Mobile spies as bargains: Italy's booming spyware shadow industryHigh-end Trojans like Pegasus often make headlines. In their shadow, a market for cheap surveillance software is growing in Italy – with official approval.
IBM and Red Hat: $5 billion for more secure open-source software5 billion US dollars, a central security clearinghouse, and AI-powered analysis: IBM and Red Hat aim to secure open source for the AI era.
Cybersecurity: Critical infra catching up, but "risk zone" growsAn Enisa report shows significant progress through the NIS2 directive but warns of growing digital dangers in the space and transport sectors.
Google Cloud: New AI platform to close vulnerabilities in minutesGoogle Cloud's new platform "AI Threat Defense" is designed to automatically identify and fix security vulnerabilities.
Web browsers can spy on information via SSD access timesIT researchers have demonstrated a side-channel attack called "FROST" where browsers can spy on user behavior via SSD access times.
Waiting for security patch: Self-hosted Git service Gogs is vulnerableAttackers can attack Gogs servers with malicious code in the default settings. So far, admins can only protect systems via a workaround.
Oracle CSPU: 35 Security Updates in MayVarious Oracle products have security vulnerabilities. Updates are available to fix 35 vulnerabilities.
Chrome update closes 151 security holes – 22 of them criticalAnyone using Chrome should urgently check if their browser is up to date. Wednesday's update closes 151 security vulnerabilities.
Too many zero-days: Microsoft threatens legal actionMicrosoft is struggling with published evidence of unpatched security vulnerabilities. The company is now threatening legal action.
Security update: Veeam Backup & Replication on Linux and Windows vulnerableVulnerabilities endanger Veeam Agent for Microsoft Windows and Veeam Software Appliance on Linux servers.
"868-BACK" Review: Digital board game to hack yourselfThe sequel to the cult hacking game "868-BACK" is here. "868-BACK" offers complex turn-based strategy in the smallest space with cryptic rules.
Grundschutz++: BSI names date for certification from 2027BSI clarifies new Grundschutz++. Certification possible from early 2027, WiBA checklists remain. (max 140 chars)
Warning about fake FIFA websites before the 2026 World CupThe World Cup starts in two weeks. Criminals are taking advantage of the opportunity and faking the FIFA website for phishing, among other things.
UK Visa Portal: Major data leak on incorrect ETA application pageAn unofficial application page for the UK entry permit ETA has left applicant data openly accessible online.
CISA warns of malware via supply chain attacksCISA currently warns of recently observed supply chain attacks on TanStack, Daemon Tools, and Nx Console, which have distributed malware.
C# 16: Microsoft plans stricter rules for unsafe codeMicrosoft is revising C#'s unsafe model based on Rust's example. The goal: fewer memory errors and thus fewer security vulnerabilities.
IBM software like HTTP Server is vulnerable to DoS and malicious code attacksAttackers can exploit several security vulnerabilities in IBM HTTP Server, License Metric Tool, and WebSphere Application Server. Patches provide a remedy.
Notepad++: Gaps allow injection of malware and commandsPartially high-risk security vulnerabilities in the powerful text editor Notepad++ allow attackers to inject malware and commands.
Microsoft patches highly critical SharePoint vulnerabilityMicrosoft closes security vulnerability with updates for SharePoint servers. The closed vulnerability allows the injection of malicious code.
Nail salons for darknet drug trade and money launderingInvestigators are taking action against darknet drug trafficking and alleged money laundering via an international network.
Comment: Open-source developers are working themselves sick on AI bugsWork intensification leads to overload for developers. Companies make billions thanks to open source and give little back, argues Christopher Kunz.
Permission for Hackback: Cabinet Paves the WayThe cabinet has paved the way for new powers: the Federal Criminal Police Office will be allowed to disrupt or destroy attackers' IT systems in the future.
7-Zip: Update closes code smuggling vulnerabilityThe popular compression program 7-Zip contains a vulnerability that allows the injection of malicious code. An update is available.
Error in Docker Model Runner allows sandbox escape on macOSA security update closes a malicious code vulnerability in Docker for macOS.
Roundcube webmail instances attackable with malwareIn current versions, the developers of Roundcube Webmail have closed several security vulnerabilities.
Update for IPFire: Faster VPN thanks to OpenVPN 2.7With OpenVPN 2.7 and Data Channel Offloading, VPN throughput in IPFire increases to up to 10 GBit/s. The update also closes critical kernel vulnerabilities.
UniFi OS Server: Critical security vulnerabilities enable attacksIn UniFi OS Server and products equipped with it, attackers can exploit five vulnerabilities to make unauthorized changes.
LiteSpeed cPanel Plugin: Attacks on vulnerability observedLiteSpeed develops plugins for various CMS. The one for cPanel has a security vulnerability that attackers are already exploiting.
IBM QRadar SIEM: Third-party component vulnerabilities closedAmong other things, now closed security vulnerabilities in the Linux kernel endanger IBM QRadar SIEM.
Motorola smartphones: Pre-installed app apparently injects affiliate linksA pre-installed app on Motorola smartphones redirects Amazon calls and injects affiliate codes. Affected users can disable the app.
DoS and malicious code attacks on NGINX web servers are conceivableIn current versions of NGINX Open Source and NGINX Plus, developers have closed a security vulnerability.
Patch now! Attackers exploiting critical malicious code vulnerability in DrupalAttackers are currently targeting websites created with the CMS Drupal. However, pages are only vulnerable if they use PostgreSQL.
Security incident at photo provider: Is Portraitbox being blackmailed?Unknowns exfiltrated and deleted data via a poorly secured API. Thousands of photographers and customers are affected by the cyberattack.
Deleted and yet not gone: Signal stores messages longer than expectedDepending on how intensively you use the messenger, it can take days for a deleted message to disappear. Signal ignored the bug for half a year.
Apache Airflow Components: Attackers can modify databaseIn Apache Airflow CNCF Kubernetes Provider and Apache Airflow Amazon Provider, developers have closed a security vulnerability in each case.
Notepad++: Update fixes installer vulnerabilityAn update for Notepad++ closes a security vulnerability in the installer. An official CVE entry with risk assessment is still missing.
Cisco patches security hole with top rating in Secure WorkloadCisco is providing an update that closes a security vulnerability with the highest possible risk assessment in Secure Workload.
Vulnerabilities in Trend Micro Apex One and Langflow under attackSecurity vulnerabilities in Trend Micro Apex One and Langflow are being actively exploited by cybercriminals. CISA warns of this.
Texas sues Meta: WhatsApp can allegedly bypass encryptionFor months, implausible accusations have been circulating in the US that WhatsApp can view completely encrypted content. Now Texas is filing a lawsuit.
Privacy Guardrail: Chrome extension aims to protect sensitive data from chatbotsAnyone who pastes text into AI chatbots often unintentionally shares sensitive data. A new Chrome extension from DFKI aims to prevent this.
