Security
Massive botnet bigger than some countries discovered as DDoS attacks soar
Millions of devices reaching end-of-life with access to fast internet are turning into a cybersecurity nightmare. This year, a record-breaking botnet consisting of 1.33 million devices is wreaking havoc on global web services.
Read more about Massive botnet bigger than some countries discovered as DDoS attacks soar
This “indie game” is actually password-stealing malware
Hackers are now hiding malware inside fake video games to steal your logins.
Read more about This “indie game” is actually password-stealing malware
900K Roblox accounts may be on sale. Here’s what we know
Nearly a million Roblox accounts have allegedly been leaked on a cybercriminal forum.
Read more about 900K Roblox accounts may be on sale. Here’s what we know
Synology’s drive-locking policy for home devices triggers public outcry
Synology, a major network-attached storage (NAS) manufacturer, plans to restrict its 2025 appliances to branded hard drives. The controversial move has ignited public outcry: users and experts are disappointed that the company is choosing profits over user choice and flexibility.
Read more about Synology’s drive-locking policy for home devices triggers public outcry
This new Android malware can drain your bank account with a single card tap
Pickpocketing is moving to the next level. A new Android malware is using NFC tech to rip off your bank card while you’re on the phone with a scammer.
Read more about This new Android malware can drain your bank account with a single card tap
Border-crossing records between Ukraine and Moldova left open
A high-severity data leak has exposed travelers between Ukraine and Moldova. Their passport numbers, vehicle details, names, and other detailed data were found lying bare in an unprotected Elasticsearch instance.
Read more about Border-crossing records between Ukraine and Moldova left open
More Signal scandal for Trump: new Hegseth chat group found, included family members
In what appears to be a Signalgate 2.0, US Defense Secretary Pete Hegseth is under fire - or about to be fired – for a second Signal chat group revealing sensitive military plans, this time including his wife, brother, and lawyer.
Read more about More Signal scandal for Trump: new Hegseth chat group found, included family members
Too old to hack? Too late to try? Welcome to cybersecurity anyway
Think it’s too late to get into cybersecurity? Myths of the prodigy hacker might be killing real opportunities for career changers, an expert says.
Read more about Too old to hack? Too late to try? Welcome to cybersecurity anyway
Fraudsters are impersonating FBI 'IC3' employees to steal your financial information
A new FBI alert warns that fraudsters are impersonating FBI Internet Crime Complaint Center (IC3) employees and offering to assist in recovering lost funds, but are after the victim’s financial information instead.
Read more about Fraudsters are impersonating FBI 'IC3' employees to steal your financial information
Samsung phone is saving your passwords in plain text
You copy a password from your manager, thinking it's safe. Meanwhile, your phone is saving it in plain text. Samsung says, so far, there is no solution.
Read more about Samsung phone is saving your passwords in plain text
Critical security flaw affects Asus AiCloud routers, urgent update required
Hackers can craft a request, send it to the Asus router, and execute functions without authorization. Due to this critical vulnerability, bearing a score of 9.2 out of 10, the company is urging users to update the firmware of Asus routers running AiCloud.
Read more about Critical security flaw affects Asus AiCloud routers, urgent update required
“Vote for me” scam turns into chain reaction of stolen Facebook, X accounts
Is a friend asking you to vote for them on Facebook? It’s a scam that starts a chain reaction. Many people have already fallen victim.
Read more about “Vote for me” scam turns into chain reaction of stolen Facebook, X accounts
6M users at risk: 58 Chrome extensions discovered containing secret tracking code
Dozens of Chrome extensions, many of them featured on the Chrome Web Store but also hidden and not indexed by search engines, contain secret functionality to track users, a security researcher has discovered.
Read more about 6M users at risk: 58 Chrome extensions discovered containing secret tracking code
CISA recommends password reset after potential Oracle data breach
The Cybersecurity and Infrastructure Security Agency (CISA) is suggesting that organizations that have been affected by a potential data breach at Oracle’s Cloud Infrastructure reset passwords to minimize the risk associated with credential compromise.
Read more about CISA recommends password reset after potential Oracle data breach
Screw gov’t funding, we’re going nonprofit, CVE Board declares after database debacle
Citing global security for all, CVE board members have announced the creation of a new nonprofit CVE Foundation, aimed at taking the onus for funding the critical vulnerability database program out of government hands.
Read more about Screw gov’t funding, we’re going nonprofit, CVE Board declares after database debacle
Fake jobs, tolls, and deliveries text cost Americans half a billion
Text scams are raking in millions. And they're no longer just a minor annoyance – they’re looting Americans' accounts.
Read more about Fake jobs, tolls, and deliveries text cost Americans half a billion
Stop & Shop, Albert Heijn, Food Lion: Ransomware gang targets grocery heavyweights
Ahold Delhaize, the €87 billion ($99 billion) retail titan behind your local Stop & Shop and Albert Heijn, has been hit by a data breach. At least that’s what a ransomware gang is claiming on its dark web blog.
Read more about Stop & Shop, Albert Heijn, Food Lion: Ransomware gang targets grocery heavyweights
iPhone AI app leaked user-generated NSFW stories
Apple App Store’s Novel AI: Book Creator leaked its Firebase database, revealing that its users generated far spicier stuff than your average ghost story.
Read more about iPhone AI app leaked user-generated NSFW stories
A whopping 46% of US companies’ employees reuse passwords
Cybernews researchers analyzed the top 100 most trusted companies in America – including Nvidia, Costco, Apple, American Express, and others – and found that all of them had experienced data breaches, exposing critical cybersecurity weaknesses.
Read more about A whopping 46% of US companies’ employees reuse passwords
YouTuber’s pixelation fail: private video part unmasked in hours
One YouTuber laid out a challenge to his viewers: $50 to anyone who could de-pixelate a heavily obscured section of his video, intended to hide private folders. It was cracked in hours, demonstrating the vulnerability of blurring as a privacy measure.
Read more about YouTuber’s pixelation fail: private video part unmasked in hours
