News

Until Microsoft lobbed it into a virtual volcano

A security researcher claims to have found a flaw that could have handed him the keys to almost every Entra ID tenant worldwide.…

Radware says flaw enabled hidden email prompts to trick Deep Research agent into exfiltrating sensitive data

ChatGPT's research assistant sprung a leak – since patched – that let attackers steal Gmail secrets with just a single carefully crafted email.…

Another blow for the legislation as Parliament continues to hear stakeholder views

As UK ministers continue to quiz stakeholders over the effectiveness of the Online Safety Act, one charity chief raised concerns over the robustness of Ofcom's enforcement of the controversial legislation.…

YouTube vids explain digital tradecraft to reach spooks over Tor or VPN without blowing your cover

The UK’s Secret Intelligence Service, aka MI6, has created a dark web portal called “Silent Courier” that it hopes would-be foreign informants will find a suitably secure means of sharing secrets.…

Sixth such Chrome flaw this year spotted by the Chocolate Factory, already in play

Google pushed an emergency patch for a high-severity Chrome flaw, already under active exploitation. So it's time to make sure you're running the most recent version of the web browser.…

Vendor pulls plug on cloud backup feature, urges admins to reset passwords and re-secure devices

SonicWall is telling some customers to reset passwords after attackers broke into its cloud backup service and accessed firewall configuration data.…