GIGN swoop on Saint Martin, John Daghita in cuffs
Security06 Mar 2026 | 6
Microsoft finally gets around to fixing Windows 10 Recovery Environment after breaking it in October
Released from the curse of the update bork fairy
OSes06 Mar 2026 | 10
Popular
FBI is investigating breach that may have hit its wiretapping tools
Infosec In Brief PLUS: Europol takes down two crime gangs; LastPass users phished (again); Crooks increase crypto hauls; And more
Microsoft Azure CTO set Claude on his 1986 Apple II code, says it found vulns
This isn't just a nostalgia trip – billions of legacy microcontrollers may be at risk
Iran is the first out-loud cyberwar the US has fought
Kettle Cyber is no longer the hush-hush thing it used to be, as team Trump invades Iran with hackers taking the lead
AI vs AI: Agent hacked McKinsey's chatbot and gained full read-write access in just two hours
David and Goliath…but with AI agents
Bug that wiped customer data saved the day – and a contract
Who, Me? Ignorance really was the way to achieve bliss
LibreOffice learns to speak Markdown in version 26.2
Plain-text fans rejoice as Writer gains native CommonMark import and export
Royal Navy races to arm ships against drone threat
Britain's Ministry of Defence wants a counter-drone system designed, contracted, and delivered within weeks
Microsoft 365 confirms new premium tier, stuffed with AI and few discounts
E7 arrives with a hefty price. Got to keep those shareholders happy
MariaDB backs down on Galera removal after community outcry
But questions remain over long-term commitment to clustering tech in open source
ShinyHunters claims more high-profile victims in latest Salesforce customers data heist
And they abused a Mandiant-developed open source tool in the attacks
STORIES
Transport for London says 2024 breach affected 7M customers, not 5,000
Attackers accessed systems holding data tied to millions of Oyster and contactless users
Cyber-crime06 Mar 2026 | 12
Google says spyware makers and China-linked groups dominated zero-day attacks last year
Of the 90 zero-days GTIG tracked in 2025, 43 hit enterprise tech
Security05 Mar 2026 | 2
Iran intelligence backdoored US bank, airport, software outfit networks
MOIS-linked MuddyWater crew has a new, custom implant
Cyber-crime05 Mar 2026 | 18
UK watchdog eyes Meta's smart glasses after workers say they 'see everything'
Contractors tasked with improving AI reportedly had access to intimate footage captured through wearables
Security05 Mar 2026 | 112
'Hundreds' of Iranian hacking attempts have hit surveillance cameras since the missile strikes
Attack infrastructure attributed to 'several Iran-nexus threat actors'
Cyber-crime04 Mar 2026 | 33
Malware-laced OpenClaw installers get Bing AI search boost
Think before you download
Cyber-crime04 Mar 2026 | 6
LexisNexis confirms data breach at Legal & Professional arm, some customer records affected
Crooks claim 2 GB haul from AWS instance via React2Shell exploit
Cyber-crime04 Mar 2026 | 8
Kaspersky dismisses claims Coruna iPhone exploit kit is connected to NSA-linked operation
Follows suggestions iPhone-pwning toolset bears hallmarks of zero-days that targeted Russian diplomats
Security04 Mar 2026 | 8
Google feels the need for security speed, so will ship Chrome updates every two weeks
Retains eight-weekly Extended Stable releases but warns fortnightly updates are the best way to stay safe
Software04 Mar 2026 | 18
Dev stunned by $82K Gemini bill after unknown API key thief goes to town
Probably not an isolated incident only as researchers have already found 2,863 live API keys exposed
Security03 Mar 2026 | 44
Chat at your own risk! Data brokers are selling deeply personal bot transcripts
AI conversations for sale include sensitive health and legal details
AI + ML03 Mar 2026 | 13
Cyberwarriors elevated to big leagues in US war with Iran
No more hiding in the server closet: Cyber ops mentioned alongside kinetic warfare as critical to conflict
