Nostr notes by BleepingComputer

A new report dubbed "BrowserGate" warns that ...

2026-04-03T20:40:38Z

A new report dubbed "BrowserGate" warns that Microsoft's LinkedIn is using hidden JavaScript scripts on its website to scan visitors' browsers for installed extensions and collect device data.

https://www.bleepingcomputer.com/news/security/linkedin-secretely-scans-for-6-000-plus-chrome-extensions-collects-data/

Bug bounty platform HackerOne is notifying hundreds of employees ...

2026-03-24T14:03:12Z

Bug bounty platform HackerOne is notifying hundreds of employees that their data was stolen after attackers hacked Navia, one of its U.S. benefits administrators.

https://www.bleepingcomputer.com/news/security/hackerone-discloses-employee-data-breach-after-navia-hack/

OpenAI is rolling out a new feature called 'Library' for ...

2026-03-23T23:47:28Z

OpenAI is rolling out a new feature called 'Library' for ChatGPT, which allows you to store your personal files or images on OpenAI's cloud storage, so you can reference those items in a future chat.

https://www.bleepingcomputer.com/news/artificial-intelligence/openai-rolls-out-chatgpt-library-to-store-your-personal-files/

Identity protection company Aura has confirmed that an authorized ...

2026-03-18T22:57:04Z

Identity protection company Aura has confirmed that an authorized party gained access to nearly 900,000 customer records containing names and email addresses.

https://www.bleepingcomputer.com/news/security/aura-confirms-data-breach-exposing-900-000-marketing-contacts/

Athanasios Rantos, the Advocate General of the Court of Justice ...

2026-03-08T15:27:13Z

Athanasios Rantos, the Advocate General of the Court of Justice of the EU (CJEU), has issued a formal opinion suggesting that banks must immediately refund account holders affected by unauthorized transactions, even when it's their fault.

https://www.bleepingcomputer.com/news/legal/eu-court-adviser-says-banks-must-immediately-refund-phishing-victims/

American data analytics company LexisNexis Legal & ...

2026-03-03T15:41:03Z

American data analytics company LexisNexis Legal & Professional has confirmed to BleepingComputer that hackers breached its servers and accessed some customer and business information.

https://www.bleepingcomputer.com/news/security/lexisnexis-confirms-data-breach-as-hackers-leak-stolen-files/

Amazon has confirmed that three Amazon Web Services (AWS) data ...

2026-03-03T11:45:00Z

Amazon has confirmed that three Amazon Web Services (AWS) data centers in the United Arab Emirates (UAE) and one in Bahrain have been damaged by drone strikes, causing an extensive outage that is still affecting dozens of cloud computing services.

https://www.bleepingcomputer.com/news/technology/amazon-drone-strikes-damaged-aws-data-centers-in-middle-east/

CISA has flagged a critical SolarWinds Web Help Desk ...

2026-02-03T19:37:36Z

CISA has flagged a critical SolarWinds Web Help Desk vulnerability as actively exploited in attacks and ordered federal agencies to patch their systems within three days.

https://www.bleepingcomputer.com/news/security/cisa-flags-critical-solarwinds-rce-flaw-as-actively-exploited/

Microsoft is investigating reports that some Windows 11 devices ...

2026-01-25T13:24:13Z

Microsoft is investigating reports that some Windows 11 devices are failing to boot with "UNMOUNTABLE_BOOT_VOLUME" errors after installing the January 2026 Patch Tuesday security updates.

https://www.bleepingcomputer.com/news/microsoft/microsoft-investigates-windows-11-boot-failures-after-january-updates/

Microsoft is rolling out new artificial intelligence features ...

2026-01-22T14:22:40Z

Microsoft is rolling out new artificial intelligence features with the latest updates to the Notepad and Paint apps for Windows 11 Insiders.

https://www.bleepingcomputer.com/news/microsoft/microsoft-updates-notepad-and-paint-with-more-ai-features/

OpenAI has confirmed ChatGPT is getting ads in the coming weeks, ...

2026-01-16T23:06:50Z

OpenAI has confirmed ChatGPT is getting ads in the coming weeks, but it promises that ads won't influence answers generated by ChatGPT.

https://www.bleepingcomputer.com/news/artificial-intelligence/openai-says-its-new-chatgpt-ads-wont-influence-answers/

Verizon has begun sending text messages with instructions on how ...

2026-01-16T16:20:03Z

Verizon has begun sending text messages with instructions on how to redeem a $20 account credit for last week's nationwide wireless outage.

https://www.bleepingcomputer.com/news/mobile/verizon-starts-issuing-20-credits-after-nationwide-outage/

Google has confirmed that it's now possible to change your ...

