Cyber threats like phishing and session hijacking continue to grow, making it more important than ever for organizations to strengthen account security. Google Workspace has introduced several new tools designed to make accounts harder to compromise and easier to secure. Passkeys Are Now Available Passkeys replace traditional passwords with cryptographic keys stored on your device.

Continue Reading

Lenovo has released a security advisory regarding significant vulnerabilities found in the Insyde BIOS firmware used in certain IdeaCentre and Yoga All-In-One products. These vulnerabilities, tracked as CVE-2025-4421 through CVE-2025-4426, could potentially allow a privileged local attacker to read sensitive contents in System Management RAM (SMRAM) or execute arbitrary code within System Management Mode (SMM).

Continue Reading

Orange Group, a major telecommunications provider, has reported recently detected suspicious activity targeting one of its information systems. As soon as the threat was detected, the company’s dedicated teams, working closely with Orange Cyberdefense, moved swiftly to contain the situation and protect its services. The attack led to some temporary disruptions, mainly affecting certain management

Continue Reading

Apple rolled out a series of security updates across its range of devices and software. These updates fix several vulnerabilities that could be exploited by malicious actors to cause system crashes, access private information, or take control of your devices. The latest updates apply to a wide range of Apple devices, including mac, iPhones, iPadOS

Continue Reading

In a recent security alert, researchers at Patchstack have uncovered a critical vulnerability in the widely used Post SMTP plugin for WordPress, exposing websites utilizing it to the risk of hijacking and complete site takeover. Post SMTP is a popular plugin designed to enhance email delivery on WordPress sites, replacing the default email function with

Continue Reading

A recent security advisory was released by Mitel with information on a critical vulnerability affecting certain versions of their MiVoice MX-ONE communication system. This flaw could allow malicious actors to bypass authentication controls, potentially gaining unauthorized access to both user and administrator accounts. Because of the severity, it’s essential for organizations using these systems to

Continue Reading

Google’s Open Source Security Team has introduced a new project, OSS Rebuild, designed to enhance the security and integrity of open-source software, helping ensure software packages are verified and secure from the ground up. With the rise of sophisticated supply chain attacks targeting open-source ecosystems, OSS Rebuild aims to tackle these challenges by providing a

Continue Reading

Sophos, a leading provider of cybersecurity solutions, has announced patch updates for several significant security vulnerabilities affecting its firewall products. The advisory details multiple critical and high-severity flaws identified in various versions of Sophos Firewall and urges users and administrators to apply necessary updates promptly. Five security issues were found within its firewall software. These

Continue Reading