LATEST NEWS
Internet Archive Breached Again via Zendesk, Hackers Emailed Users
The Internet Archive has suffered another security breach, this time through its Zendesk support platform, as threat actors …
Chinese Drone Giant DJI Sues U.S. Over Security Threat Label
DJI, the world's largest drone manufacturer, has filed a lawsuit against the U.S. Department of Defense (DoD) in the District …
WhatsApp's Multi-Device Encryption Flaw Allows Device Fingerprinting
Significant privacy vulnerabilities in WhatsApp's device identification mechanisms allow attackers to fingerprint the operating …
ESET Israel Breached: Sends Customers Wiper Malware
ESET's Israeli partner, Comsecure, recently suffered a breach that led to a phishing campaign targeting its customers with …
Microsoft “Poisons” Phishing Data With Fake Creds to Catch Hackers
Microsoft is leveraging an innovative tactic known as “phishing data poisoning” to disrupt phishing attacks at …
Chinese Cybersec Org Calls for Investigation on Intel Security Risks
The China Cyberspace Security Association has called for a thorough investigation into Intel's products due to persistent …
Apple Safari Flaw “HM Surf” Allows Unauthorized Data Access on macOS
Microsoft Threat Intelligence has uncovered a new macOS vulnerability, “HM Surf,” which can bypass Apple's …
Alleged Data Breach at Verizon Exposes Sensitive User Data
A hacker going by the alias “kiberphant0m” has claimed responsibility for breaching Verizon's Push-to-Talk (PTT) …
ClickFix Tactics Fuel Malware Campaigns Across Windows and macOS
A newly identified social engineering campaign, dubbed ClickFix, uses fake Google Meet pages to distribute infostealers and …
‘Anonymous Sudan' Hackers Indicted, DDoS Tool Used in 35k Attacks Seized
The U.S. Department of Justice (DoJ) has indicted two Sudanese nationals for their alleged leadership roles in Anonymous Sudan, …
North Korean Hackers Exploit Microsoft IE Zero-Day in ‘Operation Code on Toast’
AhnLab Security Intelligence Center (ASEC) and the National Cyber Security Center (NCSC) have identified a zero-day …
WebRTC Race Condition Flaw Impacts Major Communication Platforms
A newly published white paper from Enable Security has exposed a critical flaw in WebRTC implementations, particularly in how …
CitizenLab Warns of Severe Flaws in WeChat's Custom Encryption
A CitizenLab report provides the first public analysis of WeChat's MMTLS encryption protocol, revealing several cryptographic …
New iPhone App CellGuard Detects Rogue Base Stations
The Secure Mobile Networking Lab at the Technical University of Darmstadt has launched CellGuard, an open-source iOS app …
Major Flaws Discovered on E2EE Cloud Service Providers Used by Millions
Researchers from ETH Zurich have uncovered severe cryptographic vulnerabilities in several end-to-end encrypted (E2EE) cloud …
FIDO Alliance Unveils New Standards to Secure Passkey Transfers
The FIDO Alliance has released a working draft of new specifications aimed at making the transfer of passkeys and other …
Hacker Leaks Source Code Allegedly Stolen from Mitsubishi Motors
Mitsubishi Motors North America (MMNA) may have suffered a significant data breach after a cybercriminal named …
Pokemon Developer ‘Game Freak' Suffers Data Breach
Tokyo-based game developer Game Freak, known globally for its role in creating the iconic Pokémon franchise, announced that it …