2026-01-16T00:36:26Z

Google has confirmed that it's now possible to change your @gmail.com address. This means that if your current email is xyz@gmail.com, you can now change it to abc@gmail.com.

https://www.bleepingcomputer.com/news/technology/google-now-lets-you-change-your-gmailcom-address-rolling-out/

The FTC has finalized an order with General Motors, settling ...

2026-01-15T09:59:46Z

The FTC has finalized an order with General Motors, settling charges that it collected and sold the location and driving data of millions of drivers without consent.

https://www.bleepingcomputer.com/news/security/ftc-bans-general-motors-from-selling-drivers-location-data-for-five-years/

Verizon Wireless is suffering a massive outage in the US, with ...

2026-01-14T18:27:41Z

Verizon Wireless is suffering a massive outage in the US, with customers reporting their phones stuck in SOS mode with no cellular service.

https://www.bleepingcomputer.com/news/mobile/verizon-wireless-outage-puts-phones-in-sos-mode-without-cell-service/

The European Space Agency (ESA) confirmed that attackers recently ...

2025-12-30T16:27:11Z

The European Space Agency (ESA) confirmed that attackers recently breached servers outside its corporate network, which contained what it described as "unclassified" information on collaborative engineering activities.

https://www.bleepingcomputer.com/news/security/european-space-agency-confirms-breach-of-external-servers/

Coupang, the largest retailer in South Korea, announced $1.17 ...

2025-12-29T22:27:15Z

Coupang, the largest retailer in South Korea, announced $1.17 billion (1.685 trillion Won) total compensation for the 33.7 million customers whose information was exposed in the data breach discovered last month.

https://www.bleepingcomputer.com/news/security/coupang-to-split-117-billion-among-337-million-data-breach-victims/

OpenAI is rolling out an update to ChatGPT on mobile that finally ...

2025-12-29T15:00:12Z

OpenAI is rolling out an update to ChatGPT on mobile that finally allows you to select the Thinking time toggle, also called "juice" of the model.

https://www.bleepingcomputer.com/news/artificial-intelligence/chatgpt-finally-rolls-out-thinking-time-toggle-on-mobile/

A ransomware attack hit Oltenia Energy Complex (Complexul ...

2025-12-29T14:26:12Z

A ransomware attack hit Oltenia Energy Complex (Complexul Energetic Oltenia), Romania's largest coal-based energy producer, on the second day of Christmas, taking down its IT infrastructure.

https://www.bleepingcomputer.com/news/security/romanian-energy-provider-hit-by-gentlemen-ransomware-attack/

Microsoft is rolling out GPT 5.2 to Copilot on the web, Windows, ...

2025-12-29T12:23:48Z

Microsoft is rolling out GPT 5.2 to Copilot on the web, Windows, and mobile as a free upgrade, and it'll coexist with the GPT 5.1 model.

https://www.bleepingcomputer.com/news/microsoft/microsoft-copilot-is-rolling-out-gpt-52-as-smart-plus-mode/

Fortinet has warned customers that threat actors are still ...

2025-12-29T11:16:18Z

Fortinet has warned customers that threat actors are still actively exploiting a critical FortiOS vulnerability that allows them to bypass two-factor authentication (2FA) when targeting vulnerable FortiGate firewalls.

https://www.bleepingcomputer.com/news/security/fortinet-warns-of-5-year-old-fortios-2fa-bypass-still-exploited-in-attacks/

A severe vulnerability affecting multiple MongoDB versions, ...

2025-12-28T20:38:31Z

A severe vulnerability affecting multiple MongoDB versions, dubbed MongoBleed (CVE-2025-14847), is being actively exploited in the wild, with over 80,000 potentially vulnerable servers exposed on the public web.

https://www.bleepingcomputer.com/news/security/exploited-mongobleed-flaw-leaks-mongodb-secrets-87k-servers-exposed/

A hacker claims to have breached Condé Nast and leaked an ...

2025-12-28T17:57:52Z

A hacker claims to have breached Condé Nast and leaked an alleged WIRED database containing more than 2.3 million subscriber records, while also warning that they plan to release up to 40 million additional records for other Condé Nast properties.

https://www.bleepingcomputer.com/news/security/hacker-claims-to-leak-wired-database-with-23-million-records/

Ubisoft's Rainbow Six Siege (R6) suffered a breach that ...

2025-12-28T05:44:15Z

Ubisoft's Rainbow Six Siege (R6) suffered a breach that allowed hackers to abuse internal systems to ban and unban players, manipulate in-game moderation feeds, and grant massive amounts of in-game currency and cosmetic items to accounts worldwide.

https://www.bleepingcomputer.com/news/security/massive-rainbow-six-siege-breach-gives-players-billions-of-credits/

OpenAI is reportedly mulling a new form of ads on ChatGPT called ...

