A set of four Bluetooth vulnerabilities dubbed “PerfektBlue”, discovered by researchers at PCA Cyber Security, expose a critical weakness in the BlueSDK Bluetooth stack developed by OpenSynergy. This stack isRead More →
In one of the most significant insider-assisted cyberattacks in Brazil’s financial history, a low-level IT operator working at C&M Software—a company that links smaller banks to Brazil’s PIX real-time paymentRead More →
In a recent threat intelligence disclosure, Okta has identified the misuse of Vercel’s v0.dev, a generative AI-powered interface builder, by malicious actors to construct sophisticated phishing websites. These sites areRead More →
The educational landscape has undergone a dramatic transformation with the widespread adoption of artificial intelligence writing tools. While these technologies offer exciting possibilities for learning and creativity, they also presentRead More →
Citrix has disclosed two high-impact vulnerabilities—CVE-2025-5777 (dubbed CitrixBleed 2) and CVE-2025-5349—affecting NetScaler ADC and Gateway appliances. These flaws, particularly CitrixBleed 2, enable unauthenticated attackers to extract sensitive session data directlyRead More →
A new evasion technique called “TokenBreak” has been discovered that effectively bypasses AI-based content moderation systems—including those used in popular AI models, chatbots, and content filters. This method works byRead More →
The breach, discovered in January 2025 but disclosed publicly in May, involved two India-based TaskUs employees who were bribed and recruited by cybercriminals to leak customer data. One of theRead More →
The adoption of AI-powered coding platforms, such as OpenAI’s Codex, GitHub Copilot, Amazon CodeWhisperer, Google Gemini, Anthropic Claude, TabNine, Replit Ghostwriter, and Intellicode, promises transformative productivity gains. However, beneath theRead More →
The Windows operating system includes several pre-login accessibility features, intended to support users with disabilities. One of these components, utilman.exe (Utility Manager), is designed to launch accessibility tools like NarratorRead More →
Security researcher Nick Johnson (@nicksdjohnson) has revealed a highly sophisticated phishing attack that leverages two separate Google services — OAuth and Google Sites — to execute a multi-layered campaign capableRead More →
