Brave Software has decided to block the Windows Recall feature by default in its browser, citing the protection of user privacy as the driving force behind the move. This policy now applies to all...
Six human rights organizations have filed a formal complaint with the European Commission against Alphabet, Google’s parent company, accusing it of violating the Digital Markets Act (DMA)—a cornerstone piece of EU legislation governing the...
pretender pretender is a tool developed by RedTeam Pentesting to obtain machine-in-the-middle positions via spoofed local name resolution and DHCPv6 DNS takeover attacks. pretender primarily targets Windows hosts, as it is intended to be used...
Cervantes is an open-source, collaborative platform designed specifically for pentesters and red teams. It serves as a comprehensive management tool, streamlining the organization of projects, clients, vulnerabilities, and reports in a single, centralized location....
Clorox has filed a lawsuit against the global IT services provider Cognizant, accusing the company of gross negligence that allegedly led to a devastating cyberattack in August 2023. According to the complaint, Cognizant—tasked with...
Amazon was forced to urgently withdraw a compromised version of its AI-powered programming assistant, Q, after a malicious instruction was covertly embedded into the system. This rogue directive prompted the assistant to exploit command-line...
The cybercriminal group known as Mimo, previously recognized for its campaigns deploying cryptocurrency miners, has shifted its tactics, now targeting new vectors — notably the popular e-commerce platform Magento and misconfigured Docker instances. The...
Amid the growing popularity of Android smartphones in developing regions and the increasing accessibility of third-party app stores, cybercriminals have launched a large-scale campaign that combines two highly dangerous tactics—credential theft and click fraud—for...
Microsoft has reversed its decision to end support for Windows 10 and now offers users a free one-year extension of security updates. This reprieve benefits nearly 700 million individuals who continue to rely on...
ACRStealer, a notorious information-stealing malware, has once again come under the spotlight following a series of enhancements that have significantly improved its resilience against detection and analysis. Over the past year—particularly since the beginning...
Hackers have ramped up their attacks on vulnerable Linux servers with exposed SSH access, deploying the SVF Botnet—a simple yet effective malicious framework designed for conducting DDoS attacks and cryptocurrency mining. This revelation comes...
Experts at SEQRITE Labs have uncovered a large-scale cyber-espionage campaign dubbed CargoTalon, specifically targeting personnel within a key enterprise of Russia’s aviation industry. The operation employs highly targeted phishing techniques, disguised as essential logistics...
Researchers have uncovered a stealthy backdoor within WordPress, cunningly disguised as a system file within the mu-plugins directory—a special location designated for must-use plugins. This strategic placement enables threat actors to establish a persistent...
Privacy in the age of ubiquitous AI assistants is becoming an increasingly nebulous concept. Many neural network-powered services collect, store, and analyze user queries, transforming personal conversations into fuel for algorithmic training. Against this...
GitHub has released Spark, a new service for application creation, into open access. Powered by the Claude Sonnet 4 model, Spark is available through the GitHub Copilot Pro+ subscription at a cost of $39...
The U.S. National Nuclear Security Administration (NNSA), a division of the Department of Energy tasked with maintaining and safeguarding the nation’s nuclear arsenal, has found itself at the center of one of the most...
