BUGS

Google logo

Info-stealers can steal cookies for permanent access to your Google account

January 11, 2024

Several info-stealers have incorporated an exploit that allows them to gain permanent access to your Google account

wasted tim

How AI hallucinations are making bug hunting harder

January 7, 2024

People using LLMs for bug bounty hunts are wasting developers' time argues the lead developer of cURL. And he's probably right.

Chrome logo

Update Chrome now! Emergency update patches zero-day

December 21, 2023

Google has issued an emergency update for Chrome that fixes an actively exploited zero-day vulnerability in the WebRTC component.

Closeup shot of a man working at a computer keyboard

The sound of you typing on your keyboard could reveal your password

December 12, 2023

Researchers have found a way to guess passwords from keyboard sounds recorded by a smartphone with 95% accuracy.

patched Android chip

Android phones can be taken over remotely – update when you can

December 7, 2023

Android phones are vulnerable to attacks that allow a remote execution of malicious code and it requires no user interaction.

coldfusion vulnerability

Adobe Coldfusion vulnerability used in attacks on government servers

December 6, 2023

CISA has published an advisory about a vulnerability in Adobe Coldfusion used in two attacks against federal agencies.

patching apple

Update your iPhones! Apple fixes two zero-days in iOS

December 4, 2023

Apple has released an emergency security update for two zero-day vulnerabilities which may have already been exploited.

Chrome logo

Update now! Chrome fixes actively exploited zero-day vulnerability

November 29, 2023

Google's released an update to Chrome which includes seven security fixes. Make sure you're using the latest version!

processing a fingerprint

Windows Hello fingerprint authentication can be bypassed on popular laptops

November 24, 2023

Researchers have found several weaknesses in the fingerprint authentication for Windows Hello on popular laptops.