Apple fined €150 million over App Tracking Transparency issues
Autorité de la concurrence, France’s antitrust watchdog, has fined Apple €150 million ($162 million) for using the App Tracking Transparency privacy framework to abuse its…
Month: April 2025
Enterprise Gmail Users Can Now Send End-to-End Encrypted Emails to Any Platform
Apr 01, 2025Ravie LakshmananEncryption / Email Security On the 21st birthday of Gmail, Google has announced a major update that allows enterprise users to send…
Bash vs. Python | Daniel Miessler
Well, after reading Linux’s comments on interpreted languages and discussing the matter with Ken some, I have come to the somewhat solid conclusion that I…
Critical vulnerability in CrushFTP file transfer software under attack
A critical vulnerability in CrushFTP’s file transfer server software has come under attack less than a week after the flaw was assigned a CVE. The…
Microsoft Discovers GRUB2, U-Boot, and Barebox Bootloader Flaws with Copilot
Microsoft has disclosed the discovery of multiple critical vulnerabilities within the GRUB2, U-Boot, and Barebox bootloaders, leveraging its AI-driven Security Copilot platform for advanced threat…
Russian Railways hit by DDoS Cyber Attack from Hacker Army
As anticipated, Russian Railways became the target of a large-scale Distributed Denial of Service (DDoS) attack, significantly impacting both its website and mobile application. The…
Gmail ‘bubble’ encryption may be an S/MIME killer, says Google
Google is this week unveiling an enhanced client-side encryption (CSE) standard across its widely-used Gmail service – which marks its 21st birthday on 1 April…
OS X, Linux, NASA, Future
Here’s a recent quote from a /. post that I find rather interesting: I work for NASA; almost everyone in our group has Mac OS…
Identity lapses ensnared organizations at scale in 2024
Cybercriminals predominantly relied on weaknesses in identity controls to afflict organizations in 2024, with valid accounts being the main way they gained access for the…
Nearly 24,000 IPs behind wave of Palo Alto Global Protect scans
A significant spike in scanning activity targeting Palo Alto Network GlobalProtect login portals has been observed, with researchers concerned it may be a prelude to…
Apple Issues Warning on Three 0-Day Vulnerabilities Under Active Exploitation
Apple has issued an urgent security advisory concerning three critical zero-day vulnerabilities – CVE-2025-24200, CVE-2025-24201, and CVE-2025-24085 – which are being actively exploited in the wild. These vulnerabilities affect…
Lucid PhaaS Hits 169 Targets in 88 Countries Using iMessage and RCS Smishing
A new sophisticated phishing-as-a-service (PhaaS) platform called Lucid has targeted 169 entities in 88 countries using smishing messages propagated via Apple iMessage and Rich Communication…