University of Pennsylvania and University of Phoenix disclose data breaches
03
Dec
2025

University of Pennsylvania and University of Phoenix disclose data breaches

University of Pennsylvania and University of Phoenix disclose data breaches Pierluigi Paganini December 03, 2025 The University of Pennsylvania and…

Abstract binary code rippling on waving ribbons.
03
Dec
2025

Developers scramble as critical React flaw threatens major apps

Security researchers and code developers are scrambling to patch and investigate a critical vulnerability affecting React Server Components, an open-source…

This screen grab from a video posted by US Defence Secretary Pete Hegseth on social media in November shows what Hegseth says is a lethal strike on a vessel carrying narcotics in the Eastern Pacific Ocean. Image: Pete Hegseth/X via AFP
03
Dec
2025

Hegseth’s use of Signal posed risk to US personnel, Pentagon watchdog finds

The Pentagon’s watchdog found that US Defence Secretary Pete Hegseth put American personnel and their mission at risk when he…

Hackers Can Weaponize Claude Skills to Execute MedusaLocker Ransomware Attack
03
Dec
2025

Hackers Can Weaponize Claude Skills to Execute MedusaLocker Ransomware Attack

A new feature in Anthropic’s Claude AI, known as Claude Skills, has been identified as a potential vector for ransomware…

Microsoft Confirms Windows 11 25H2 UI Features Broken also Along With 24H2 Following Update
03
Dec
2025

Microsoft Confirms Windows 11 25H2 UI Features Broken also Along With 24H2 Following Update

Microsoft has acknowledged a significant issue affecting Windows 11 versions 24H2 and 25H2. Where critical user interface components break following…

Critical RSC Bugs in React and Next.js Allow Unauthenticated Remote Code Execution
03
Dec
2025

Critical RSC Bugs in React and Next.js Allow Unauthenticated Remote Code Execution

Dec 03, 2025Ravie LakshmananVulnerability / Cloud Security A maximum-severity security flaw has been disclosed in React Server Components (RSC) that,…

India’s New SIM-Binding Rule for WhatsApp, Signal, Telegram, and Other Messaging Platforms
03
Dec
2025

India’s New SIM-Binding Rule for WhatsApp, Signal, Telegram, and Other Messaging Platforms

India has implemented a mandatory SIM-binding requirement for messaging applications, including WhatsApp, Telegram, Signal, Snapchat, and others. The Department of…

Examining the Risk of AI-Assisted MedusaLocker Ransomware Attacks
03
Dec
2025

Examining the Risk of AI-Assisted MedusaLocker Ransomware Attacks

Researchers at Cato CTRL have demonstrated that the feature, designed to streamline AI workflows, can be easily weaponized to deploy…

WordPress King Addons Flaw Under Active Attack Lets Hackers Make Admin Accounts
03
Dec
2025

WordPress King Addons Flaw Under Active Attack Lets Hackers Make Admin Accounts

Dec 03, 2025Ravie LakshmananVulnerability / Website Security A critical security flaw impacting a WordPress plugin known as King Addons for…

Roblox
03
Dec
2025

Russia blocks Roblox over distribution of LGBT “propaganda”

Roskomnadzor, Russia’s telecommunications watchdog, has blocked access to the Roblox online gaming platform for failing to stop the distribution of…

Longwatch RCE Vulnerability Let Attackers Execute Remote Code With Elevated Privileges
03
Dec
2025

Longwatch RCE Vulnerability Let Attackers Execute Remote Code With Elevated Privileges

A critical security vulnerability has been discovered in Industrial Video & Control’s Longwatch video surveillance system, allowing attackers to execute…

CISA Issues Alert on Actively Exploited Android Zero-Day Vulnerability
03
Dec
2025

CISA Issues Alert on Actively Exploited Android Zero-Day Vulnerability

The Cybersecurity and Infrastructure Security Agency (CISA) has added two critical Android Framework vulnerabilities to its Known Exploited Vulnerabilities (KEV)…