Hungarian government email passwords exposed ahead of election
When voters in the forthcoming Hungarian election assess the current government, its record on internet security will not be one of its proudest achievements. An…
Category: CISOOnline
Google adds end-to-end Gmail encryption to Android, iOS devices for enterprises
However, Litan added, the capability remains opt-in, requires premium licensing and administrative configuration, and disables several Gmail functions, including AI features and comprehensive search, on…
Old Docker authorization bypass pops up despite previous patch
No one checked oversized requests While the previous authorization bypass was triggered when request Content-Length was set to 0, no one checked at the time…
Hacker Unknown now known, named on Europol’s most-wanted list
German police have pinned a name to one of the world’s most notorious hackers. Danii Shchukin operated under the names of UNKN or Unknown and…
Claude uncovers a 13‑year‑old ActiveMQ RCE bug within minutes
The flaw is tracked as CVE-2026-34197 and carries a high severity rating (CVSS 8.8). It affects ActiveMQ Classic versions prior to 5.19.4 and several 6.x…
Was CISOs von Moschusochsen lernen können
Das ist die Essenz dessen, was ich als “Moschusochsenstrategie” bezeichne. Der Hintergrund: Werden Moschusochsen von Wölfen angegriffen, bildet die Herde einen Kreis, in dessen Mitte…
Hackers have been exploiting an unpatched Adobe Reader vulnerability for months
Adam Marrè, CISO at Arctic Wolf, said that what makes this new vulnerability particularly concerning is that it’s being actively exploited and appears to work…
Cloudflare ‘actively adjusting’ quantum priorities in wake of Google warning
For example, newer and faster algorithms have already been developed, such as the JVG algorithm, that require less quantum computational power (qubits) to factor large…
New ClickFix variant bypasses Apple safeguards with one‑click script execution
The researchers pointed out that the behavior of the Script Editor may vary depending on the macOS version. “On recent versions of macOS Tahoe, an…
Weak at the seams | CSO Online
Before I ever held a security title, I was a software engineer implementing vertically integrated automation systems for industrial manufacturing, warehouse-scale conveyor networks, robotic material…
So geht Post-Incident Review | CSO Online
Jede neue Entdeckung – etwa mit Blick auf das Einfallstor für den Angriff, seinen Scope oder die von den Angreifern verwendeten Tools, könnten die Untersuchungsziele…
Questions raised about how LinkedIn uses the petabytes of data it collects
“Assuming the BrowserGate allegations are true, LinkedIn users should consider reducing the amount of identifiable, trackable, or sensitive data their browser exposes, and organizations should…