News

UK manufacturers under cyber fire with 80% reporting attacks

The Register - Wed, 01/04/2026 - 09:30
ESET says factory outages, lost revenue, and supply chain disruption are becoming routine

Nearly 80 percent of British manufacturers say they've been hit by a cyber incident in the past year, as new research suggests disruption on the factory floor is no longer an exception but business as usual.…

Categories: News

Don't open that WhatsApp message, Microsoft warns

The Register - Tue, 31/03/2026 - 22:18
How to avoid social engineering attacks? Employee training tops the list

Be careful what you click on. Miscreants are abusing WhatsApp messages in a multi-stage attack that delivers malicious Microsoft Installer (MSI) packages, allowing criminals to control victims' machines and access all of their data.…

Categories: News

Iran targets M365 accounts with password-spraying attacks

The Register - Tue, 31/03/2026 - 20:09
Researchers say some targets correlate with cities hit by Iranian missile strikes

Suspected Iran-linked threat actors are conducting password-spraying attacks against hundreds of organizations, primarily Middle Eastern municipalities, in campaigns that security researchers believe may have been aimed at supporting bomb-damage assessment following missile strikes.…

Categories: News

Supply chain blast: Top npm package backdoored to drop dirty RAT on dev machines

The Register - Tue, 31/03/2026 - 11:29
Hijacked maintainer account let attackers slip cross-platform trojan into 100M-downloads-a-week Axios

One of npm's most widely used HTTP client libraries briefly became a malware delivery vehicle after attackers hijacked a maintainer's account and slipped a remote-access trojan (RAT) into two seemingly legitimate axios releases, in what's being described as "one of the most impactful npm supply chain attacks on record."…

Categories: News

OpenAI patches ChatGPT flaw that smuggled data over DNS

The Register - Mon, 30/03/2026 - 20:36
Check Point says outbound controls blocked web traffic but overlooked DNS

OpenAI talks up data security for its AI services, yet Check Point says that ChatGPT allowed data to leak through a DNS side channel before the flaw was fixed.…

Categories: News

Telnyx joins LiteLLM in latest PyPI package poisoning tied to Trivy breach

The Register - Mon, 30/03/2026 - 18:42
Also, EU probes Snapchat, RedLine suspect extradited, AstraZeneca leak claim surfaces, and more

infosec in brief  The cybercrime crew linked to the Trivy supply-chain attack has struck again, this time pushing malicious Telnyx package versions to PyPI in an effort to plant credential-stealing malware on developers’ systems.…

Categories: News

Citrix NetScaler bug exploited in days, may be multiple flaws in a trench coat

The Register - Mon, 30/03/2026 - 14:49
Researchers say attackers are already looting vulnerable boxes

In-the-wild exploitation of a critical Citrix NetScaler bug has begun less than a week after disclosure, with researchers warning that attackers are already poking and pillaging vulnerable boxes.…

Categories: News

European Commission admits attackers broke into public web systems, but says little else

The Register - Mon, 30/03/2026 - 11:15
Brussels notifying 'Union entities' whose data may've been snatched in websites breach

The European Commission has admitted that attackers broke into its public-facing web infrastructure and siphoned off data in a bare-bones disclosure that answers the what but ducks most of the how.…

Categories: News

Security contractor blew the whistle on support crew's viral indifference

The Register - Mon, 30/03/2026 - 08:30
Career-limiting stupidity and rudeness exposed, with terminal consequences

Who, Me?  The week before Easter may be a short one for many in the Reg-reading world, but that won't stop us from opening it with a fresh installment of Who, Me? It's the reader-contributed column in which you share stories of things you did at work that had interesting consequences.…

Categories: News

US foreign router ban criticized for being ‘industrial policy disguised as cybersecurity’

The Register - Mon, 30/03/2026 - 05:31
Public policy professor says it will make America less secure but hits Netgear’s lobbying goals

The United States’ ban on foreign-made SOHO routers won’t improve security, and only makes sense as “industrial policy disguised as cybersecurity,” according to Milton Mueller, Professor at the University of Georgia’s School of Public Policy and founder of its Internet Governance Project.…

Categories: News

AFC Ajax drops ball as flaws let hackers play admin with tickets and bans

The Register - Fri, 27/03/2026 - 12:30
Vulns in Dutch football club's systems didn't just expose data – they let outsiders play with accounts, and even lift stadium bans

Dutch football giant AFC Ajax has admitted to a data breach after an attacker gained access to its internal systems, in an incident that looks less like a stray pass and more like the gates left wide open.…

Categories: News

Iran war drives urgent need  to counter underwater attack drones

The Register - Fri, 27/03/2026 - 11:17
US and UK forces seeking tech tender with an April 3 deadline

The UK and US are looking for technology to counter the threat posed by underwater drones to ships, harbors and other critical maritime infrastructure, and are asking industry for answers.…

Categories: News

Pages

Subscribe to Sec Tec Limited aggregator - News