Security03 Mar 2026 | 13
Turns out most cybercriminals are old enough to know better
Law enforcement data shows profit-driven cybercrime is dominated by 35- to 44-year-olds, not script kiddies
Cyber-crime03 Mar 2026 | 15
Until last month, attackers could've stolen info from Perplexity Comet users just by sending a calendar invite
AI browsing agent left local files open for the taking
Research03 Mar 2026 | 4
Chrome Gemini panel became privilege escalator for rogue extensions
High-severity flaw let malicious add-ons access system via browser's embedded AI feature
Security03 Mar 2026 | 4
Cybercriminals swipe 15.8M medical records from French doctors ministry
Third-party software supplier breached leading to leak of notes
Cyber-crime03 Mar 2026 | 4
Gamers furious as indie studio Cloud Imperium quietly admits to data breach
Slow disclosure and odd reassurance that exposing names and contact details won't be a problem isn't going down well
Security03 Mar 2026 | 39
Phish of the day: Microsoft OAuth scams abuse redirects for malware delivery
Crims hope for payday from malicious payloads rather than stealing access tokens
Security03 Mar 2026 | 3
Iran's cyberwar has begun
'Expect elevated activity for the foreseeable future'
Cyber-crime02 Mar 2026 | 14
UK businesses told to brace cyber defenses amid Iran conflict risk
NCSC urges all to review posture as escalating tensions increase risk of indirect digital spillover
Cyber-crime02 Mar 2026 | 5
Memory scalpers hunt scarce DRAM with bot blitz
We can remember it for you wholesale, and sell it back to you for big bucks
Security02 Mar 2026 | 13
Scammers try to SIM-swap Dubai citizens hours after Iranian missile strikes
Vulnerable citizens targeted by criminals purporting to represent fake police crisis department
Cyber-crime02 Mar 2026 | 6
UK government's Vulnerability Monitoring System is working - fixes flow far faster
Infosec In Brief PLUS: Firefox adds XSS protection; Leadership turnover at CISA; FTC exempts some data collection
Security02 Mar 2026 | 4
South Korea’s tax office apologizes for leaking seed phrase to seized crypto
Went from triumph at having busted tax dodgers to embarrassment at losing the proceeds
Cyber-crime02 Mar 2026 | 5
Denizens of DEF CON are 'fed up with government'
Interview Jake Braun thinks hackers need to create a 'Digital arsenal of democracy' to defend us all
Research28 Feb 2026 | 65
Double whammy: Steaelite RAT bundles data theft, ransomware in one evil tool
Credential and cryptocurrency theft, live surveillance, ransomware - an attacker's Swiss Army knife
Cyber-crime27 Feb 2026 |
Suspected Nork digital intruders caught breaking into US healthcare, education orgs
Who is knocking at the Dohdoor?
Cyber-crime27 Feb 2026 | 3
Ransomware payments cratered in 2025, but attacks surged to record highs
Smaller crews piled in as old names splintered and rebranded
Research27 Feb 2026 | 5
French DIY etailer ManoMano admits customer data stolen
Updated Crooks claim they helped themselves to over 37M accounts during January hit on subcontractor
Cyber-crime27 Feb 2026 | 9
Cops back Dutch telco Odido after second wave of ShinyHunters leaks
Company refuses to pay ransom as attackers threaten larger daily dumps
Cyber-crime27 Feb 2026 | 6
Rapid AI-driven development makes security unattainable, warns Veracode
Report claims more vulnerabilities created than fixed as remediation gap widens
Software26 Feb 2026 | 13
Scattered Lapsus$ Hunters auditioning female voices to sharpen social engineering
Telegram posts promise up to $1,000 per call as gang refines IT helpdesk ruse
Cyber-crime26 Feb 2026 | 4
Five Eyes warn: Patch your Cisco SD-WAN or risk root takeover
A rare joint alert from all five spy agencies means serious business
Networks26 Feb 2026 | 10
Claude collaboration tools left the door wide open to remote code execution
