Device-Safety

New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges

New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges

Apr 17, 2026 · 1 min read

LinkedIn browser script can detect 6,000+ Chrome extensions: what users should check now

Apr 4, 2026 · 1 min read

Apple expands iOS 18.7.7 security update to protect holdout devices from DarkSword

Apple expands iOS 18.7.7 security update to protect holdout devices from DarkSword

Apr 3, 2026 · 1 min read

Cisco IMC auth bypass (CVE-2026-20093) can let attackers take admin control

Cisco IMC auth bypass (CVE-2026-20093) can let attackers take admin control

Apr 3, 2026 · 1 min read

OpenSSH 10.3 fixes security flaws, including SSH client command-injection risk

OpenSSH 10.3 fixes security flaws, including SSH client command-injection risk

Apr 2, 2026 · 1 min read

Over 14,000 F5 BIG-IP APM systems still exposed after active CVE-2025-53521 exploitation alerts

Over 14,000 F5 BIG-IP APM systems still exposed after active CVE-2025-53521 exploitation alerts

Apr 2, 2026 · 1 min read

Apple releases iOS 18.7.7 and iPadOS 18.7.7 security updates for older devices

Apple releases iOS 18.7.7 and iPadOS 18.7.7 security updates for older devices

Apr 2, 2026 · 1 min read

TrueConf CVE-2026-3502 zero-day abused to push malicious updates from trusted servers

TrueConf CVE-2026-3502 zero-day abused to push malicious updates from trusted servers

Apr 1, 2026 · 1 min read

Google patches CVE-2026-5281, the fourth actively exploited Chrome zero-day of 2026

Google patches CVE-2026-5281, the fourth actively exploited Chrome zero-day of 2026

Apr 1, 2026 · 1 min read

OpenClaw patches unauthenticated Telegram webhook resource-exhaustion flaw (CVE-2026-32980)

OpenClaw patches unauthenticated Telegram webhook resource-exhaustion flaw (CVE-2026-32980)

Apr 1, 2026 · 1 min read

Google Drive ransomware detection is now generally available for Workspace tiers

Google Drive ransomware detection is now generally available for Workspace tiers

Apr 1, 2026 · 1 min read

Gigabyte Control Center flaw can allow remote file writes when pairing is enabled (CVE-2026-4415)

Gigabyte Control Center flaw can allow remote file writes when pairing is enabled (CVE-2026-4415)

Apr 1, 2026 · 1 min read

Smart Slider 3 flaw (CVE-2026-3098) can expose sensitive server files

Smart Slider 3 flaw (CVE-2026-3098) can expose sensitive server files

Mar 29, 2026 · 1 min read

TA446 uses leaked DarkSword iOS kit in spear-phishing campaign

TA446 uses leaked DarkSword iOS kit in spear-phishing campaign

Mar 29, 2026 · 1 min read

CISA adds CVE-2025-53521 (F5 BIG-IP APM) to KEV after active exploitation

Mar 29, 2026 · 1 min read

Apple sends critical software alerts to outdated iPhones after web-attack activity

Apple sends critical software alerts to outdated iPhones after web-attack activity

Mar 28, 2026 · 1 min read

Google sets 2029 post-quantum cryptography migration deadline

Google sets 2029 post-quantum cryptography migration deadline

Mar 27, 2026 · 1 min read

Google Chrome 146.0.7680.80 security update fixes high-risk desktop browser bugs

Google Chrome 146.0.7680.80 security update fixes high-risk desktop browser bugs

Mar 27, 2026 · 1 min read

Mozilla releases Firefox 149 and ESR updates fixing dozens of security flaws

Mozilla releases Firefox 149 and ESR updates fixing dozens of security flaws

Mar 25, 2026 · 1 min read

CISA flags 5 actively exploited flaws in Apple, Craft CMS, and Laravel Livewire

CISA flags 5 actively exploited flaws in Apple, Craft CMS, and Laravel Livewire

Mar 22, 2026 · 1 min read

Microsoft Authenticator flaw (CVE-2026-26123) can leak sign-in codes

Microsoft Authenticator flaw (CVE-2026-26123) can leak sign-in codes

Mar 22, 2026 · 1 min read

Oracle patches critical Identity Manager RCE (CVE-2026-21992)

Oracle patches critical Identity Manager RCE (CVE-2026-21992)

Mar 21, 2026 · 1 min read

Feds disrupt major IoT DDoS botnets after record-smashing attacks

Feds disrupt major IoT DDoS botnets after record-smashing attacks

Mar 20, 2026 · 1 min read

Nine IP-KVM flaws expose root-level takeover paths across low-cost devices

Nine IP-KVM flaws expose root-level takeover paths across low-cost devices

Mar 18, 2026 · 2 min read

ConnectWise patches ScreenConnect flaw that could enable unauthorized access

ConnectWise patches ScreenConnect flaw that could enable unauthorized access

Mar 18, 2026 · 0 min read

Apple pushes first Background Security Improvements update to fix WebKit flaw

Apple pushes first Background Security Improvements update to fix WebKit flaw

Mar 18, 2026 · 1 min read

CISA adds Wing FTP CVE-2025-47813 to KEV catalog after active exploitation

CISA adds Wing FTP CVE-2025-47813 to KEV catalog after active exploitation

Mar 17, 2026 · 0 min read

ClickFix campaigns push MacSync infostealer via fake AI tool installers

ClickFix campaigns push MacSync infostealer via fake AI tool installers

Mar 16, 2026 · 1 min read

Microsoft ships OOB hotpatch for Windows 11 RRAS remote code execution risk

Microsoft ships OOB hotpatch for Windows 11 RRAS remote code execution risk

Mar 15, 2026 · 0 min read

GlassWorm campaign abuses Open VSX extension dependencies in supply-chain attacks

GlassWorm campaign abuses Open VSX extension dependencies in supply-chain attacks

Mar 14, 2026 · 1 min read

CISA adds two Google Chrome zero-days to KEV catalog

CISA adds two Google Chrome zero-days to KEV catalog

Mar 14, 2026 · 0 min read

CISA flags SolarWinds, Ivanti, and Workspace ONE flaws as actively exploited

CISA flags SolarWinds, Ivanti, and Workspace ONE flaws as actively exploited

Mar 10, 2026 · 1 min read

CISA orders patching of exploited iOS flaws tied to Coruna kit

CISA orders patching of exploited iOS flaws tied to Coruna kit

Mar 6, 2026 · 0 min read

Cisco warns additional SD-WAN Manager flaws are actively exploited

Cisco warns additional SD-WAN Manager flaws are actively exploited

Mar 5, 2026 · 0 min read

Google reports 90 zero-days exploited in 2025, with enterprise systems heavily targeted

Google reports 90 zero-days exploited in 2025, with enterprise systems heavily targeted

Mar 5, 2026 · 1 min read

CISA adds VMware Aria RCE flaw (CVE-2026-22719) to KEV

CISA adds VMware Aria RCE flaw (CVE-2026-22719) to KEV

Mar 4, 2026 · 0 min read

Smartphone Security Checklist: Lock Down Your Phone in 10 Minutes

Smartphone Security Checklist: Lock Down Your Phone in 10 Minutes

Mar 1, 2026 · 3 min read

Best Antivirus Software for Everyday Users (2026)

Best Antivirus Software for Everyday Users (2026)

Feb 2, 2026 · 7 min read

Malware Explained: Viruses, Ransomware, and How to Stay Safe

Malware Explained: Viruses, Ransomware, and How to Stay Safe

Jan 19, 2026 · 7 min read

1 2 3 4