LATEST NEWS
Unpatchable BootROM exploit for Apple A12-A13 chips now public
Security researchers at Paradigm Shift have disclosed usbliter8, a new SecureROM exploit affecting Apple's A12 and A13 …
Texas exposed data of 3 million hunting and fishing license holders
The Texas Parks and Wildlife Department (TPWD) has disclosed a cybersecurity incident affecting its hunting and fishing license …
Proton VPN passes no-logs audit that found no user activity retention
Proton VPN has passed the fifth consecutive independent audit of its no-logs policy, with European security firm Securitum …
Apple fixes Beats Studio Buds flaw that allowed nearby attackers to eavesdrop
Apple has released Beats Firmware Update 1B211 to address a Bluetooth vulnerability affecting Beats Studio Buds that could …
FortiBleed exposed admin credentials for 75,000 Fortinet firewalls worldwide
A newly uncovered cybercrime operation dubbed FortiBleed has exposed administrative credentials for approximately 75,000 …
Moody Bible Institute investigates potential data breach incident
Moody Bible Institute (MBI) says it is investigating claims that its systems were breached after the institution appeared on …
Microsoft warns of USB worm-like malware using Tor for stealth
Microsoft has identified a cryptocurrency clipper malware campaign, active since February 2026, that combines USB-based …
Supply-chain attack injects backdoor on ShapedPlugin WordPress software
A supply-chain attack targeted ShapedPlugin, a WordPress plugin developer with more than 400,000 active installations across …
Canada introduces privacy law with GDPR-like penalties for data breaches
The Canadian government has introduced Bill C-36, a major privacy reform package that would recognize privacy as a fundamental …
Apple’s Hide My Email service will soon be easier to identify and block
Apple has announced plans to consolidate the email domains used by Sign in with Apple and iCloud+ Hide My Email under a new …
Firefox AI Chatbot feature exposed users to email theft risk
A vulnerability in Firefox's AI chatbot integration could allow malicious websites to inject hidden instructions into AI …
Session avoids shutdown as community donations save the project
Session, the decentralized encrypted messaging platform that warned earlier this year it could shut down due to a funding …
Steam Workshop hosts wallpapers with account-stealing malware
Researchers at Kaspersky have uncovered dozens of malicious wallpapers distributed through Steam Workshop that were designed to …
Imaging giant Kodak confirms hackers breached systems and stole data
Kodak says it is investigating a cybersecurity incident after the ShinyHunters extortion group claimed to have stolen more than …
ESET discovers Windows SprySOCKS variant with rootkit capabilities
ESET researchers have uncovered two previously undocumented Windows variants of SprySOCKS, a backdoor previously known only as …
Akira ransomware spotted using LimeWire service for data theft
An Akira ransomware affiliate used Easyupload.io, a file-sharing service operated by LimeWire, to exfiltrate stolen data during …
Supply-chain attack hits OptinMonster plugin used in 1.2 million WordPress sites
A supply-chain attack targeting the WordPress plugins OptinMonster, TrustPulse, and PushEngage exposed more than 1.2 million …
Misconfigured Tor hidden services leak IP addresses and server data
Tor hidden services are designed to conceal a website's real location and IP address, allowing operators to remain anonymous …
