LATEST NEWS
Google “Won’t Fix” API key staying active for 23 mins after deletion
Deleted Google API keys remain valid for up to 23 minutes after revocation, potentially allowing attackers to continue …
Proton Pass adds new protections for AI agents with account access
A new Proton Pass feature allows users to securely share credentials with AI agents via “AI access tokens,” aiming to reduce …
Trump Mobile exposes data of customers who ordered the T1 phone
Trump Mobile, the wireless carrier and smartphone brand tied to US President Donald Trump, is reportedly exposing sensitive …
Mullvad confirms VPN fingerprinting flaw, says fix is on the way
Mullvad has published an official advisory confirming a fingerprinting issue in its VPN infrastructure that could allow online …
Europol dismantles ‘First VPN’ service used by ransomware gangs
European law enforcement agencies have dismantled a long-running VPN service allegedly used by ransomware gangs and …
Tor launches crowdfunding campaign to support internet freedom projects
The Tor Project has launched a new cryptocurrency-based crowdfunding initiative aimed at supporting internet freedom and …
AI assistants can be hijacked and manipulated by inaudible sounds
Hidden audio commands can hijack AI voice assistants and transcription tools without users hearing anything unusual, according …
Steam removes ‘Beyond The Dark' horror game over malware reports
A malicious game distributed through Steam has been removed from Valve’s platform after users discovered it was secretly …
GitHub confirms internal repository theft as TeamPCP claims attack
GitHub disclosed that it is investigating unauthorized access to its internal repositories after attackers compromised an …
macOS flaw allowed rogue apps to access chat and browser data
Researchers at mobile privacy firm Mysk have disclosed details of a now-patched macOS vulnerability that could allow malicious …
Mozilla hardens Firefox against fingerprinting, adds one-click session wipe
Mozilla has released Firefox 151, introducing new privacy-focused protections for Private Browsing Mode and stronger …
Microsoft’s legacy MSHTA tool heavily abused in malware attacks
Microsoft’s legacy mshta.exe utility remains widely abused in malware campaigns despite the retirement of Internet Explorer and …
Discord enables E2EE by default for all voice and video communications
Discord announced that all voice and video calls on its platform are now protected with end-to-end encryption (E2EE) by …
Poland urges officials to ditch Signal for state-run messaging apps
Poland’s government is urging public-sector organizations to reduce their reliance on Signal for official communications and …
Microsoft: Edge 148 will stop loading cleartext passwords in memory
Microsoft says it is changing how Edge handles saved passwords in memory following public criticism and the release of a …
Mozilla calls on UK to exclude VPNs from age verification rules
Mozilla urged UK regulators not to impose age restrictions on VPN services, warning that such measures would weaken privacy …
Signal begins testing automatic key verification for encrypted chats
Signal has started public testing of a new security feature called “automatic key verification,” designed to simplify …
iodéOS review: Privacy-focused Android that doesn’t get in your way
iodéOS is a privacy-oriented Android operating system developed by the French company iodé, based on the Android Open Source …
