Author: Modernizing Tech
-
Critical OneLogin Vulnerability Exposed Enterprise App Secrets via API Endpoint
A newly disclosed security vulnerability in OneLogin’s platform could have exposed sensitive authentication credentials for hundreds of thousands of enterprise applications. The flaw, identified and responsibly reported by cybersecurity firm Clutch Security, allowed attackers with standard API access to extract confidential OpenID Connect (OIDC) client secrets — a critical piece in application-level authentication. The vulnerability
-
Apple Issues Critical Security Update to Fix Font Handling Bug Across Multiple Devices
Apple has released an important security update addressing a vulnerability in its font parsing system that affects several of its operating systems, including iOS, iPadOS, macOS, and visionOS. This update is crucial for users to protect their devices from potential attacks involving malicious font files. The vulnerability, identified as CVE-2025-43400, involves an out-of-bounds write error
-
Researchers Find Security Flaws in Tile Bluetooth Trackers
A research team from the Georgia Institute of Technology has discovered several security vulnerabilities in Tile, the Bluetooth tracking device used to locate lost personal items, as recently highlighted in a Malwarebytes security blog post. Tile is one of the most widely used Bluetooth tracking devices on the market, designed to help users locate misplaced
-
Broadcom Releases Important Security Updates for VMware Aria Operations, Tools, vCenter, and NSX
Broadcom have recently released new security advisories detailing multiple vulnerabilities affecting VMware Aria Operations, VMware Tools, VMware vCenter, NSX, and related products. The advisories warn of several high-severity flaws including local privilege escalation, information disclosure, improper authorization, SMTP header injection, and username enumeration vulnerabilities. Updated patches are now available to mitigate these risks. The first
-
Meta AI App Use & Privacy Settings for Better Control
With Meta AI now integrated across Facebook, Instagram, WhatsApp, and its own standalone app, millions of users interact with the assistant daily for help with planning, brainstorming, or answering questions. But recent attention around how conversations may be publicly visible—or used to train AI models—has raised valid concerns about privacy defaults and user awareness. While
-
Popular npm Email Tool Compromised to Steal Emails
Cybersecurity firm Koi Security has identified a malicious version of an npm package used for automated email handling, which was silently forwarding outbound messages to an external domain controlled by the developer. The package, named postmark-mcp, is intended to allow applications—often AI assistants—to send emails through Postmark’s transactional email API. Starting with version 1.0.16, the
-
OpenAI Adds Parental Control Features to ChatGPT
OpenAI has introduced new parental control features for ChatGPT, allowing parents and guardians to manage how teens interact with the AI tool. The update includes account linking, content restrictions, usage limits, and new safeguards aimed at creating a safer experience for younger users. Parents can now connect their accounts with their teen’s, giving them access
-
Amazon Drops Fire TV Stick 4K Price With 50% Discount
Amazon’s newest Fire TV Stick 4K is currently 50% off at $25, delivering premium streaming features at an unbeatable price point. Some of the key upgrades in this new generation include: Along with premium 4K streaming with Dolby Vision, HDR10+, and Dolby Atmos support, the device provides access to over millions of pieces of content
Categories:
Have any comments or suggestions? Feel free to let us know!
