Search: security and hacking

Google Chrome adds session cookie theft protection for all users

…hackers from using such stolen cookies to bypass multi-factor authentication (MFA) and hijack users' accounts. DBSC works by cryptographically linking user sessions to the hardware, such as their computer's security…

May 29, 2026 · Sergiu Gatlan

DAEMON Tools devs confirm breach, release malware-free version

…Our current analysis indicates that DAEMON Tools Pro and DAEMON Tools Ultra were not affected and absolutely safe." In a separate statement published earlier today, Disc Soft also said it has secured…

May 6, 2026 · Sergiu Gatlan

CISA gives feds 3 days to patch Check Point VPN bug exploited as zero-day

…federal agencies, CISA urged all security teams (including those in the private sector) to deploy patches for CVE-2026-50751 and secure their organizations' networks as soon as possible. Two years ago…

Jun 9, 2026 · Sergiu Gatlan

New Veeam vulnerability exposes backup servers to RCE attacks

…The vulnerability (tracked as CVE-2026-44963 and reported by WatchTowr security researcher Sina Kheirkhah) affects Veeam Backup & Replication (VBR) 12.3.2.4465 and all earlier version 12 builds, and was…

Jun 9, 2026 · Sergiu Gatlan

Acer working to patch max severity zero-days in Wave 7 routers

…According to a Friday security advisory , the two security flaws were reported by security researcher Gergo Pap and affect Wave 7 routers running firmware version T7c_GBL_1.01.000055 or earlier…

Jun 3, 2026 · Sergiu Gatlan

Max severity Ivanti Sentry vulnerability now exploited in attacks

…Hackers often target Ivanti security flaws because they provide an entry point into targets' enterprise networks, enabling the theft of sensitive customer and corporate data. For instance, Multiple Ivanti zero-days have…

Jun 11, 2026 · Sergiu Gatlan

CISA tells govt agencies to patch critical exploited flaws in 3 days

…Cybersecurity and Infrastructure Security Agency (CISA) announced a new Binding Operational Directive, 26-04, that prioritizes security updates for Federal Civilian Executive Branch (FCEB) agencies. The directive aims to reduce the threat…

Jun 11, 2026 · Bill Toulas

Australia warns of ClickFix attacks pushing Vidar Stealer malware

…WordPress site administrators are also advised to apply available security updates for themes and add-ons, and to remove any unused themes/plugins from their platforms. ACSC's security bulletin provides indicators…

May 7, 2026 · Bill Toulas

AI-built ransomware toolkit automates EDR evasion, AD discovery

…Tool and payload development was assisted by Cursor and Claude Opus agents in various stages, including initial coding, analysis, and revisioning. Additionally, some agents were tasked with checking security research posts for…

Jun 2, 2026 · Bill Toulas

OpenClaw AI agent found falling for phishing attacks, spills user data

…Researchers at security firm Varonis created an OpenClaw agent and connected it to a Gmail inbox, browser tools, Google Workspace APIs, and fabricated internal company data sources, instructing it to monitor and…

Jun 9, 2026 · Bill Toulas

Followed topics

Search