Google Fined $379 Million by French Regulator for Cookie Consent Violations
Sep 04, 2025Ravie LakshmananGDPR / Data Privacy The French data protection authority has fined Google and Chinese e-commerce giant Shein $379 million (€325 million) and…
Month: September 2025
UK sets out plans for AI assurance leadership
The government has unveiled its Trusted third parties AI assurance roadmap as it attempts to encourage investment in UK artificial intelligence (AI), covering professional certification and verification…
Critical SQL Injection Flaw Fixed
A serious Django web vulnerability has been identified, prompting immediate action from the Django web framework development team. The flaw, officially registered as CVE-2025-57833, affects…
Microsoft says recent Windows updates cause app install issues
Microsoft says the August 2025 security updates are triggering unexpected User Account Control (UAC) prompts and app installation issues for non-admin users across all supported…
Threat Actors Using Stealerium Malware to Attack Educational Organizations
Educational institutions have become prime targets in the escalating battle against commodity information stealers. First emerging in 2022 as an open-source project on GitHub, Stealerium…
Microsoft Confirms UAC Bug Disrupts App Installation on Windows 10 & 11
Microsoft has officially acknowledged a significant User Account Control (UAC) bug that is causing widespread installation issues across Windows 10 and Windows 11 systems. The…
Sitecore zero-day vulnerability exploited by attackers (CVE-2025-53690)
A threat actor is leveraging a zero-day vulnerability (CVE-2025-53690) and an exposed sample ASP.NET machine key to breach internet-facing, on-premises deployments of several Sitecore solutions,…
TP-Link warns of botnet infecting routers and targeting Microsoft 365 accounts
TP-Link has issued a warning about a botnet exploiting two vulnerabilities to infect small office/home (SOHO) routers, which are then weaponized to attack Microsoft 365…
Cybercriminals Exploit X’s Grok AI to Bypass Ad Protections and Spread Malware to Millions
Sep 04, 2025Ravie LakshmananArtificial Intelligence / Malware Cybersecurity researchers have flagged a new technique that cybercriminals have adopted to bypass social media platform X’s malvertising…
Google Patches CVE-2025-48543, CVE-2025-38352 In Android
In its latest Android Security Bulletin, Google has confirmed the patching of 111 unique security vulnerabilities, including two zero-day vulnerabilities that were actively exploited in…
Palo Alto Networks disclosed a data breach linked to Salesloft Drift incident
Palo Alto Networks disclosed a data breach linked to Salesloft Drift incident Pierluigi Paganini September 02, 2025 Palo Alto Networks hit by Drift-linked supply-chain attack,…
Growth, Resilience, and What Comes Next — API Security
By Ivan Novikov and Stepan Ilyin When we started Wallarm, we focused on the APIs that power modern apps. We built an API-first platform, used…