The Everest ransomware group has claimed responsibility for the attack on Collins Aerospace, which caused widespread disruption of passenger check-in systems across major European airports in September. The attackers allege they gained access to...
The Israeli company NSO Group, best known for developing the Pegasus spyware, has officially lost its right to interact with WhatsApp and its users. A U.S. federal court has granted Meta’s lawsuit, imposing a...
A total of 269,000 F5 BIG-IP devices have been found exposed to remote access on the internet, despite the company’s recent admission of a large-scale compromise of its infrastructure. The discovery was made by...
Google has officially acknowledged the failure of its long-running privacy initiative in the Chrome browser, announcing the termination of the Privacy Sandbox program. Launched with the ambitious goal of replacing tracking cookies with safer...
Since the disclosure of two critical vulnerabilities in 7-Zip, the situation has escalated sharply: functional proof-of-concept exploits are now publicly available that reproduce attacks by altering extraction paths and injecting arbitrary files. This elevates...
A new driver for the NTFS file system has appeared in Linux—this time under the name NTFSPLUS. Developed as an alternative to the existing NTFS3, long regarded as the primary kernel-level implementation with read-and-write...
The Google Project Zero team has disclosed a critical vulnerability in the Dolby DDPlus Unified Decoder that permits remote arbitrary code execution on Android devices without any user interaction. Tracked as CVE-2025-54957, the flaw...
The Chinese Ministry of State Security (MSS) has announced the uncovering of “irrefutable evidence” pertaining to a cyber-attack targeting the National Time Service Center (NTSC), the institution entrusted with maintaining the standard Beijing Time....
European law enforcement agencies executed a sweeping operation, codenamed SIMCARTEL, successfully dismantling an international criminal infrastructure that supplied virtual telephone numbers to fraudsters. According to Europol, this illicit service was instrumental in perpetrating over...
PentestGPT PentestGPT is a penetration testing tool empowered by ChatGPT. It is designed to automate the penetration testing process. It is built on top of ChatGPT and operate in an interactive mode to guide penetration testers...
Microsoft has lifted two additional safeguards that had previously prevented users from installing the Windows 11 24H2 update via the built-in Windows Update service. Such protective holds are typically imposed when a new update...
The Asterisk development team has announced the release of Asterisk 23.0.0, now available for download on GitHub and the project’s official website. The new version addresses numerous user-reported bugs and introduces several enhancements aimed...
