Security
Oxford City Council reports election worker data breach (2001–2022)
Oxford City Council has been forced to temporarily shut down its main systems to investigate a cybersecurity incident that occurred over the weekend of June 7th-8th.
Read more about Oxford City Council reports election worker data breach (2001–2022)
McLaren Health Care hit by another data breach, exposing 743K people’s data
McLaren Health Care, a Michigan healthcare provider, has suffered another data breach, exposing hundreds of thousands of people's personally identifiable information (PII).
Read more about McLaren Health Care hit by another data breach, exposing 743K people’s data
Anonymous and the hidden cost of CSAM vigilantism
Recently, a member of Anonymous confessed to me that police had seized his phone as key evidence in an investigation into his abuser. He had been a victim himself and had recorded a confession from his abuser on the device. That recording was later classified as evidence, along with the phone.
Read more about Anonymous and the hidden cost of CSAM vigilantism
Massive 170K database filled to the brim with plaintext PII exposed
An unencrypted and non-password-protected database containing over 170,000 records potentially belonging to a real estate management and investment company was left open for anyone to exploit.
Read more about Massive 170K database filled to the brim with plaintext PII exposed
Why it might be time to leave the WhatsApp group
More than a decade after Facebook (now Meta) acquired WhatsApp for a record $19 billion, the world's most popular messenger is predictably starting to look a lot more like Facebook, as even messaging morphs into another billboard for advertisers.
Read more about Why it might be time to leave the WhatsApp group
Fake virus alerts overwhelm authorities: combat them by disabling push notifications
“Your computer is damaged by suspicious programs!” This notification usually is not a virus – it’s a scam. But you might get malware if you click on it. Authorities are flooded with reports from people who receive similar pop-ups.
Read more about Fake virus alerts overwhelm authorities: combat them by disabling push notifications
Sanitize your online identity
In June 2009, during my black-hat days, I had someone in my hacking group whom I’d appointed to manage my digital footprint. The idea was that if I ever found myself in legal trouble, I could call on them to help sanitize all the incriminating evidence of my hacking activity.
Read more about Sanitize your online identity
Insurer Aflac probes potential data breach after cyberattack on US network
Aflac on Friday disclosed a cybersecurity incident in which personal information of its customers may have been compromised, making it the latest insurance provider to be targeted.
Read more about Insurer Aflac probes potential data breach after cyberattack on US network
EU and Australia committed to Security and Defence Partnership
Brussels and Australia are set to initiate negotiations on a Security and Defence Partnership (SDP) at the G7 Leaders’ Summit in Alberta, Canada.
Read more about EU and Australia committed to Security and Defence Partnership
Tech companies pivot to military gear as NATO wavers and Putin’s threats grow
What does it take for a tech company to go from producing products for civilians to the military? Governments are interested in helping, but they’re too slow.
Read more about Tech companies pivot to military gear as NATO wavers and Putin’s threats grow
Europe proposes to integrate Ukraine into the EU roaming area in 2026
The European Commission has suggested making Ukraine a part of Europe’s roaming area as of January 2026.
Read more about Europe proposes to integrate Ukraine into the EU roaming area in 2026
Court of Justice’s Advocate General recommends dismissing Google’s appeal
Advocate General Kokott argues that the Court of Justice of the European Union (CJEU) should dismiss an appeal by Google for a hefty fine the tech company received for its anticompetitive behavior.
Read more about Court of Justice’s Advocate General recommends dismissing Google’s appeal
Scam numbers appearing on Netflix, Microsoft, and various bank sites: how are fraudsters doing it?
Scammers are actively exploiting websites’ search functionality to insert fake phone numbers and then advertise these URLs on Google. This way, the victims go to the legitimate website but get fraudulent information.
Read more about Scam numbers appearing on Netflix, Microsoft, and various bank sites: how are fraudsters doing it?
Cloudflare fends off “monumental” 7.3 Tbps DDoS attack
The record-shattering assault delivered 37.4 terabytes of data in just 45 seconds. The largest distributed denial of service (DDoS) attacks are approaching double-digit terabit per second data rates.
Read more about Cloudflare fends off “monumental” 7.3 Tbps DDoS attack
How web hosting is used in scams
During your everyday scroll on Instagram, you come across an ad – maybe jewellery, maybe shoes, or maybe even merch...
Read more about How web hosting is used in scams
Millions of domains at risk as Openprovider suffers major data leak
Openprovider, a Netherlands-based domain registrar, has inadvertently leaked over 100GB of sensitive customer and internal data, including domain transfer authentication codes.
Read more about Millions of domains at risk as Openprovider suffers major data leak
Hackers turn Grok, Mixtral chatbots into malicious WormGPT tools
WormGPT, an uncensored AI tool used by cybercriminals, was found to be just a wrapper for Grok and Mixtral, two legitimate AI services. The two AI tools were jailbroken using manipulated system prompts.
Read more about Hackers turn Grok, Mixtral chatbots into malicious WormGPT tools
Over 160K people affected in Krispy Kreme hack, but details remain unclear
The United States’ favourite doughnut chain, Krispy Kreme, reveals that over 160,000 people were affected by a hack late last year.
Read more about Over 160K people affected in Krispy Kreme hack, but details remain unclear