Booking.com Data Breach Exposes Customer Information, Fuels Scam Concerns

A data breach at Booking.com has exposed customer reservation details, enabling scammers to impersonate hotels and request ...

Critical Nginx UI auth bypass flaw now actively exploited in the wild

A critical vulnerability in Nginx UI with Model Context Protocol (MCP) support is now being exploited in the wild for full ...
Decrypt

New Bitcoin Proposal Would Freeze Coins to Counter Quantum Threat

A new Bitcoin proposal would phase out the network's existing signature schemes and freeze coins that fail to migrate to ...
Opinion
Infosecurity MagazineOpinion

Passwords are the Weakest Link in a Phishing-First World

As traditional network perimeters continue to disappear, modern SaaS environments, remote work, and expanding third-party access have shifted cyber risk ...
Tech Xplore

OpenAI announces restricted-access cybersecurity model

Artificial intelligence company OpenAI said Tuesday that it would release its latest cybersecurity model to a limited number ...
eWeek

OpenAI Debuts GPT-5.4-Cyber, a Locked-Down AI Model for Cyber Defense

OpenAI launches GPT-5.4-Cyber with selective access for verified defenders, adding a cyber-focused model and tighter controls ...
The Hacker News

OpenAI Launches GPT-5.4-Cyber with Expanded Access for Security Teams

GPT-5.4-Cyber launch expands defender access and helped fix 3,000+ vulnerabilities, strengthening proactive cybersecurity ...

Raspberry Pi OS 6.2 locks down security with a major change to sudo access0 0

Is your Raspberry Pi truly secure? Version 6.2 flips the switch on a long-standing security hole, changing how you run every ...
ExtremeTech

Fake Windows 11 24H2 Update Poses as Legit Download to Steal Data

Security researchers at Malwarebytes have found a fake Windows 11 24H2 update campaign that steals sensitive data from ...

Do not fall for this fake Windows update support site. It’s spreading a password-stealing malware

Malwarebytes warns that a fake Microsoft support site is distributing password-stealing malware through a spoofed Windows update installer ...
InfoWorld

Critical flaw in Marimo Python notebook exploited within 10 hours of disclosure

The CVSS‑9.3 vulnerability allows unauthenticated remote code execution on exposed Marimo servers and was exploited in the wild shortly after disclosure, Sysdig says.
eWeek

AliExpress Opens Preorders for Unitree R1 Humanoid

Chinese robotics star Unitree opened preorders for its sport-ready R1 humanoid on Alibaba's AliExpress this week, hitting ...