2025-12-27T09:47:09Z

OpenAI is reportedly mulling a new form of ads on ChatGPT called "sponsored content," which could influence your buying decisions.

https://www.bleepingcomputer.com/news/artificial-intelligence/openais-chatgpt-ads-will-allegedly-prioritize-sponsored-content-in-answers/

Grubhub users received fraudulent messages, apparently from a ...

2025-12-26T20:22:44Z

Grubhub users received fraudulent messages, apparently from a company email address, promising a tenfold bitcoin payout in return for a transfer to a specified wallet.

https://www.bleepingcomputer.com/news/security/fake-grubhub-emails-promise-tenfold-return-on-sent-cryptocurrency/

Trust Wallet Chrome extension Christmas Eve update (v2.68.0) tied ...

2025-12-26T09:47:24Z

Trust Wallet Chrome extension Christmas Eve update (v2.68.0) tied to >$6 million in losses. Simultaneously, we observed a phishing campaign directing users to 'fix-trustwallet[.]com' offering a bogus "security vulnerability" fix - @Ax_Sharma

https://www.bleepingcomputer.com/news/security/trust-wallet-chrome-extension-hack-tied-to-millions-in-losses/

OpenAI has quietly rolled out 'formatting blocks,' which ...

2025-12-25T22:39:36Z

OpenAI has quietly rolled out 'formatting blocks,' which tweak GPT's layout to match the UI of the task it is supposed to execute.

https://www.bleepingcomputer.com/news/artificial-intelligence/chatgpts-new-formatting-blocks-make-its-ui-look-more-like-a-task-tool/

Google will finally allow you to change your @gmail address or ...

2025-12-25T14:31:18Z

Google will finally allow you to change your @gmail address or create a new alias, according to a new support document.

https://www.bleepingcomputer.com/news/google/google-will-finally-allow-you-to-change-your-gmailcom-address/

OpenAI is testing a new ChatGPT feature called "Skills," ...

2025-12-24T22:31:44Z

OpenAI is testing a new ChatGPT feature called "Skills," which will be similar to Claude's feature, also called Skills.

https://www.bleepingcomputer.com/news/artificial-intelligence/openai-is-reportedly-testing-claude-like-skills-for-chatgpt/

Microsoft announced that security administrators will soon be ...

2025-12-24T16:24:12Z

Microsoft announced that security administrators will soon be able to block external users from sending messages, calls, or meeting invitations to members of their organization via Teams.

https://www.bleepingcomputer.com/news/microsoft/microsoft-teams-to-let-admins-block-external-users-via-defender-portal/

Microsoft is rolling out hardware-accelerated BitLocker in ...

2025-12-23T20:04:12Z

Microsoft is rolling out hardware-accelerated BitLocker in Windows 11 to address growing performance and security concerns by leveraging the capabilities of system-on-a-chip and CPU.

https://www.bleepingcomputer.com/news/security/microsoft-rolls-out-hardware-accelerated-bitlocker-in-windows-11/

The WebRAT malware is now being distributed through GitHub ...

2025-12-23T19:32:09Z

The WebRAT malware is now being distributed through GitHub repositories that claim to host proof-of-concept exploits for recently disclosed vulnerabilities.

https://www.bleepingcomputer.com/news/security/webrat-malware-spread-via-fake-vulnerability-exploits-on-github/

Italy's competition authority (AGCM) has fined Apple €98.6 ...

2025-12-23T11:06:38Z

Italy's competition authority (AGCM) has fined Apple €98.6 million ($116 million) for using the App Tracking Transparency (ATT) privacy framework to abuse its dominant market position in mobile app advertising.

https://www.bleepingcomputer.com/news/security/italy-fines-apple-116-million-over-app-store-tracking-privacy-practices/

The latest variant of the MacSync information stealer targeting ...

2025-12-22T20:43:56Z

The latest variant of the MacSync information stealer targeting macOS systems is delivered through a digitally signed, notarized Swift application.

https://www.bleepingcomputer.com/news/security/new-macsync-malware-dropper-evades-macos-gatekeeper-checks/

An Interpol-coordinated initiative called Operation Sentinel led ...

2025-12-22T18:38:23Z

An Interpol-coordinated initiative called Operation Sentinel led to the arrest of 574 individuals and the recovery of $3 million linked to business email compromise, extortion, and ransomware incidents.

https://www.bleepingcomputer.com/news/security/interpol-led-action-decrypts-6-ransomware-strains-arrests-hundreds/

A Ukrainian national pleaded guilty on Friday to conducting ...

2025-12-22T09:47:09Z

A Ukrainian national pleaded guilty on Friday to conducting Nefilim ransomware attacks that targeted high-revenue businesses across the United States and other countries.

https://www.bleepingcomputer.com/news/security/ukrainian-hacker-admits-affiliate-role-in-nefilim-ransomware-gang/

More than a 1,000 Docker Hardened Images (DHI) are now freely ...

