Cybercriminals are leveraging Facebook to target vulnerable populations, notably seniors, through fake groups designed to distribute malicious Android applications. These campaigns combine social engineering with malware that can steal sensitive information and compromise financial accounts. Security researchers at ThreatFabric have uncovered numerous fake Facebook groups created with AI-generated content to appear genuine. The groups (many

Continue Reading

Google is taking a big step forward in making AI-assisted coding more flexible and powerful with the latest updates to Jules, its AI programming partner. If you’re a developer looking for smarter ways to integrate AI into your workflow, these new tools could be game-changers. Jules Tools provides a lightweight command-line interface that allows you

Continue Reading

DrayTek has announced a security vulnerability affecting several of their router models. Discovered on July 22, the flaw, identified as CVE-2025-10547, involves an uninitialized variable in the firmware that could be exploited by malicious actors to cause system crashes or, in some cases, enable remote code execution. The issue occurs when crafted HTTP or HTTPS

Continue Reading

In a recent security incident reported by BleepingComputer, Red Hat, a leading provider of open-source solutions, has confirmed that one of its GitLab instances was compromised by hackers. This incident highlights the ongoing challenges organizations face in safeguarding sensitive development and customer data. According to the breach details, an extortion group calling itself the Crimson

Continue Reading

Three serious vulnerabilities, dubbed the Gemini Trifecta, were recently revealed in Google’s Gemini AI assistant suite, based on findings from security researchers at Tenable. These flaws exposed users to significant privacy risks, including search-injection attacks on the Search Personalization Model, log-to-prompt injection attacks on Gemini Cloud Assist, and exfiltration of saved information via the Gemini

Continue Reading

Recent research by Cybernews has revealed a significant data breach affecting Lifeprint, a popular portable photo printer app available on iOS and Android platforms. Lifeprint enables users to instantly print photos and GIFs directly from their smartphones, offering a convenient way to share memories. Unfortunately, due to a critical security oversight, millions of private photos

Continue Reading

A newly disclosed security vulnerability in OneLogin’s platform could have exposed sensitive authentication credentials for hundreds of thousands of enterprise applications. The flaw, identified and responsibly reported by cybersecurity firm Clutch Security, allowed attackers with standard API access to extract confidential OpenID Connect (OIDC) client secrets — a critical piece in application-level authentication. The vulnerability

Continue Reading