www.theregister.com – Articles Articles from www.theregister.com
- Somebody told DeepSeek to build in-browser ransomware and it gleefully compliedon July 1, 2026 at 7:57 pm
‘The original incomplete DeepSeek sample can be transformed into a fully functional attack with minimal effort,’ Check Point researcher tells The Reg
- Red teamers turned Claude Desktop into a double agent to do their evil biddingon July 1, 2026 at 5:00 pm
People trust their AI assistants and it’s easy to abuse this trust
- Infosec professionals sour on automated pentesting toolson June 30, 2026 at 7:38 pm
29% of security pros were open to fully autonomous pentesting last year; now only 9% are
- Huntress CEO says threat hunter used ‘poor judgment’ in alerting ransomware crim about law enforcement probeon June 30, 2026 at 4:54 pm
Ex-employee claims this ‘meets the definition of an insider threat’
- Microsoft builds a bouncer to keep bots out of Teams meetingson June 30, 2026 at 6:11 am
Allows ISVs to put their names on the door so desirable bots always get in
- India’s central bank mandated use of .bank domains to enhance trust – but its registry leaked sensitive infoon June 30, 2026 at 2:24 am
Open API could reveal everything an attacker needs to impersonate bank officials
- Security researchers tricked LLMs into giving them cocaine recipes by abusing role models for prompt injectionon June 29, 2026 at 11:33 pm
If you want a picture of the future of LLM security, imagine Whac-a-Mole meets Groundhog Day
- Four years into Ukraine invasion, Russia turns influence-ops back to US and Europeon June 29, 2026 at 10:10 pm
Not today, Putin
- Anonymous researcher drops 0-day ‘exploitarium’ repoon June 29, 2026 at 8:29 pm
At least two vulnerabilities are already under attack
- AI may be good at finding security vulnerabilities, but it can’t beat human stupidityon June 29, 2026 at 1:45 pm
You don’t need Mythos or GPT-5.5-Cyber to find a vuln to exploit when the world’s password habits are so sloppy
- Microsoft keeps Windows Server 2022 hotpatching alive into 2027on June 29, 2026 at 1:00 pm
In the Azure Edition, of course
- Nissan says Oracle PeopleSoft break-in may have spilled payroll records, SSNson June 29, 2026 at 11:14 am
Carmaker points finger at an ‘unknown’ flaw as customer fallout continues
- It’s looking like a hot, messy summer for security teams as AI finds countless previously hidden vulnson June 27, 2026 at 6:59 am
Time to start praying to the goddess of wisdom and war
- Even the Secret Service won’t use company-issued phoneson June 26, 2026 at 9:50 pm
Personal cell phones on protective missions, no threat detection on government-issued devices among the litany of sins
- Amazon Q flaw let booby-trapped Git repos execute code, swipe cloud credson June 26, 2026 at 3:34 pm
Researchers warn many AI coding assistants now execute commands from project configurations
- Miasma campaign poisons 20-plus npm packages, hunts for developer secretson June 26, 2026 at 12:18 pm
Microsoft says latest attack targets Leo Platform and RStreams packages, harvesting creds and going after more maintainers
- Security boss thought MFA would be too much securityon June 26, 2026 at 6:30 am
One rule for the workers, another for execs
- Chinese cybersecurity company claims it’s built a better-than-Mythos bug finderon June 26, 2026 at 1:49 am
Qihoo 360, which the US has banned, says it’s needed as a deterrent to weaponized Anthropic models
- Self-destructing Mistic backdoor linked to access broker selling corporate footholds to ransomware gangson June 25, 2026 at 10:26 pm
Spotted in intrusions targeting insurance, education, IT, and professional services sectors
- Ex-Huntress analyst claims company insider fed info to a ransomware crim. Social media drama ensueson June 25, 2026 at 8:36 pm
Former employee accuses company of prioritizing pending IPO over client security
- UK school’s network left wide open for invasion, student foundon June 25, 2026 at 7:00 am
And the admin password was right in the Active Directory description field
- Nation-state actors cracked critical Australian infrastructure to ‘cripple it at a time of their choosing’on June 25, 2026 at 4:31 am
To defuse another attack, Oz spies called foreign counterparts to tell them an op was a bust
- The hits keep on coming for Cisco vulnerabilitieson June 24, 2026 at 10:27 pm
CVE-2026-20230 under exploitation, while an earlier SD-WAN 0-day looks even worse than we thought
- Microsoft uses AI to link two malware operations in racketeering suiton June 24, 2026 at 5:42 pm
200+ C2 servers linked to StealC and Amadey shut down
- London cops bring live facial recognition to West Endon June 24, 2026 at 11:45 am
‘Permanent biometric surveillance of the public square’ incompatible with policing by consent, say critics
- You have got to be KDDI-ng – Japanese telco exposes 14.2 million managed email credentialson June 24, 2026 at 4:56 am
Five ISPs and plenty of users await their fate
- Mythos discovers ‘Squidbleed,’ a memory leak that’s gone undetected since Clinton eraon June 23, 2026 at 6:07 pm
Plus more blasts from the past: NetWare, FTP, and HTTP
- Five Eyes spooks warn AI means infosec incidents can become ‘major operational and financial crises’on June 23, 2026 at 5:29 am
Bosses told to step up and get cybersecurity right
- Sniff out stale AI override advice with this open source CLIon June 23, 2026 at 12:17 am
Package dependencies can create vulnerabilities that are fiendishly hard to find and stamp out
- OpenAI: Yoo-hoo, look over here, we do that security stuff too!on June 22, 2026 at 11:34 pm
A plethora of pwn-prevention, including a ‘Patch The Planet’ pledge