2025-12-21T15:14:14Z

More than a 1,000 Docker Hardened Images (DHI) are now freely available and open source for software builders, under the Apache 2.0 license.

https://www.bleepingcomputer.com/news/security/docker-hardened-images-now-open-source-and-available-for-free/

The RansomHouse ransomware-as-a-service (RaaS) has recently ...

2025-12-20T15:24:12Z

The RansomHouse ransomware-as-a-service (RaaS) has recently upgraded its encryptor, switching from a relatively simple single-phase linear technique to a more complex, multi-layered method.

https://www.bleepingcomputer.com/news/security/ransomhouse-upgrades-encryption-with-multi-layered-data-processing/

The Nigerian police have arrested three individuals linked to ...

2025-12-19T19:05:47Z

The Nigerian police have arrested three individuals linked to targeted Microsoft 365 cyberattacks via Raccoon0365 phishing-as-a-service.

https://www.bleepingcomputer.com/news/security/nigeria-arrests-dev-of-microsoft-365-raccoon0365-phishing-platform/

Multiple threat actors are compromising Microsoft 365 accounts in ...

2025-12-19T17:19:20Z

Multiple threat actors are compromising Microsoft 365 accounts in phishing attacks that leverage the OAuth device code authorization mechanism.

https://www.bleepingcomputer.com/news/security/microsoft-365-accounts-targeted-in-wave-of-oauth-phishing-attacks/

The UEFI firmware implementation in some motherboards from ASUS, ...

2025-12-19T15:55:05Z

The UEFI firmware implementation in some motherboards from ASUS, Gigabyte, MSI, and ASRock is vulnerable to direct memory access (DMA) attacks that can bypass early-boot memory protections.

https://www.bleepingcomputer.com/news/security/new-uefi-flaw-enables-pre-boot-attacks-on-motherboards-from-gigabyte-msi-asus-asrock/

Internet security watchdog Shadowserver has found over 25,000 ...

2025-12-19T15:01:05Z

Internet security watchdog Shadowserver has found over 25,000 Fortinet devices exposed online with FortiCloud SSO enabled, amid ongoing attacks targeting a critical authentication bypass vulnerability.

https://www.bleepingcomputer.com/news/security/over-25-000-forticloud-sso-devices-exposed-to-remote-attacks/

Danish intelligence officials blamed Russia for orchestrating ...

2025-12-19T12:28:59Z

Danish intelligence officials blamed Russia for orchestrating cyberattacks against Denmark's critical infrastructure, as part of Moscow's hybrid attacks against Western nations.

https://www.bleepingcomputer.com/news/security/denmark-blames-russia-for-destructive-cyberattack-on-water-utility/

Grocery delivery service Instacart will refund $60 million to ...

2025-12-19T09:19:51Z

Grocery delivery service Instacart will refund $60 million to settle FTC claims that it misled customers with false advertising and unlawfully enrolled them in paid subscriptions.

https://www.bleepingcomputer.com/news/legal/instacart-to-refund-60m-over-deceptive-subscription-tactics/

This month's extended security update for Windows 11 broke ...

2025-12-19T01:15:38Z

This month's extended security update for Windows 11 broke Message Queuing (MSMQ), which is typically used by enterprises to manage background tasks.

https://www.bleepingcomputer.com/news/microsoft/windows-10-oob-update-released-to-fix-message-queuing-msmq-issues/

Hackers gained access to an online coding repository belonging to ...

2025-12-18T20:23:15Z

Hackers gained access to an online coding repository belonging to the University of Sydney and stole files with personal information of staff and students.

https://www.bleepingcomputer.com/news/security/university-of-sydney-suffers-data-breach-exposing-student-and-staff-info/

The Clop ransomware gang is targeting Internet-exposed Gladinet ...

2025-12-18T20:17:13Z

The Clop ransomware gang is targeting Internet-exposed Gladinet CentreStack file servers in a new data theft extortion campaign.

https://www.bleepingcomputer.com/news/security/clop-ransomware-targets-gladinet-centrestack-servers-for-extortion/

An automated campaign is targeting multiple VPN platforms, with ...

2025-12-18T17:27:43Z

An automated campaign is targeting multiple VPN platforms, with credential-based attacks being observed on Palo Alto Networks GlobalProtect and Cisco SSL VPN.

https://www.bleepingcomputer.com/news/security/new-password-spraying-attacks-target-cisco-pan-vpn-gateways/

Law enforcement has seized the servers and domains of the E-Note ...

