Security

RedSun zero-day exploits Windows Defender to gain SYSTEM access. Learn how NPAV EPS protects against zero-day and privilege escalation attacks.

Hackers use fake antivirus software to deliver LucidRook malware in targeted attacks on Taiwan NGOs and universities, exploiting spearphishing techniques.

India plans to restrict Hikvision, Dahua, and TP-Link CCTV sales under new cybersecurity rules, boosting domestic surveillance brands and data security.

WhatsApp introduces passkey backups with biometrics—learn how it simplifies security, resists threats, and protects your chats from unauthorized access.

F5 Networks' vulnerability left 269,000 devices at risk—learn about the attack, Shadowserver findings, and steps like patching and SIEM to defend against hacker exploits and data theft.

Trend Micro exposes "Zero Disco" attacks exploiting CVE-2025-20352 for rootkit deployment on Cisco devices—learn quick fixes like patching and EDR to safeguard against remote code execution and data theft risks.

UC researchers reveal Pixnapping, letting hackers steal 2FA and app data via Android side channels—up to 61% accurate with AI. No full patch yet; update devices, check permissions, and secure apps to avoid risks.

With Windows 10 support ending October 14, 2025, users face malware and breach risks—upgrade to Windows 11 or get ESU for patches. Learn quick steps to back up data, use antivirus, and avoid cyber threats post-support.

UC study reveals how hackers use mouse sensors to eavesdrop on conversations, boosted by AI for stealing data—up to 61% accuracy. Protect yourself with simple tips like full shutdowns and mic indicators against this sneaky threat.

CVE-2025-61984 exploits OpenSSH's ProxyCommand by injecting newlines in usernames for RCE, bypassing CVE-2023-51385; targets Bash-like shells in malicious Git submodules during recursive clones. Affects unquoted %r configs (e.g., from Teleport)—upgrade to OpenSSH 10.1, quote '%r', or restrict Git SSH to mitigate.