LATEST NEWS
Malwarebytes VPNs audit uncovers critical flaws, fixes underway
Malwarebytes has completed the first independent security audit of its Privacy VPN infrastructure, revealing a generally strong …
Samsung Galaxy S25 ships browser vulnerable to RCE and XSS attacks
Researchers have demonstrated a remote code execution (RCE) exploit chain in Samsung Internet on the Galaxy S25, caused by the …
EU Commission says TeamPCP data breach impacted 29 Union entities
The EU Commission’s recent cloud breach has been linked to a supply-chain attack involving the Trivy security tool, with …
Independent audit confirms Cloudflare’s 1.1.1.1 resolver privacy claims
Cloudflare has confirmed, via an independent audit, that its 1.1.1.1 public DNS resolver operates in line with the privacy …
Spyware firm used fake WhatsApp app in targeted surveillance operation
Meta has uncovered and disrupted a targeted spyware campaign that used a fake WhatsApp application to compromise users’ …
Apple expands DarkSword protections to more iPhones with iOS 18.7.7 update
Apple has released iOS 18.7.7 and iPadOS 18.7.7, expanding protections against the DarkSword iPhone exploit chain to a wider …
Toy giant Hasbro hit by cyberattack that disrupted operations
Hasbro has disclosed a cybersecurity incident involving unauthorized access to its network, prompting containment measures and …
Waterfox browser to add Brave’s adblock engine, allow search ads for revenue
Waterfox has announced plans to integrate Brave’s adblock engine into its browser, alongside a decision to allow search ads by …
Google fixes actively exploited Chrome zero-day flaw, update now
Google has released an emergency Chrome update to patch a zero-day vulnerability actively exploited in the wild, alongside 20 …
FBI warns of data exposure risks from using Chinese apps
The FBI has issued a public service announcement warning that Chinese-developed mobile applications may expose users to …
Android rootkit NoVoice infects 2.3 million devices via Google Play apps
McAfee researchers have uncovered an Android rootkit campaign dubbed “Operation NoVoice” that used seemingly benign Google Play …
ExpressVPN debuts privacy-focused AI platform with secure enclaves
ExpressVPN has announced the rollout of ExpressAI, a browser-based artificial intelligence platform designed to process user …
Proton unveils privacy-focused video conferencing service Meet
Proton has announced the launch of Proton Workspace, a bundled productivity suite, alongside Proton Meet, an end-to-end …
Axios supply chain attack hits library with 400M monthly downloads
A major supply chain attack targeting the widely used Axios JavaScript library briefly exposed developers to a stealthy remote …
Gigabyte Control Center vulnerable to unauthenticated RCE flaw
Gigabyte has patched a critical vulnerability in its Control Center software that allows remote attackers to write arbitrary …
