Security

Privacy and security flaws found in DeepSeek iOS mobile app

DeepSeek’s iOS app uses unencrypted data transmission, weak and hardcoded encryption keys, and sends unencrypted data to China, a report claims.
Read more about Privacy and security flaws found in DeepSeek iOS mobile app

Facebook copyright infringement scam reinvents itself

Hundreds of companies have been targeted in a new Facebook phishing campaign that emerged late last year.
Read more about Facebook copyright infringement scam reinvents itself

Malicious AI models infiltrating Hugging Face via ‘bad Pickles’

Hackers have found ways to hide malicious code in AI models hosted on the Hugging Face platform, ReversingLabs researchers warn.
Read more about Malicious AI models infiltrating Hugging Face via ‘bad Pickles’

The cyber game is on: whoever wins will dominate the Earth

Cyberattacks will play a decisive role in who wins the second space race.
Read more about The cyber game is on: whoever wins will dominate the Earth

Britain demands Apple create backdoor to user data – media

Britain's security officials have ordered that Apple create a so-called 'back door' allowing them to retrieve all the content any Apple user worldwide has uploaded to the cloud, The Washington Post reported on Friday citing people familiar with the matter.
Read more about Britain demands Apple create backdoor to user data – media

Apple Store vs Google Play: how the app stores secure their ecosystems – and where they fall short

Apple and Google control the two largest app marketplaces in the world, acting as gatekeepers who determine which apps make...
Read more about Apple Store vs Google Play: how the app stores secure their ecosystems – and where they fall short

Over 5 billion accounts breached in 2024, China emerges as top target

The number of compromised accounts in 2024 surged eightfold compared to the previous year, with nearly half of all breaches concentrated in just three countries.
Read more about Over 5 billion accounts breached in 2024, China emerges as top target

Hiring platform serves users raw with 5.4 million CVs exposed

US hiring platform used by KFC, Taco Bell, and others, has exposed millions of applicants’ resumes.
Read more about Hiring platform serves users raw with 5.4 million CVs exposed

New Orleans launches public safety app in time for Super Bowl 2025

In preparation for Superbowl Sunday, the host City of New Orleans' Homeland Security and Emergency Preparedness agency (NOHSEP) has rolled out a new public safety app designed to keep both residents and visitors safe during large-scale events.
Read more about New Orleans launches public safety app in time for Super Bowl 2025

MacOS infostealers rising sharply: stolen data putting enterprises at risk

Between the last two quarters, macOS malware detections doubled, fueled by the surge of infostealer strains designed to siphon sensitive user data, an investigation by Palo Alto Networks' Unit 42 reveals.
Read more about MacOS infostealers rising sharply: stolen data putting enterprises at risk

Python packages posing as DeepSeek contain nasty surprise

Malicious packages are infecting Python repositories and target developers and engineers looking to integrate DeepSeek into their work.
Read more about Python packages posing as DeepSeek contain nasty surprise

Trump Hotels allegedly breached by a little-known BreachForums user

A threat actor on BreachForums Tuesday posted what appears to be a sample leak from an alleged data set of 160,000 plus records stolen from the famed Trump Hotels[.]com.
Read more about Trump Hotels allegedly breached by a little-known BreachForums user

Bitcoin scammers sending MMS with 3GP videos: old format surprisingly effective

If you haven’t disabled MMS functionality on your phone, it is time to let this old standard go. Bitcoin scammers have been abusing it lately to enhance their fraudulent schemes.
Read more about Bitcoin scammers sending MMS with 3GP videos: old format surprisingly effective

Anthropic introduces capable system guarding AI models against jailbreaks

Anthropic, a major developer of AI models, has announced that it has developed a new approach that significantly reduces the likelihood of jailbreaking its chatbots. The company is challenging anyone to break it. However, the new system comes with a cost – the Claude chatbot refuses to talk about certain topics widely available on Wikipedia.
Read more about Anthropic introduces capable system guarding AI models against jailbreaks

Microsoft Defender ditches privacy protection feature, leaving users without VPN

Millions of people who relied on Microsoft Defender’s privacy protection to hide their IP addresses should look for alternative VPN providers. The tech giant will end support for the feature on February 28th, 2025, less than six months after it was made available on Windows.
Read more about Microsoft Defender ditches privacy protection feature, leaving users without VPN

Contec vital signs monitors contain backdoors and send data to murky IP

The US Food and Drug Administration (FDA) alerts healthcare providers that certain patient monitors from Contec and Epsimed are gathering data and beaming it to a hardcoded IP address. The medical devices also contain backdoors, allowing remote unauthorized attackers to run remote code.
Read more about Contec vital signs monitors contain backdoors and send data to murky IP

Enter hacking simulations: games that provide foundation and culture

The best hacking games to improve your cybersecurity skills and hacking knowledge. But remember, hack responsibly.
Read more about Enter hacking simulations: games that provide foundation and culture

Skilled criminal hacker exposes 1M Community Health Center patients

Community Health Center (CHC), a leading independent, non-profit healthcare provider in Connecticut, reports a data breach that may have affected 1,061,000 individuals. Health records and other private information may have been stolen.
Read more about Skilled criminal hacker exposes 1M Community Health Center patients