2025-12-18T16:13:20Z

Law enforcement has seized the servers and domains of the E-Note cryptocurrency exchange, allegedly used by cybercriminal groups to launder more than $70 million.

https://www.bleepingcomputer.com/news/security/us-seizes-e-note-crypto-exchange-for-laundering-ransomware-payments/

French authorities arrested two crew members of an Italian ...

2025-12-18T13:48:15Z

French authorities arrested two crew members of an Italian passenger ferry suspected of infecting the ship with malware that could have enabled them to remotely control the vessel.

https://www.bleepingcomputer.com/news/security/france-arrests-latvian-for-installing-malware-on-italian-ferry/

French authorities arrested two crew members of an Italian ...

2025-12-18T13:48:15Z

Microsoft says that recent Windows updates trigger RemoteApp ...

2025-12-18T10:04:41Z

Microsoft says that recent Windows updates trigger RemoteApp connection failures on Windows 11 24H2/25H2 and Windows Server 2025 devices in Azure Virtual Desktop environments.

https://www.bleepingcomputer.com/news/microsoft/microsoft-recent-updates-break-azure-virtual-desktop-remoteapp-sessions/

The Zeroday Cloud hacking competition in London has awarded ...

2025-12-17T23:09:54Z

The Zeroday Cloud hacking competition in London has awarded researchers $320,000 for demonstrating critical remote code execution vulnerabilities in components used in cloud infrastructure.

https://www.bleepingcomputer.com/news/security/zeroday-cloud-hacking-event-awards-320-0000-for-11-zero-days/

French authorities arrested a 22-year-old suspect on Tuesday for ...

2025-12-17T22:20:22Z

French authorities arrested a 22-year-old suspect on Tuesday for a cyberattack that targeted France's Ministry of the Interior earlier this month.

https://www.bleepingcomputer.com/news/security/france-arrests-suspect-tied-to-cyberattack-on-interior-ministry/

🚨PornHub is being extorted by the ShinyHunters extortion group ...

2025-12-15T21:43:58Z

🚨PornHub is being extorted by the ShinyHunters extortion group over the theft of over 200 million Premum member activity data records.

Both PornHub and ShinyHunters claim the data was stolen in the recent Mixpanel breach.
https://www.bleepingcomputer.com/news/security/pornhub-extorted-after-hackers-steal-premium-member-activity-data/

The UK Information Commissioner's Office (ICO) fined the ...

2025-12-11T17:09:16Z

The UK Information Commissioner's Office (ICO) fined the LastPass password management firm £1.2 million for failing to implement security measures that allowed an attacker to steal personal information and encrypted password vaults belonging to up to 1.6 million UK users in a 2022 breach.

https://www.bleepingcomputer.com/news/security/uk-fines-lastpass-over-2022-data-breach-impacting-16-million-users/

Microsoft says Windows PowerShell now warns when running scripts ...

2025-12-09T20:45:37Z

Microsoft says Windows PowerShell now warns when running scripts that use the Invoke-WebRequest cmdlet to download web content, aiming to prevent potentially risky code from executing.

https://www.bleepingcomputer.com/news/security/microsoft-windows-powershell-now-warns-when-running-invoke-webrequest-scripts/

Microsoft says it will add a new Teams call handler beginning in ...

2025-11-25T14:25:09Z

Microsoft says it will add a new Teams call handler beginning in January 2026 to reduce launch times and boost call performance for the Windows desktop client.

https://www.bleepingcomputer.com/news/microsoft/microsoft-to-boost-teams-performance-with-new-call-handler/

In a move that could redefine the web, Google is testing ...

2025-11-19T19:45:21Z

In a move that could redefine the web, Google is testing AI-powered, UI-based answers for its AI mode.

https://www.bleepingcomputer.com/news/artificial-intelligence/google-search-is-now-using-ai-to-create-interactive-ui-to-answer-your-questions/

Thunderbird 145 has been released with full native support for ...

2025-11-18T22:09:48Z

Thunderbird 145 has been released with full native support for Microsoft Exchange email via the Exchange Web Services (EWS) protocol.

https://www.bleepingcomputer.com/news/software/thunderbird-adds-native-support-for-microsoft-exchange-accounts/

American business services giant Conduent has confirmed that a ...

2025-10-30T18:38:59Z

American business services giant Conduent has confirmed that a 2024 data breach has impacted over 10.5 million people, according to notifications filed with the US Attorney General's offices.

https://www.bleepingcomputer.com/news/security/bpo-giant-conduent-confirms-data-breach-impacts-105-million-people/

Google announced today that the Chrome web browser will start ...

2025-10-28T17:02:12Z

Google announced today that the Chrome web browser will start warning users by default before connecting to insecure HTTP public websites beginning with Chrome 154 in October 2026.

https://www.bleepingcomputer.com/news/google/google-chrome-to-warn-users-before-opening-insecure-http-sites/

Hackers believed to be associated with China have leveraged the ...