Anthropic fixed the flaws – but the AI-enabled attack surfaces remain
Research26 Feb 2026 | 4
Google catches Beijing spies using Sheets to spread espionage across 4 continents
UNC2814 historically targets governments and telcos
Cyber-crime25 Feb 2026 | 8
Fake 'interview' repos lure Next.js devs into running secret-stealing malware
Come for the coding test, stay for the C2 traffic
Security25 Feb 2026 | 4
Ex-L3Harris exec jailed 7 years for selling exploits to Russia
Former Trenchant manager profited millions from cyber tools reserved for the US
Cyber-crime25 Feb 2026 | 8
Wynn Resorts takes attacker's word for it that stolen staff data was deleted
Security pros question assurances as company offers staff credit monitoring
Cyber-crime25 Feb 2026 | 6
OpenAI says Chinese cops used ChatGPT to plan and track smear ops against opponents
Note to secret agents: ChatGPT is NOT a private diary
Cyber-crime25 Feb 2026 | 7
Threat intelligence supply chain is full of weak links, researchers find
And they're being stressed by geopolitical concerns that threaten to slow important data-sharing efforts
Research25 Feb 2026 | 3
AI has gotten good at finding bugs, not so good at swatting them
Discovery is getting cheaper. Validation and patching aren’t
Security24 Feb 2026 |
Patch these 4 critical, make-me-root SolarWinds bugs ASAP
SolarWinds + file transfer software = what attackers' dreams are made of
Patches24 Feb 2026 | 3
North Korea's Lazarus Group targets healthcare orgs with Medusa ransomware
New ransomware of choice, same critical targets
Cyber-crime24 Feb 2026 | 3
Go library maintainer brands GitHub's Dependabot a 'noise machine'
When a one-line fix triggers thousands of PRs, something's off
Devops24 Feb 2026 | 15
UK data watchdog fines Reddit £14.47M for letting kids slip past the gate
Social media giant retorts it doesn't want to collect 'private' data, and plans to appeal
Security24 Feb 2026 | 26
Korean cops charge teens over bike hire breach that exposed data on 4.62M riders
Public prosecutor mulls sentencing following investigations into two separate attacks
Cyber-crime24 Feb 2026 | 4
UK tech hit by double trouble: Fewer foreign techies amid skills squeeze
Visa applications down, executives emigrating, and AI blamed for the rest
AI + ML24 Feb 2026 | 84
Euro allies aiming to rapidly build low-cost air defense weapons
We like our surface-to-air weapons affordable
Security24 Feb 2026 | 31
Infosec community panics as Anthropic rolls out Claude code security checker
ai-pocalypse Not the first of its kind
Security23 Feb 2026 | 17
Global regulators say AI image tools don't get a free pass on privacy rules
Watchdogs warn models that can generate realistic images of people must comply with data protection laws
AI + ML23 Feb 2026 | 5
Break free of Ring's servers, earn a five-figure bounty
Goal is to run software locally and stream only to owners' computers
Security23 Feb 2026 | 49
Suspected Anonymous members detained in Spain over post-flood DDoS blitz
Quartet accused of attacking public institutions, claiming the government was responsible for 2024 tragedy
Cyber-crime23 Feb 2026 | 3
AWS says more than 600 FortiGate firewalls hit in AI-augmented campaign
Off-the-shelf tools helped Russian-speaking cybercrime group run riot
Cyber-crime23 Feb 2026 | 6
Every day in every way, passwords are getting worse and worse
opinion The only good password is no password at all
Security23 Feb 2026 | 92
Attacker gets into France's database listing all bank accounts, makes off with 1.2 million records
Infosec In Brief PLUS: Unpatched Ivanti boxes under attack; 0APT might not be a scam; AI gets better at helping cyber-scum; And more
Security22 Feb 2026 | 39
UK council faces data breach claim after mishandling trans complaints
Confidential complainant details passed to local politician following debate
Security22 Feb 2026 | 58
PayPal app code error leaked personal info and a 'few' unauthorized transactions
