Author: Modernizing Tech
-
Data Leak Exposes 2 Million Private Photos from Lifeprint Portable Printers
Recent research by Cybernews has revealed a significant data breach affecting Lifeprint, a popular portable photo printer app available on iOS and Android platforms. Lifeprint enables users to instantly print photos and GIFs directly from their smartphones, offering a convenient way to share memories. Unfortunately, due to a critical security oversight, millions of private photos
-
Critical OneLogin Vulnerability Exposed Enterprise App Secrets via API Endpoint
A newly disclosed security vulnerability in OneLogin’s platform could have exposed sensitive authentication credentials for hundreds of thousands of enterprise applications. The flaw, identified and responsibly reported by cybersecurity firm Clutch Security, allowed attackers with standard API access to extract confidential OpenID Connect (OIDC) client secrets — a critical piece in application-level authentication. The vulnerability
-
Apple Issues Critical Security Update to Fix Font Handling Bug Across Multiple Devices
Apple has released an important security update addressing a vulnerability in its font parsing system that affects several of its operating systems, including iOS, iPadOS, macOS, and visionOS. This update is crucial for users to protect their devices from potential attacks involving malicious font files. The vulnerability, identified as CVE-2025-43400, involves an out-of-bounds write error
-
Researchers Find Security Flaws in Tile Bluetooth Trackers
A research team from the Georgia Institute of Technology has discovered several security vulnerabilities in Tile, the Bluetooth tracking device used to locate lost personal items, as recently highlighted in a Malwarebytes security blog post. Tile is one of the most widely used Bluetooth tracking devices on the market, designed to help users locate misplaced
-
Broadcom Releases Important Security Updates for VMware Aria Operations, Tools, vCenter, and NSX
Broadcom have recently released new security advisories detailing multiple vulnerabilities affecting VMware Aria Operations, VMware Tools, VMware vCenter, NSX, and related products. The advisories warn of several high-severity flaws including local privilege escalation, information disclosure, improper authorization, SMTP header injection, and username enumeration vulnerabilities. Updated patches are now available to mitigate these risks. The first
-
Meta AI App Use & Privacy Settings for Better Control
With Meta AI now integrated across Facebook, Instagram, WhatsApp, and its own standalone app, millions of users interact with the assistant daily for help with planning, brainstorming, or answering questions. But recent attention around how conversations may be publicly visible—or used to train AI models—has raised valid concerns about privacy defaults and user awareness. While
-
Popular npm Email Tool Compromised to Steal Emails
Cybersecurity firm Koi Security has identified a malicious version of an npm package used for automated email handling, which was silently forwarding outbound messages to an external domain controlled by the developer. The package, named postmark-mcp, is intended to allow applications—often AI assistants—to send emails through Postmark’s transactional email API. Starting with version 1.0.16, the
Categories:
Have any comments or suggestions? Feel free to let us know!
