Microsoft Copilot Studio AI agents pose serious data risks
Microsoft Copilot Studio AI agents pose serious data risks AI agents built using Microsoft Copilot Studio are designed to be easy — so easy that non-technical users can deploy[…]
Apple Releases Emergency Fixes for Zero-Days Exploited in Sophisticated Attacks
Apple Releases Emergency Fixes for Zero-Days Exploited in Sophisticated Attacks Apple has issued urgent security updates addressing two zero-day vulnerabilities that were actively exploited in what the company describes[…]
New React Server Components vulnerabilities disclosed
New React Server Components vulnerabilities disclosed Security researchers have disclosed three new vulnerabilities in React Server Components while attempting to exploit the recent React2Shell (CVE-2025-55182) fix. While the original[…]
Scammers Abuse PayPal Subscriptions to Send Legitimate Phishing Emails
Scammers Abuse PayPal Subscriptions to Send Legitimate Phishing Emails A new email scam is abusing PayPal’s Subscriptions billing feature to send legitimate PayPal emails that contain fake purchase notifications[…]
PornHub Premium User Activity Allegedly Stolen in Mixpanel-Linked Extortion Campaign
PornHub Premium User Activity Allegedly Stolen in Mixpanel-Linked Extortion Campaign Adult content platform PornHub has confirmed it is being extorted by the ShinyHunters threat group after attackers claimed to[…]
Apple Patches Actively Exploited WebKit Zero-Days
Apple Patches Actively Exploited WebKit Zero-Days Apple has released a broad set of security updates for its operating systems and Safari browser, addressing two serious WebKit vulnerabilities that Apple[…]
Unpatched Gogs Vulnerability Under Active Exploitation
Unpatched Gogs Vulnerability Under Active Exploitation Security researchers at Wiz have disclosed CVE-2025-8110, a critical vulnerability affecting self-hosted Gogs, a popular lightweight Git service widely used in on-prem and[…]
Security alert for Notepad++ users
Security alert for Notepad++ users Notepad++ has released version 8.8.9 to address a critical security weakness in its WinGUp (GUP.exe) update tool, following reports that malicious executables were being[…]
Microsoft December 2025 Patch Tuesday: 57 Vulnerabilities Fixed, Including 3 Zero-Days (1 Actively Exploited)
Microsoft December 2025 Patch Tuesday: 57 Vulnerabilities Fixed, Including 3 Zero-Days (1 Actively Exploited) Microsoft has released its December 2025 Patch Tuesday updates, addressing 57 security vulnerabilities, including: 🔢[…]
Malicious “Document Reader – File Manager” App on Google Play Delivering Anatsa Banking Trojan
Malicious “Document Reader – File Manager” App on Google Play Delivering Anatsa Banking Trojan A malicious Android app disguised as a harmless document reader and file manager has been[…]