Security Undocumented admin-level backdoor discovered in Zyxel security products Admins will want to patch this one ASAP By Shawn Knight, January 4, 2021, 10:22 AM
Security The Web Researchers found 33 critical security flaws affecting millions of IoT devices The issues may never be fixed for all devices By Adrian Potoroaca, December 8, 2020, 3:21 PM
Apple Security This radio-proximity exploit can quietly take over your iPhone without you knowing it 'There's something hauntingly beautiful watching all these iPhones die as they get a WiFi broadcast packet of death' By Cal Jeffrey, December 3, 2020, 2:41 PM 8 comments
Apple Security Two iPhone jailbreaks can be used to hack the T2 security chip on newer Macs Security researchers say the exploit is 'unpatchable' By Cal Jeffrey, October 6, 2020, 5:17 PM
Software Security GitHub's open-source code scanning tool looks for security holes in real-time Proactively fix security flaws before reaching v1.0 By Cal Jeffrey, October 1, 2020, 12:44 PM
Security Software Researchers discover RCE exploit to hijack the Instagram mobile app One malicious photo can open up your phone to hackers By Cal Jeffrey, September 24, 2020, 1:24 PM
Security Zerologon Windows exploit lets attackers instantly become admins on enterprise networks Apply the August 2020 security patches and then read this By Adrian Potoroaca, September 15, 2020, 4:20 PM
Security Electronics BLURtooth vulnerability opens millions of Bluetooth devices to MITM attacks Bluetooth security can sometimes be just a "blur" By Adrian Potoroaca, September 11, 2020, 7:37 AM
Security Software A flaw in the GRUB2 bootloader allows hackers to bypass Secure Boot on billions of systems BootHole is a silent killer for a widely-used security feature By Adrian Potoroaca, July 29, 2020, 6:30 PM 25 comments
Security Hardware Two new Intel CPU flaws make it easy for hackers to extract sensitive data Intel's SGX is a leaky chip By Adrian Potoroaca, June 10, 2020, 3:41 PM 21 comments
Security Electronics Researchers found a new Bluetooth bug that allows hackers to impersonate a trusted device Billions of Bluetooth devices are affected By Adrian Potoroaca, May 19, 2020, 4:02 PM
Apple Security Apple: There is "no evidence" that iPhone Mail vulnerabilities have been exploited in the wild The company's own investigation arrived at a different conclusion By Adrian Potoroaca, April 24, 2020, 6:15 PM
Apple Security iPhone's Mail app has two severe "zero-click" vulnerabilities that have existed for 8 years A fix is coming in iOS 13.4.5 By Adrian Potoroaca, April 22, 2020, 8:43 PM
Software Security Microsoft reports new zero-day vulnerability in Windows that is being actively exploited Two new remote code execution vulnerabilities have surfaced By Eric Hamilton, March 23, 2020, 3:07 PM
Security Hardware Intel CPUs are vulnerable to new "LVI" attack that breaks the secure enclave of the CPU Something worse than the infamous Meltdown does exist By Adrian Potoroaca, March 11, 2020, 3:40 PM 19 comments
Security Hardware Intel CSME vulnerability allows hackers to break encryption and DRM Researchers say the issue is unfixable without replacing the hardware By Adrian Potoroaca, March 5, 2020, 5:13 PM 25 comments
Security Industry Researcher says millions of IoT and surveillance devices that use HiSilicon chips have a trivial backdoor The Chinese giant has another hot potato on its hands By Adrian Potoroaca, February 7, 2020, 7:13 AM
Security WhatsApp desktop app vulnerabilities led to remote file access, code execution One discovery led to the next By Shawn Knight, February 5, 2020, 3:17 PM
Security The Web Twitter fixes flaw in its API that allowed attackers to match users to their phone numbers The social giant believes state-sponsored actors may have already used it By Adrian Potoroaca, February 4, 2020, 3:50 PM
Security Google Google paid researchers $6.5 million in bug bounties last year The largest single reward was $201,337 By Rob Thubron, January 29, 2020, 10:48 AM
Security Researchers disclose new CacheOut attack that targets Intel processors Intel says a fix is coming soon By Shawn Knight, January 28, 2020, 12:10 PM 14 comments
Security Software Mozilla releases patch for a severe vulnerability in Firefox that's being actively exploited Stop what you're doing and update Firefox By Adrian Potoroaca, January 9, 2020, 3:47 PM 10 comments
Security The Web TikTok vulnerabilities could allow hackers to get access to your personal data through SMS messages One less reason to rely on the convenience of SMS-based magic links By Adrian Potoroaca, January 8, 2020, 1:52 PM
The Web Security A flaw in Twitter's Android app allowed a researcher to match 17 million phone numbers with users The exposed accounts include high-profile politicians and celebrities By Adrian Potoroaca, December 26, 2019, 1:54 PM
Mobile Security WhatsApp bug allows complete control of group chats, crashing the app The latest update fixes the issue By Adrian Potoroaca, December 17, 2019, 3:52 PM