If you haven't updated WinRAR in the past few weeks, do so now
Versions older than 6.23 have a flaw that state-backed actors are exploiting
A clever Google-hosted, malicious ad fakes the KeePass website
Malvertising attack uses ASCII character in domain name
Google Play Protect adds real-time malware scanning for Android app installs
It will prompt you to scan unknown apps before installing
Five Eyes intelligence agencies highlight China's "unprecedented" IP theft
Are the Chinese government and its spies the greatest threats to innovation?
Cisco warns against a critical vulnerability in IOS XE-based network devices
A security flaw with a "perfect" CVSS score and no patch in sight
Google recently mitigated the largest DDoS attack ever, peaking at 398 million requests per second
Amazon, Microsoft, and others also got in on the action
Microsoft plans to kill VBScript in future Windows releases
Yet another traditional Windows technology will soon bite the dust, because reasons
Researchers find backdoor in thousands of generic Android set-top boxes
They seemed like a good deal at the time
US cyberdefense agencies NSA and CISA disclose top 10 security misconfigurations
Common misconfigurations provide cyber-criminals with easy access and exploitability opportunities
The US Department of State is still using 13-year-old operating systems
WTF?! A new report from the US Government Accountability Office (GAO) is highlighting how American diplomacy (still) doesn't know the meaning of "cyber-security practices." The State Department has a proper cybersecurity risk management program, but it's just on paper.
Government-sponsored Chinese hackers are "hiding" inside Cisco routers
A malicious campaign targeting the biggest telecommunications manufacturer on Earth
Volkswagen production halted in Germany after IT incident
Manufacturing plants and the entire network of the carmaker seem to be affected
A new pixel-stealing exploit can read usernames and passwords across websites
Google and GPU vendors don't see a need to respond
LibreOffice 7.6.2 fixes a critical WebP vulnerability
LibreOffice's latest version fixes a security bug that affects all applications that use the libwebp library, which is used to decode WebP graphics format in most browsers.
Ransomware group claims to have breached "all of Sony's networks" and is selling the data
The claims remain unverified
UK summit to focus on risks of uncontrollable AI, technology's ability to make advanced weapons
The country's government previously acknowledged the 'existential' risk of AI
Apple adds hidden watermarks to iPhone 15 boxes to verify authenticity
You'll need a UV light to see it
Cisco to acquire cybersecurity specialist Splunk for $28 billion
Boosting security in an AI-powered world
International Criminal Court discloses hackers breach on IT systems
Actual details about the security incident are undisclosed at this moment
Infamous Russian hacker mocks the FBI by selling t-shirts featuring his "most wanted" poster
Matveev doesn't consider himself to be a hacker, though
UK Online Safety Bill set to become law, forcing social media companies to remove illegal and legal but harmful content
The bill could potentially impact users worldwide
Microsoft Edge gets patched on Windows 7, 8, Server 2012
Support for MS Edge on Windows 7 and 8 came to an end in January, however Microsoft have released a bug fix version for Win 7, 8, and 8.1 (and Server 2012 R2) to address a flaw that's being exploited in the wild.
Microsoft exposed 38 terabytes of sensitive data while working on AI model
Basic cloud security practices were lacking
Facepalm: Training generative AI models requires coordination and cooperation among many developers, and additional security checks should be in place. Microsoft is clearly lacking in this regard, as the corporation has put vast amounts of data at risk for years.
Microsoft releases firmware update for all Surface devices
Even the unsupported Surface Book 2 is getting the all-important September patches
Russia is targeting journalists with Pegasus spyware
Apple has reportedly warned many Russian journalists about Pegasus infection on their iPhone