Items tagged with cybersecurity
In a politically-motivated move, the Federal Communications Commission (FCC) has updated its Covered List of restricted goods to include "all (new) consumer-grade routers produced in foreign countries", citing "unacceptable risks to the...
Read more...
It’s a never-ending game of cat and mouse between attackers and software makers, with the latest salvo being fired against one of Google Chrome’s key security features. Security researchers at Gen Threat Labs have discovered that a piece...
Read more...
FBI Director Kash Patel confirmed in a Senate hearing on Wednesday, "We do purchase commercially available information that's consistent with the Constitution and the laws under the Electronic Communications Privacy Act, and it has led to...
Read more...
Law enforcement agencies have scored a major win against the world’s most predatory botnet operations, dismantling the infrastructure of four major networks responsible for some of the most aggressive cyberattacks in internet history. The...
Read more...
The GlassWorm malware made news when it pivoted from exclusively targeting Windows users to also targeting Mac OS users in January, and in the time since, the malware campaign has spread across at least 413 code repos on npm, VSCode...
Read more...
The security researchers at Kaspersky have detailed a new malware campaign targeting Android users, which aims to take over a victim’s device to abscond with user data while simultaneously putting it work mining cryptocurrencies. This new...
Read more...
LastPass is informing users of an active phishing campaign that started at the beginning of this month, which spoofs official LastPass emails and directs users to a false login page. While directing to a false login page is a common...
Read more...
Even in the world of cyber-criminals, there are some targets that simply won't earn you any admiration. One such case is a cyber attack involving the University of Hawaii's Cancer Center Epidemiology Division, with the data targeted...
Read more...
AirSnitch is a newly-revealed attack on Wi-Fi networks that work across all major router brands and firmwares, including DD-WRT and OpenWrt. In an alarming turn for cybersecurity, researchers revealed a form of Wi-Fi attack that can...
Read more...
The team at Discord introduced some discord to our newsroom today. First, a company representative sent us a statement requiring us to update a previous article on its "Teen-By-Default" policy, and then it turned around and dropped a new...
Read more...
Update 2/24: This article was originally titled "Discord Drops Persona After Users Blast UK Age Checks And Data Practices". Per a statement we received from Discord after publishing, we've altered the title and acknowledge that its trial...
Read more...
iOS users may already be aware of the commercial spyware dubbed Predator, but may not know exactly what it's capable. Fortunately, malware researchers Nir Avraham and Hu Ke have published a detailed write-up on how the Predator spyware...
Read more...
PayPal just disclosed a data breach that exposed sensitive user information, including social security numbers. From July 1st, 2025 to December 12th, 2025, a software glitch in PayPal Working Capital (PPWC) loan applications allowed...
Read more...
Microsoft is addressing nearly 60 CVEs with its upcoming "Patch Tuesday" update for Windows 11, six of which are actively-exploited zero-day vulnerabilities. Per KrebsOnSecurity, the most sever CVEs are CVE-2026-21510, CVE-2026-21513...
Read more...
Discord has committed to a global rollout of "teen-by-default" settings. That means users who change some specific settings or attempt to access age-restricted content on the platform, may be prompted to verify their age. Discord age...
Read more...
Microsoft hasn't had an easy time with Windows 11 updates as of late, but in an unexpected move, the company just offered a very thoughtful, uncontroversial addition to Windows 11—the popular Sysmon (System Monitor) utility, which launched...
Read more...
As terrifying proof of how much artificial intelligence can compress the cyberattack lifecycle, researchers have documented a real-world AWS cloud intrusion that went from a simple credential leak to full administrative control in under 10...
Read more...
Microsoft Office is victim to a critical zero-day exploit, and Russian hacker groups are already weaponizing it in destabilizing efforts toward the Ukrainian government. While Westerners and most other readers likely have less to worry...
Read more...
Notepad++ reported that its built-in auto-update feature had been hijacked by Chinese state-sponsored hackers from June to September of 2025, and the credentials gathered by the bas actors enabled further exploits until December 2nd, 2025...
Read more...
Google has a deeply-vested interest in cybersecurity and unparalleled resources to take down bad actors. The latest target on Google's kill list was a malicious proxy network called IPIDEA, and through coordinated efforts inside and...
Read more...
An AI-powered toy company exposed more than 50,000 private chat logs between children and its products after leaving a web console almost completely unsecured. According to WIRED, anyone with a Gmail account could access transcripts of...
Read more...
Remember the WinRAR path handling exploit we reported on back in August? According to Google, that same flaw, officially dubbed CVE-2025-8088, is still being actively exploited, even though versions of WinRAR newer than v7.12 have been...
Read more...
