MOBILE

Lawnmower

Yarbo responds to robot flaws that could mow down their owners

May 11, 2026

A researcher found a host of vulnerabilities in Yarbo garden robots that could expose Wi-Fi passwords, hijack cameras, and run over their owners on command.

week in security

A week in security (May 4 – May 10)

May 11, 2026

A list of topics we covered in the week of May 4 to May 10 of 2026

remembering passwords

Microsoft says Edge’s plaintext password behavior is “by design”

May 8, 2026

A researcher found Edge loads saved passwords into computer memory when it starts, making them easier to steal if a device is already compromised.

Canvas logo

ShinyHunters escalates Canvas attacks with school login defacements

May 8, 2026

Days after the first attack, ShinyHunters is applying pressure with ransom messages on school login portals.

fake news websites lead to investment scams

Massive AI investment scam network spans 15,500 domains

May 7, 2026

AI investment scammers abused the Keitaro ad-tracking platform to cloak their campaign, exposing it only to likely targets.

girl using a fake mustache

If a fake moustache can fool age checks, is the Online Safety Act working?

May 7, 2026

A UK report finds some progress since the Act came into force, but widespread workarounds, ongoing harm, and unresolved privacy concerns suggest the impact is still limited.

Chrome logo

Google Chrome’s silent 4GB AI download problem [updated]

May 6, 2026

Google Chrome writes a 4GB AI model to users’ devices without asking, and reinstalls it if you delete it.

Attackers adopt JavaScript runtime Bun to spread NWHStealer

May 6, 2026

A legitimate developer tool is being repurposed by attackers to package and spread this Windows infostealer in harder-to-detect ways.

A group of young people looking hppy

Millions of students’ personal data stolen in major education breach

May 6, 2026

ShinyHunters claims it stole personal data from 275 million users on Instructure’s Canvas platform across schools and education providers.