Proton launches free and open-source Authenticator app to take on Google and Microsoft
No ads, no tracking
Dropbox is shutting down its password manager next month – here are the best alternatives
1Password has an easy import function, but we also recommend Bitwarden and Proton Pass
Google says it never received a UK demand for encryption backdoor, unlike Apple
The UK doesn't want Google user's encrypted data, at least not yet
What was the first ransomware attack to demand payment in Bitcoin?
Test your cyber history savvy in this week's trivia.
Tea app confirms data leak after 4Chan users discover unsecured cloud storage
What just happened? Tea, officially known as "Tea Dating Advice," is a dating safety app that allows women to anonymously share information about men and potential red flag behavior. Now the top free app in the App Store, Tea has been hacked. 4Chan users linked to a public storage bucket containing about 72,000 images, including 13,000 selfies and government-issued IDs used for gender verification.
Amazon's AI coding assistant exposed nearly 1 million users to potential system wipe
The hacker said the point was to spotlight Amazon's lax security practices
Privacy apps Signal, Brave, and AdGuard push back against Windows Recall
Apps are shielding users from Recall's constant screenshots
Android users can now remotely lock their Windows PC from their phone
Thanks to an update to Microsoft's (not so great) Link to Windows app on Android
Proton launches Lumo, a privacy-focused AI chatbot
Not the first of its kind, still heavily censored like your average ChatGPT experience
Tor Browser is a private browser with built-in tools for anonymity
Tor Browser, based on Firefox ESR, uses a global network of relays to anonymize your browsing and protect your IP address. It includes a variety of privacy tools and differs from a VPN by routing traffic through multiple encrypted relays rather than masking it with a single server.
Malware found in Endgame's mouse config utility
Endgame Gear is investigating how the incident happened
Vibe coding dream turns to nightmare as Replit deletes developer's database
Beware of putting too much faith into AI coding
UK wants to drop Apple iCloud backdoor demand over fears of US backlash
Apple refuses to build a backdoor
Ring reverses course, lets police request video footage again
CEO Jamie Siminoff is taking Ring back to its crime prevention roots
Worldwide cyberattack underway as hackers exploit Microsoft SharePoint zero-day vulnerability
CISA has identified the exploit as a top-level security threat, a patch is now out
A hot potato: A newly uncovered security flaw in Microsoft's SharePoint software has sparked a widespread series of cyberattacks targeting government organizations, educational institutions, energy companies, and private enterprises around the globe. This threat has prompted coordinated investigations by authorities in the United States, Canada, and Australia, with cybersecurity experts warning that these intrusions represent one of the most serious server-level breaches seen in recent memory.
Hackers are now hiding malware in DNS, and using AI to reassemble it
Exploiting the DNS service to turn malware into a truly invisible threat
Nvidia workstation GPUs fall to first-ever GDDR6 Rowhammer bit-flip attack
Rowhammer jumps from CPU to GPU memory
FCC moves to ban Chinese tech from undersea cables
New rules target Chinese firms over national security fears
Firmware flaws in over 200 Gigabyte motherboards could lead to undetectable malware
Nearly half of the affected motherboards are no longer supported
US rail industry still exposed to decade-old hacking threat, experts warn
"The railway industry treats cybersecurity issues with the same playbook as the insurance industry's 'delay, deny, defend' mantra"
T-Mobile is sharing your data by default, here's how to opt out
The carrier wants you to believe the changes are for your own protection
Google Gemini vulnerable to a stupidly easy prompt injection attack in Gmail AI summaries
Artificial idiocy keeps on improving things... for cybercriminals
AI first, security later: As GenAI tools make their way into mainstream apps and workflows, serious concerns are mounting about their real-world safety. Far from boosting productivity, these systems are increasingly being exploited – benefiting cybercriminals and cost-cutting executives far more than end users. Researchers this week uncovered how Google's Gemini model used in Gmail can be subverted in an incredibly simple way, making phishing campaigns easier than ever.
Self-destructing SSD brings espionage-level security to data protection
Select either a software wipe that preserves the drive or hardware-level destruction that renders it unusable
Something to look forward to: It's the kind of gadget Q might slip into James Bond's tuxedo pocket: an SSD with a built-in self-destruct feature. TeamGroup has developed the P250Q-M80, which brings a touch of cinematic espionage to real-world data security. This industrial-grade storage device is engineered for sectors where data security is paramount, such as defense, industrial automation, and AI development.
Europe's AI code urges companies to disclose training data and avoid copyright violations
AI Act fines could reach 7% of revenue for noncompliance