TheRegister's platform is a leading technology news website, offering insights into IT industry news, hardware reviews, and software updates. Through articles, analysis, and opinion pieces, TheRegister offers insights into cybersecurity threats, technology trends, and industry developments. Readers can stay updated with the latest news and analysis from the world of technology and IT business.

The Register

CISA has added CVE-2026-22769, a maximum-severity hardcoded credential flaw in Dell RecoverPoint for Virtual Machines, to its Known Exploited Vulnerabilities catalog, giving federal agencies just three days to patch. The vulnerability has been actively exploited since at least mid-2024 by suspected China-nexus operators (tracked as UNC6201, with links to Silk Typhoon), who used it for lateral movement, persistence, and deploying malware including the Brickstorm backdoor, Grimbolt implant, and Slaystyle. Attackers also deployed 'Ghost NICs' on virtual machines to evade detection. Mandiant has confirmed fewer than a dozen victims so far, though the actual count may be higher.

CISA gives feds 3 days to patch actively exploited Dell bug