2025-10-22T10:24:43Z

Hackers believed to be associated with China have leveraged the ToolShell vulnerability (CVE-2025-53770) in Microsoft SharePoint in attacks targeting government agencies, universities, telecommunication service providers, and finance organizations.

https://www.bleepingcomputer.com/news/security/sharepoint-toolshell-attacks-targeted-orgs-across-four-continents/

CISA says threat actors are now actively exploiting a ...

2025-10-20T17:18:31Z

CISA says threat actors are now actively exploiting a high-severity Windows SMB privilege escalation vulnerability that can let them gain SYSTEM privileges on unpatched systems.

https://www.bleepingcomputer.com/news/security/cisa-high-severity-windows-smb-flaw-now-exploited-in-attacks/

The U.S. Department of Justice has seized $15 billion in bitcoin ...

2025-10-14T17:38:02Z

The U.S. Department of Justice has seized $15 billion in bitcoin from the leader of Prince Group, a criminal organization that stole billions of dollars from victims in the United States through cryptocurrency investment scams, also known as romance baiting or pig butchering.

https://www.bleepingcomputer.com/news/security/us-seizes-15-billion-in-crypto-from-pig-butchering-kingpin/

Around 200,000 Linux computer systems from American computer ...

2025-10-14T13:22:29Z

Around 200,000 Linux computer systems from American computer maker Framework were shipped with signed UEFI shell components that could be exploited to bypass Secure Boot protections.

https://www.bleepingcomputer.com/news/security/secure-boot-bypass-risk-on-nearly-200-000-linux-framework-sytems/

Microsoft has upgraded its AI-powered Copilot digital assistant ...

2025-10-10T14:49:25Z

Microsoft has upgraded its AI-powered Copilot digital assistant to connect to email accounts and generate Office documents from prompt outputs.

https://www.bleepingcomputer.com/news/microsoft/copilot-on-windows-can-now-connect-to-email-create-office-docs/

Google is integrating C2PA Content Credentials into the Pixel 10 ...

2025-09-10T16:00:21Z

Google is integrating C2PA Content Credentials into the Pixel 10 camera and Google Photos, to help users distinguish between authentic, unaltered images and those generated or edited with artificial intelligence technology.

https://www.bleepingcomputer.com/news/security/pixel-10-fights-ai-fakes-with-new-android-photo-verification-tech/

A weakness in the Cursor code editor exposes developers to the ...

2025-09-10T15:48:18Z

A weakness in the Cursor code editor exposes developers to the risk of automatically executing tasks in a malicious repository as soon as it's opened.

https://www.bleepingcomputer.com/news/security/cursor-ai-editor-lets-repos-autorun-malicious-code-on-devices/

Jaguar Land Rover (JLR) confirmed today that attackers also stole ...

2025-09-10T15:29:33Z

Jaguar Land Rover (JLR) confirmed today that attackers also stole "some data" during a recent cyberattack that forced it to shut down systems and instruct staff not to report to work.

https://www.bleepingcomputer.com/news/security/jaguar-land-rover-jlr-confirms-data-theft-after-recent-cyberattack/

Microsoft has resolved severe lag and stuttering issues with ...

2025-09-10T13:03:02Z

Microsoft has resolved severe lag and stuttering issues with streaming software affecting Windows 10 and Windows 11 systems after installing the August 2025 security updates.

https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-streaming-issues-triggered-by-windows-updates/

Microsoft has fixed a known issue caused by the August 2025 ...

2025-09-10T12:02:52Z

Microsoft has fixed a known issue caused by the August 2025 security updates, which triggers unexpected User Account Control (UAC) prompts and app installation problems for non-admin users on all Windows versions.

https://www.bleepingcomputer.com/news/microsoft/microsoft-fixes-app-install-issues-caused-by-august-windows-updates/

The U.S. Department of Justice has sued toy maker Apitor ...

2025-09-03T17:53:48Z

The U.S. Department of Justice has sued toy maker Apitor Technology for allegedly allowing a Chinese third party to collect children's geolocation data without their knowledge and parental consent.

https://www.bleepingcomputer.com/news/security/us-sues-robot-toy-maker-for-exposing-childrens-data-to-chinese-devs/

Threat actors are leveraging a Unicode character to make phishing ...

2025-08-14T14:24:01Z

Threat actors are leveraging a Unicode character to make phishing links appear like legitimate Booking.com links in a new campaign distributing malware. The attack makes use of the Japanese hiragana character, ん, which can, on some systems, appear as a forward slash and make a phishing URL appear realistic to a person at first.

https://www.bleepingcomputer.com/news/security/bookingcom-phishing-campaign-uses-sneaky-character-to-trick-you/

Two malicious NPM packages posing as WhatsApp development tools ...

