LATEST NEWS
Surfshark infrastructure audit finds TLS config gap and redirect flaw
VPN provider Surfshark has successfully completed a comprehensive infrastructure security audit conducted by Polish …
SoundCloud breach added to HIBP, 29.8 million accounts exposed
The SoundCloud data breach disclosed in December 2025 has now been indexed in Have I Been Pwned (HIBP), confirming that nearly …
WhatsApp denies encryption flaw allegations, calls lawsuit “fiction”
A newly filed lawsuit in the US alleges that WhatsApp’s end-to-end encryption (E2EE) is an illusion, claiming Meta employees …
Microsoft issues emergency fix for actively exploited Office flaw
Microsoft has released an out-of-band security update for Office products to address CVE-2026-21509, a high-severity …
France to replace Zoom and Teams with sovereign platform ‘Visio’
The French government has announced the full rollout of Visio, a domestically developed video conferencing platform that will …
Chrome extensions on the Web Store pose as AI tools to steal user data
Researchers have uncovered two active campaigns involving dozens of malicious Chrome extensions still live on official browser …
New $6,000 malware toolkit Stanley delivers page spoofing via Chrome Web Store
A $6,000 malware toolkit known as “Stanley” is being sold on Russian cybercrime forums, offering a malicious Chrome extension …
Microsoft quietly gave FBI access to BitLocker encryption keys
Microsoft provided the FBI with BitLocker recovery keys to access encrypted data on user devices, revealing a significant …
Session rotates APT signing key ahead of SHA-1 deprecation deadline
The Session team has announced a critical signing key rotation for its APT repositories and GitHub releases, driven by the …
Pwn2Own Automotive 2026 wraps with $1M in payouts and 76 zero-days
The third and final day of Pwn2Own Automotive 2026 concluded with a flurry of successful exploits and bug collisions, pushing …
1Password introduces new built-in phishing protection to fight AI scams
1Password has introduced a new browser-based phishing protection feature to intercept credential theft before it happens, in …
New Mullvad security audit finds no critical flaws or privacy risks
A newly published white-box security audit of Mullvad's account and payment backend services found no high- or …
Pwn2Own Automotive 2026 Day 2 uncovers 29 zero-days, awards $439,250
The second day of Pwn2Own Automotive 2026 concluded with researchers earning an additional $439,250 for discovering 29 new …
AdGuard open-sources its custom VPN protocol ‘TrustTunnel’
AdGuard has officially open-sourced the protocol that powers its VPN service, now named TrustTunnel, marking a major step …
Ireland to legalize spyware and expand state surveillance powers
The Irish government has approved the drafting of a sweeping new surveillance law, the Communications Bill, which expands the …
