Items tagged with security
Discord has committed to a global rollout of "teen-by-default" settings. That means users who change some specific settings or attempt to access age-restricted content on the platform, may be prompted to verify their age. Discord age...
Read more...
Researchers at the security firm iVerify have discovered a new piece of malware dubbed ZeroDayRAT, which can be used to compromise both Android and iOS devices. The company describes it as a “complete mobile compromise toolkit” typically...
Read more...
Microsoft hasn't had an easy time with Windows 11 updates as of late, but in an unexpected move, the company just offered a very thoughtful, uncontroversial addition to Windows 11—the popular Sysmon (System Monitor) utility, which launched...
Read more...
As terrifying proof of how much artificial intelligence can compress the cyberattack lifecycle, researchers have documented a real-world AWS cloud intrusion that went from a simple credential leak to full administrative control in under 10...
Read more...
Microsoft Office is victim to a critical zero-day exploit, and Russian hacker groups are already weaponizing it in destabilizing efforts toward the Ukrainian government. While Westerners and most other readers likely have less to worry...
Read more...
Notepad++ reported that its built-in auto-update feature had been hijacked by Chinese state-sponsored hackers from June to September of 2025, and the credentials gathered by the bas actors enabled further exploits until December 2nd, 2025...
Read more...
Google has a deeply-vested interest in cybersecurity and unparalleled resources to take down bad actors. The latest target on Google's kill list was a malicious proxy network called IPIDEA, and through coordinated efforts inside and...
Read more...
An AI-powered toy company exposed more than 50,000 private chat logs between children and its products after leaving a web console almost completely unsecured. According to WIRED, anyone with a Gmail account could access transcripts of...
Read more...
Remember the WinRAR path handling exploit we reported on back in August? According to Google, that same flaw, officially dubbed CVE-2025-8088, is still being actively exploited, even though versions of WinRAR newer than v7.12 have been...
Read more...
SoundCloud, best known as a home to indie musicians including the popular "SoundClown" comedy remixers, has been hit with a major data breach that includes the avatars, email addresses, names, usernames, locations, and profile statistics...
Read more...
Beware, a sneaky new variation of the homogaph phishing method is proving yet again that what you see isn't always what you get. Cybercriminals are using a nearly invisible typographical trick to impersonate Microsoft and Marriott websites...
Read more...
Nike confirmed it is investigating a possible data breach that, if verified, could lead to an influx of counterfeit products based on authentic designs. The notorious ransomware gang known as World Leaks claims to have stolen more than 1.4...
Read more...
Like the winter storm currently raging across the United States, a chilling wave of cybersecurity alarms is making the rounds as well. And with over 149 million users impacted across major email providers, Meta-owned Facebook & Instagram...
Read more...
Microsoft has confirmed that it provided BitLocker recovery keys to the FBI in response to a valid legal order, giving investigators the ability to decrypt hard drives that would otherwise have been unreadable. In the case reported by...
Read more...
Update 1/23:
A Google spokesperson reached out to us and provided the following statement on this story: “Based on our current detection, no apps containing this malware are found on Google Play. Android users are automatically protected...
Read more...
A few weeks ago, we covered DarkSpectre, a threat actor responsible for running numerous spyware campaigns that, combined, infected a total of at least 8.8 million Google Chrome, Mozilla FireFox, and Microsoft Edge users. One of the key...
Read more...
Talk about a monumental security lapse: American retail giant Target has found its proprietary source code exposed on the dark web, as current and former employees close to the matter confirm the authenticity of the nearly 900GB data leak...
Read more...
Phishing scammers are getting really good at obtaining your personal information via a sophisticated method called Browser-in-Browser (BitB). To wit, a surge of Facebook BitB attacks are hitting unwitting users, but here's how to detect...
Read more...
The security research team at iVerify Threat Intelligence have discovered a new Remote Access Trojan (RAT) that has been dubbed Cellik, and which is targeting Android users. It includes features typically seen on advanced spyware and...
Read more...
Bah, humbug! Another Google tool has just been sunsetted, as Scrooge McGoogle has announced the immediate wind-down of its 'dark web report' feature, a free tool designed to alert users when their personal information is compromised and...
Read more...
Anyone who owns a modern or even semi-modern iPhone or iPad should stop what they're doing and urgently apply Apple's newly released iOS 26.2 update, as it's packed with over two dozen security patches, including multiple ones that are...
Read more...
The holidays may be upon us, but that isn’t slowing down threat actors. Zimperium’s zlabs research team has discovered a new piece of malware targeting Android users, dubbed DroidLock, that aims to completely hijack a device and enable the...
Read more...
