CORS misconfiguration vulnerabilities are a highly underestimated vulnerability class. With an impact ranging from sensitive information disclosure to facilitating SSRF attacks, this client-side security vulnerability…
They tried logging into secure.telemessage.com using a pair of these credentials and discovered that they had just hacked a user with an email address associated…
Experts found rogue devices, including hidden cellular radios, in Chinese-made power inverters used worldwide Pierluigi Paganini May 18, 2025 Chinese “kill switches” found in Chinese-made…
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Patch Tuesday: Microsoft fixes 5 actively exploited zero-daysOn May 2025…
A new information-stealing malware dubbed “PupkinStealer” has been identified by cybersecurity researchers, targeting sensitive user data through a straightforward yet effective approach. First observed in…
The cybersecurity landscape in 2025 is defined by increasingly sophisticated malware threats, with attackers leveraging artificial intelligence, evasion tactics, and polymorphic code to bypass traditional…
As artificial intelligence transforms industries and enhances human capabilities, the need for strong AI security frameworks has become paramount. Recent developments in AI security standards…
Cryptocurrency exchanges are intensifying security measures in 2025 to focus on preventing phishing attacks, as these scams reach alarming levels and have caused millions in…
US Government officials targeted with texts and AI-generated deepfake voice messages impersonating senior U.S. officials Pierluigi Paganini May 17, 2025 FBI warns ex-officials are targeted…
A new tool called ‘Defendnot’ can disable Microsoft Defender on Windows devices by registering a fake antivirus product, even when no real AV is installed. The…
A sophisticated ransomware campaign specifically targeting and mocking supporters of Elon Musk has been identified by cybersecurity experts. The attack, identified as a variant of…
As decentralized systems mature, 2024–2025 has emerged as a watershed period for blockchain security, marked by sophisticated cyberattacks, novel attack vectors, and landmark regulatory interventions.…
