Google Says Gmail Security Alert Claims Are False
Google Says Gmail Security Alert Claims Are False Summary Google has denied recent reports that it issued a broad security alert to Gmail users about a major vulnerability, calling those…
What Every Argument About Sideloading Gets Wrong
What Every Argument About Sideloading Gets Wrong Summary Developer Hugo Tunius argues that much of the sideloading debate misses the actual point. When Google or Apple restrict app installation, they…
Proof-of-Concept in 15 Minutes? AI Turbocharges Exploitation
Summary Two independent Israeli researchers built an AI-driven offensive research pipeline, dubbed Auto Exploit, that uses LLM prompts, CVE advisories and open-source patches to generate proof-of-concept exploit code. The system…
Hackers Are Sophisticated & Impatient — That Can Be Good
Hackers Are Sophisticated & Impatient — That Can Be Good Summary This commentary by Ensar Seker argues that modern ransomware gangs operate like professional SaaS businesses: organised, fast-moving and opportunistic.…
JSON Config File Leaks Azure ActiveDirectory Credentials
JSON Config File Leaks Azure ActiveDirectory Credentials Summary Researchers from Resecurity’s HUNTER team found an appsettings.json file for an ASP.NET Core application publicly accessible on the Internet that contained Azure…
WhatsApp, Apple warn of highly targeted attacks with zero-day vulnerability
WhatsApp, Apple warn of highly targeted attacks with zero-day vulnerability Summary WhatsApp has patched a zero-day, CVE-2025-55177, tied to “incomplete authorization of linked device synchronization messages” that could allow an…
Moscow reportedly hires hackers who breached city’s school system
Moscow reportedly hires hackers who breached city’s school system Summary Moscow city officials have reportedly employed “three or four young people” who previously managed to breach the Moscow Electronic School…
Jaguar Land Rover ‘severely disrupted’ by cybersecurity incident
Jaguar Land Rover ‘severely disrupted’ by cybersecurity incident Summary Jaguar Land Rover (JLR) said its global IT systems were “impacted by a cyber incident” and that it proactively shut down…
Stolen OAuth tokens expose Palo Alto customer data
Stolen OAuth tokens expose Palo Alto customer data Summary Palo Alto Networks says attackers used OAuth credentials stolen from Salesloft’s Drift breach to access its Salesforce instance and exfiltrate customer…
EU To Boost Satellite Defences Against GPS Jamming, Defence Commissioner Says
Summary The EU plans to deploy additional low-Earth-orbit satellites and improve detection tools to bolster resilience against GPS (GNSS) interference, EU Defence Commissioner Andrius Kubilius said after the GPS on…