Microsoft fixes Windows Task Manager bug affecting performance
Microsoft has resolved a known issue preventing users from quitting the Windows 11 Task Manager after installing the optional Windows 11 KB5067036 update. The bug…
Month: November 2025
Authentication Coercion Attack Tricks Windows Machines into Revealing Credentials to Attack-controlled Servers
Authentication coercion represents a sophisticated and evolving threat targeting Windows and Active Directory environments across organizations globally. This attack method exploits the fundamental communication mechanisms…
How Windows Machines Are Tricked into Leaking Credentials
Cybersecurity researchers have identified a growing trend in Windows-targeted attacks that exploit fundamental operating system features to force machines into surrendering valuable credentials without requiring…
Synology patches critical BeeStation RCE flaw shown at Pwn2Own Ireland 2025
Synology patches critical BeeStation RCE flaw shown at Pwn2Own Ireland 2025 Pierluigi Paganini November 12, 2025 Synology fixed a critical BeeStation RCE flaw (CVE-2025-12686) shown…
Tor Browser 15.0.1 Released With Fix for Multiple Security Vulnerabilities
Tor Browser 15.0.1 is now available for download, bringing essential security patches and bug fixes to users across all platforms. The latest release includes critical…
This Is the Platform Google Claims Is Behind a ‘Staggering’ Scam Text Operation
Chinese cybercriminals are scamming the world. Over the last few years, these fraudsters have sent millions of scam text messages—often impersonating the USPS or toll-road…
GitHub Copilot and Visual Studio Flaws Let Attackers Bypass Security Protections
Microsoft has disclosed two critical security vulnerabilities affecting GitHub Copilot and Visual Studio Code that could allow attackers to bypass important security protections. Both flaws…
ChatGPT Hacked Using Custom GPTs Exploiting SSRF Vulnerability to Expose Secrets
A Server-Side Request Forgery (SSRF) vulnerability in OpenAI’s ChatGPT. The flaw, lurking in the Custom GPT “Actions” feature, allowed attackers to trick the system into…
Microsoft SQL Server Vulnerability Allows Privilege Escalation
Microsoft has disclosed a critical SQL injection vulnerability in SQL Server that could allow authenticated attackers to escalate their privileges over a network. Tracked as…
Google Launches ‘Private AI Compute’ — Secure AI Processing with On-Device-Level Privacy
Nov 12, 2025Ravie LakshmananArtificial Intelligence / Encryption Google on Tuesday unveiled a new privacy-enhancing technology called Private AI Compute to process artificial intelligence (AI) queries…
New KomeX Android RAT Advertised on Hacker Forums with Multiple Subscription Options
A newly identified Android remote access trojan (RAT) dubbed KomeX has surfaced on underground hacker forums, generating widespread concern within the cybersecurity community. Marketed by…
Mozilla Issues Urgent Firefox Update to Patch Critical Code Execution Flaws
The Mozilla Foundation released three critical security advisories on November 11, 2025, addressing 16 unique vulnerabilities across multiple Firefox versions and platforms. The updates target…