About 100 customers affected
Cyber-crime20 Feb 2026 | 15
AI coding assistant Cline compromised to create more OpenClaw chaos
4K unintended installs in very odd supply chain attack
Security20 Feb 2026 | 7
ShinyHunters demands $1.5M not to leak Vegas casino and resort chain data
What happens in Vegas…
Cyber-crime20 Feb 2026 | 11
Ukrainian gets five years for helping North Koreans secure US tech jobs
Polish arrest leads to extradition and federal prison sentence
Cyber-crime20 Feb 2026 | 3
Founder ditches AWS for Euro stack, finds sovereignty isn't plug-and-play
Attempt to go 'Made in EU' offers big tech escapees a reality check where lower cloud bills come with higher effort
PaaS + IaaS20 Feb 2026 | 77
CISA gives federal agencies three days to patch actively exploited Dell bug
Hardcoded credential flaw in RecoverPoint already abused in espionage campaign
Patches20 Feb 2026 | 5
Ex-Google engineers accused of helping themselves to chip security secrets
Feds say trio conspired to siphon processor and cryptography IP, allegedly routing some data overseas
Systems20 Feb 2026 | 8
Attackers have 16-digit card numbers, expiry dates, but not names. Now org gets £500k fine
Appeals judge overrules lower tribunal in latest battle of ICO against a breached retail giant
Security20 Feb 2026 | 70
Snyk CEO bails, wants someone with more AI experience to replace him
Skill at buzzword bingo also required as company seeks innovative and disruptive visionary
Security20 Feb 2026 | 15
AI agents abound, unbound by rules or safety disclosures
MIT CSAIL's 2025 AI Agent Index puts opaque automated systems under the microscope
AI + ML20 Feb 2026 | 11
Crims create fake remote management vendor that actually sells a RAT
$300 a month buys you a backdoor that looks like legit software
Cyber-crime19 Feb 2026 | 13
Crims hit a $20M jackpot via malware-stuffed ATMs
FBI warns these cyber-physical attacks are on the rise
Cyber-crime19 Feb 2026 | 17
Android malware taps Gemini to navigate infected devices
For now, it might not function outside of a lab
Research19 Feb 2026 | 7
DEF CON bans three Epstein-linked men from future events
Emails show all discussed networking and biz interests with the sex offender throughout the 2010s
Security19 Feb 2026 | 32
UK to demand social platforms take down abusive intimate images within 48 hours
'Why not 12?' says lawyer
AI + ML19 Feb 2026 | 72
Healthcare security: Write login details on whiteboard, hope for the best
Bork!Bork!Bork! You told me not to write it on a Post-it...
Security19 Feb 2026 | 35
Poland bans camera-packing cars made in China from military bases
Dell, however, is welcome to help build a local-language LLM
Security19 Feb 2026 | 55
Adidas investigates third-party data breach after criminals claim they pwned the sportswear giant
'Potential data protection incident' at an 'independent licensing partner,' we're told
Cyber-crime18 Feb 2026 | 3
ShinyHunters claims it drove off with 1.7M CarGurus records
updated Latest in a rash of grab-and-leak data incidents
Cyber-crime18 Feb 2026 |
Fraudster hacked hotel system, paid 1 cent for luxury rooms, Spanish cops say
'First time we have detected a crime using this method,' cops say
Cyber-crime18 Feb 2026 | 19
Texas sues TP-Link over China links and security vulnerabilities
State disputes the company's claim that its routers are made in Vietnam
Security18 Feb 2026 | 17
Deutsche Bahn back on track after DDoS yanks the brakes
National rail bookings and timetables disrupted for nearly 24 hours
Cyber-crime18 Feb 2026 | 7
Your AI-generated password isn't random, it just looks that way
Seemingly complex strings are actually highly predictable, crackable within hours
Security18 Feb 2026 | 100
Notepad++ declares hardened update process 'effectively unexploitable'
Miscreants will need to find another avenue for malware shenanigans
Security18 Feb 2026 | 17
Biting the hand that feeds IT