2025-08-07T21:42:49Z

Two malicious NPM packages posing as WhatsApp development tools have been discovered deploying destructive data-wiping code that recursively deletes files on a developer's computers.

https://www.bleepingcomputer.com/news/security/fake-whatsapp-developer-libraries-hide-destructive-data-wiping-code/

OpenAI isn't just working on GPT-5. It looks like OpenAI is ...

2025-08-02T10:01:54Z

OpenAI isn't just working on GPT-5. It looks like OpenAI is also preparing to release new open-source weights, living up to its name, OpenAI.'

https://www.bleepingcomputer.com/news/artificial-intelligence/openai-prepares-new-open-weight-models-along-with-gpt-5/

Cisco has removed a backdoor account from its Unified ...

2025-07-02T17:08:40Z

Cisco has removed a backdoor account from its Unified Communications Manager (Unified CM), which would have allowed remote attackers to log in to unpatched devices with root privileges.

https://www.bleepingcomputer.com/news/security/cisco-removes-unified-cm-callManager-backdoor-root-account/

Elon Musk-funded xAI is skipping Grok 3.5 and releasing Grok 4 ...

2025-07-02T12:22:50Z

Elon Musk-funded xAI is skipping Grok 3.5 and releasing Grok 4 after Independence Day in the United States.

https://www.bleepingcomputer.com/news/artificial-intelligence/grok-4-spotted-ahead-of-launch-with-special-coding-features/

Google AI mode and AI Overviews now have ads, which, according to ...

2025-05-26T12:45:24Z

Google AI mode and AI Overviews now have ads, which, according to the search engine giant, are "helpful."

https://www.bleepingcomputer.com/news/google/google-claims-users-find-ads-in-ai-search-helpful/

TeleMessage, an Israeli company that sells an unofficial Signal ...

2025-05-05T19:11:33Z

TeleMessage, an Israeli company that sells an unofficial Signal message archiving tool used by some U.S. government officials, has suspended all services after reportedly being hacked.

https://www.bleepingcomputer.com/news/security/unofficial-signal-app-used-by-trump-officials-investigates-hack/

The CA/Browser Forum has voted to significantly reduce the ...

2025-04-14T17:49:50Z

The CA/Browser Forum has voted to significantly reduce the lifespan of SSL/TLS certificates over the next 4 years, with a final lifespan of just 47 days starting in 2029.

https://www.bleepingcomputer.com/news/security/ssl-tls-certificate-lifespans-reduced-to-47-days-by-2029/

A newly discovered malicious PyPi package named ...

2025-04-06T14:18:12Z

A newly discovered malicious PyPi package named 'disgrasya' that abuses legitimate WooCommerce stores for validating stolen credit cards has been downloaded over 34,000 times from the open-source package platform.

https://www.bleepingcomputer.com/news/security/carding-tool-abusing-woocommerce-api-downloaded-34k-times-on-pypi/

The Hunters International Ransomware-as-a-Service (RaaS) ...

2025-04-03T21:06:28Z

The Hunters International Ransomware-as-a-Service (RaaS) operation is shutting down and rebranding with plans to switch to date theft and extortion-only attacks.

https://www.bleepingcomputer.com/news/security/hunters-international-rebrands-as-world-leaks-in-shift-to-data-extortion/

Oracle has finally acknowledged to some customers that attackers ...

2025-04-03T15:27:01Z

Oracle has finally acknowledged to some customers that attackers have stolen old client credentials after breaching a "legacy environment" last used in 2017.

https://www.bleepingcomputer.com/news/security/oracle-reportedly-confirms-oracle-cloud-breach-to-customers/

Microsoft used its AI-powered Security Copilot to discover 20 ...

2025-03-31T19:57:06Z

Microsoft used its AI-powered Security Copilot to discover 20 previously unknown vulnerabilities in the GRUB2, U-Boot, and Barebox open-source bootloaders.

https://www.bleepingcomputer.com/news/security/microsoft-uses-ai-to-find-flaws-in-grub2-u-boot-barebox-bootloaders/

The FBI is warning that fake online document converters are being ...

2025-03-23T14:10:13Z

The FBI is warning that fake online document converters are being used to steal people's information and, in worst-case scenarios, lead to ransomware attacks.

https://www.bleepingcomputer.com/news/security/fbi-warnings-are-true-fake-file-converters-do-push-malware/

Swiss global solutions provider Ascom has confirmed a cyberattack ...

2025-03-20T13:44:31Z

Swiss global solutions provider Ascom has confirmed a cyberattack on its IT infrastructure as a hacker group known as Hellcat targets Jira servers worldwide using compromised credentials.

https://www.bleepingcomputer.com/news/security/hellcat-hackers-go-on-a-worldwide-jira-hacking-spree/

Microsoft says the March 2025 Windows cumulative updates ...

