A newly disclosed flaw in Perplexity’s Comet web browser has revealed that an internal API allowed hidden extensions to run commands directly on user devices, a capability beyond what modern browsers typically permit. The issue was uncovered by security researchers at SquareX, who determined that Comet included two embedded extensions with elevated privileges: an analytics…

Continue Reading

Microsoft is introducing a wide range of new Windows 11 security and resiliency features designed to support the coming era of agentic computing, cloud-integrated workflows, and quantum-resistant infrastructure. These enhancements build on the Secure Future Initiative and reflect a commitment to securing not only devices, but entire digital ecosystems. Securing Agentic Workflows and MCP Integrations…

Continue Reading

Microsoft’s Azure has successfully mitigated the largest cloud DDoS attack ever recorded—an enormous 15.72 Tbps, 3.64 billion packets-per-second assault. The attack, which targeted a single public endpoint in Australia, underscores the escalating capabilities of modern botnets and the need for proactive resiliency across cloud environments. Botnet Behind Massive Attack Surge According to Microsoft, the attack…

Continue Reading

IBM has released several new security advisories addressing high-impact issues across its product lineup. Most of the updates focuses on critical fixes for AIX and VIOS systems. Also announced were additional patches for vulnerabilities affecting Jazz Reporting Service, IBM’s reporting and analytics layer, and IBM Sterling Secure Proxy, a component used in managed file transfer…

Continue Reading

Logitech has disclosed that it recently experienced a cybersecurity incident involving unauthorized access to parts of its internal IT systems. The company says the event resulted in the exfiltration of certain data but did not affect its products, operations, or manufacturing. In a statement, they stated they detected the intrusion and began investigating immediately with…

Continue Reading

DoorDash has disclosed a recent cybersecurity incident involving unauthorized access to certain user data following a social engineering attack targeting one of its employees. According to Doordas, they quickly identified the issue, cut off the unauthorized access, and began an review with support from external security experts and authorities. The information accessed was limited to…

Continue Reading

Adobe has recently published a batch of security updates affecting many of its most widely used Creative Cloud applications. The patches, released earlier this week, address several critical vulnerabilities with most involving flaws that could allow attackers to run malicious code if a user opened a compromised file. While Adobe states that no active attacks…

Continue Reading