Linux strncpy Removal Lands in Kernel 7.2
The Linux kernel has finally settled an old debt. After years of effort, the Linux strncpy removal is complete in version 7.2. The strncpy API is now gone from the source tree. For decades,...
Author: Nam Phong
Klue OAuth Breach Drives Salesforce Data Theft
The market intelligence platform Klue has confirmed a breach of part of its integration infrastructure. Attackers obtained OAuth tokens, the digital keys that grant access between services. With those keys, they slipped into the...
Usbliter8 BootROM Exploit Targets iPhone 11
Unpatchable Hardware Vulnerabilities Emerge Even the most robust smartphone security inevitably ages alongside its hardware. Recently, Paradigm Shift vividly demonstrated this reality with the iPhone 11. Surprisingly, this older device still receives the latest...
Critical Avo Admin Panel Flaw Exposes Applications
At a glance CVE: CVE-2026-55518 CVSS Score: 9.6 (Critical) Product: Avo Admin Panel Framework Affected Versions: <= 3.32.0 Impact: Privilege escalation, cross-tenant data exposure Exploitation Status: Public PoC exists Fixed-in Version: 3.32.1, 4.0.0.beta.51 Recommended...
Microsoft Discovers Crypto Clipper Utilizing Tor for Control
Malicious software architectures are increasingly eschewing conspicuous command-and-control infrastructures. Instead, they seamlessly conceal communications with their operators deep within anonymous networks. Recently, Microsoft meticulously chronicled a sophisticated campaign targeting cryptocurrency holders that exemplifies this...
Hackers Hijacking Roblox Games Through Fake Job Offers
Malicious actors are no longer exclusively targeting rare virtual items within the Roblox ecosystem. They have escalated their operations to expropriate entire developmental projects. Creators have invested years nurturing these digital environments, which often...
FreeBSD 15.1-RELEASE Launches with Network and Kernel Upgrades
The FreeBSD Project has officially announced the release of FreeBSD 15.1-RELEASE. While the operating system’s external interface remains comfortably familiar, the underlying architecture has undergone substantial modernization. This pivotal release introduces profound enhancements to...
GrapheneOS Achieves Early Port to Android 17
GrapheneOS is rapidly aligning with the latest iteration of the Android operating system. The dedicated project team has proactively prepared to migrate their highly secure firmware to Android 17 almost immediately following the new...
RoguePlanet: Unpatched Defender Flaw Grants SYSTEM-Level Access (CVE-2026-50656)
Microsoft is racing to patch a new flaw in Windows Defender. The bug could let an attacker seize near-total control of an affected machine. Researchers have named it RoguePlanet, and it now carries the...
FortiBleed Campaign Exploits Tens of Thousands of Fortinet Firewalls
Major corporate enterprises across the globe may have inadvertently left their digital entryways exposed for years, utilizing keys already held by malicious actors. Cyber security specialists have unveiled a massive operational offensive designated as...
INTERPOL Warns of Industrialized Cybercrime Across Asia and the Pacific
Online scammers across Asia are no longer working alone with fake emails. Many now operate as organized enterprises, complete with call centers, custom malware, and artificial intelligence tools. INTERPOL released its 2025/2026 Asia and...