2025-03-17T13:39:33Z

Microsoft says the March 2025 Windows cumulative updates automatically and mistakenly remove the AI-powered Copilot digital assistant from some Windows 10 and Windows 11 systems.

https://www.bleepingcomputer.com/news/microsoft/microsoft-march-windows-updates-mistakenly-uninstall-copilot/

Microsoft is now testing an AI-powered text summarization feature ...

2025-03-13T19:46:09Z

Microsoft is now testing an AI-powered text summarization feature in Notepad and a Snipping Tool "Draw & Hold" feature that helps draw perfect shapes.

https://www.bleepingcomputer.com/news/microsoft/windows-notepad-to-get-ai-text-summarization-in-windows-11/

Microsoft had discovered five Paragon Partition Manager ...

2025-03-01T15:18:17Z

Microsoft had discovered five Paragon Partition Manager BioNTdrv.sys driver flaws, with one used by ransomware gangs in zero-day attacks to gain SYSTEM privileges in Windows.

https://www.bleepingcomputer.com/news/security/ransomware-gangs-exploit-paragon-partition-manager-bug-in-byovd-attacks/

Microsoft has removed two popular VSCode extensions, ...

2025-02-26T19:11:04Z

Microsoft has removed two popular VSCode extensions, 'Material Theme - Free' and 'Material Theme Icons - Free,' from the Visual Studio Marketplace for allegedly containing malicious code.

https://www.bleepingcomputer.com/news/security/vscode-extensions-with-9-million-installs-pulled-over-security-risks/

WinRAR 7.10 was released yesterday with numerous features, such ...

2025-02-18T22:57:54Z

WinRAR 7.10 was released yesterday with numerous features, such as larger memory pages, a dark mode, and the ability to fine-tune how Windows Mark-of-the-Web flags are propagated when extracting files.

https://www.bleepingcomputer.com/news/security/winrar-710-boosts-windows-privacy-by-stripping-motw-data/

Google has fixed two vulnerabilities that, when chained together, ...

2025-02-12T11:00:13Z

Google has fixed two vulnerabilities that, when chained together, could expose the email addresses of YouTube accounts, causing a massive privacy breach for those using the site anonymously.

https://www.bleepingcomputer.com/news/security/google-fixes-flaw-that-could-unmask-youtube-users-email-addresses/

A new hacking group has leaked the configuration files, IP ...

2025-01-16T02:57:40Z

A new hacking group has leaked the configuration files, IP addresses, and VPN credentials for over 15,000 FortiGate devices for free on the dark web, exposing a great deal of sensitive technical information to other cybercriminals.

https://www.bleepingcomputer.com/news/security/hackers-leak-configs-and-vpn-credentials-for-15-000-fortigate-devices/

Google is planning to use "AI" in Chrome to detect scams ...

2024-12-20T21:31:23Z

Google is planning to use "AI" in Chrome to detect scams when you browse random web pages.

https://www.bleepingcomputer.com/news/google/google-says-new-scam-protection-feature-in-chrome-uses-ai/

CISA released guidance today to help network defenders harden ...

2024-12-03T19:49:21Z

CISA released guidance today to help network defenders harden their systems against attacks coordinated by the Salt Typhoon Chinese threat group that breached multiple major global telecommunications providers earlier this year.

https://www.bleepingcomputer.com/news/security/us-shares-tips-to-block-hackers-behind-recent-telecom-breaches/

A proof-of-concept (PoC) exploit for a critical-severity remote ...

2024-12-03T19:00:30Z

A proof-of-concept (PoC) exploit for a critical-severity remote code execution flaw in Progress WhatsUp Gold has been published, making it critical to install the latest security updates as soon as possible.

https://www.bleepingcomputer.com/news/security/exploit-released-for-critical-whatsup-gold-rce-flaw-patch-now/

An international law enforcement operation codenamed ...

2024-12-03T15:28:01Z

An international law enforcement operation codenamed 'Operation Passionflower' has shut down MATRIX, an encrypted messaging platform used by cybercriminals to coordinate illegal activities while evading police.

https://www.bleepingcomputer.com/news/security/police-seize-matrix-encrypted-chat-service-after-spying-on-criminals/

South Korean police have arrested a CEO and five employees for ...

2024-12-02T21:11:48Z

South Korean police have arrested a CEO and five employees for manufacturing over 240,000 satellite receivers pre-loaded or later updated to include DDoS attack functionality at a purchaser's request.

https://www.bleepingcomputer.com/news/security/korea-arrests-ceo-for-adding-ddos-feature-to-satellite-receivers/