Security

Ernst & Young vendor exposes sensitive client tax records, company says

Unauthorized activity in the system continued for weeks.
Read more about Ernst & Young vendor exposes sensitive client tax records, company says

Trump’s $300m election security contradiction exposed by former CISA official

President accused of weaponizing voting system flaws ahead of midterms
Read more about Trump’s $300m election security contradiction exposed by former CISA official

Russian spies hunt targets via exposed European cameras: 87,000 found vulnerable

Decade-old flaws can still provide Russian intelligence with many eyes in Europe.
Read more about Russian spies hunt targets via exposed European cameras: 87,000 found vulnerable

Coca-Cola's $4 billion dairy brand forced offline after data breach


Italy fines WINDTRE €1.7 million over data breaches

Hackers stole sensitive user information, including payment data.
Read more about Italy fines WINDTRE €1.7 million over data breaches

OpenAI confirms GPT-5.6 sporadically deletes user files, says it’s fine

The company insists these deletions are rare “honest mistakes”
Read more about OpenAI confirms GPT-5.6 sporadically deletes user files, says it’s fine

EU approves X’s plan to end DSA breaches


23andMe will pay $18M to settle claims over massive data breach

The firm first blamed clients for how their accounts were set up.
Read more about 23andMe will pay $18M to settle claims over massive data breach

LastPass and Bitwarden users flooded with fake compliance emails


MacOS users, beware: newly discovered stealthy stealer requires no exploits

The stealer focuses on Europe, where more than 50% of identified victims are located
Read more about MacOS users, beware: newly discovered stealthy stealer requires no exploits

Critical NGINX vulnerability discovered: hackers can attempt to crash servers or even gain code execution


Attackers keep using GitHub to distribute malware

GitHub's growing abuse as a malware distribution platform shows no signs of slowing.
Read more about Attackers keep using GitHub to distribute malware

Critical Zoom for Windows vulnerability allows hackers to hijack accounts without a password

Hackers on the internet can tamper with Zoom traffic and hijack accounts with no password or user interaction.
Read more about Critical Zoom for Windows vulnerability allows hackers to hijack accounts without a password

Campers exposed in Secureholiday data breach defrauded, thousands of dollars lost


India's biggest nuclear plant blueprints posted online after contractor refuses ransom


$2 million EU age verification app gets update, promptly bypassed for a second time

The $2 million EU age verification app is 0:2 against a guy with an AI-generated Chrome extension.
Read more about $2 million EU age verification app gets update, promptly bypassed for a second time

Google built Chrome Sync for convenience, but stalkers increasingly use it to spy on victims

The Chrome Sync cyberstalking technique is scarily simple and effective
Read more about Google built Chrome Sync for convenience, but stalkers increasingly use it to spy on victims

Streamer claims Microsoft deleted hacked account, wiping 25 years of data and games


Microsoft's largest Patch Tuesday ever: 622 flaws, Kerberos encryption overhaul

The record-breaking update also forces a long-planned authentication change that could disrupt legacy Windows environments.
Read more about Microsoft's largest Patch Tuesday ever: 622 flaws, Kerberos encryption overhaul

Nightmare Eclipse drops 9th Windows security issue amid ongoing personal vendetta against Microsoft