Italian data regulator fines Luka, developer of Replika AI ‘virtual friend’, 5m euros for failure to prevent children from using service This article has been indexed from Silicon UK Read the original article: Italy Fines Replika AI Maker £4m Over…
Category: EN
AMD Sells ZT’s AI Server Manufacturing Unit To Sanmina
Sanmina to buy ZT Systems AI cloud server manufacturing business from AMD as company builds up US-based supply chain This article has been indexed from Silicon UK Read the original article: AMD Sells ZT’s AI Server Manufacturing Unit To Sanmina
Microsoft Issues Urgent Patch to Resolve BitLocker Recovery Problem
Microsoft has released an emergency update to address a critical issue affecting Windows 10 devices with specific Intel processors. The update (KB5061768) fixes a problem introduced in the May 13, 2025 security update that was causing unexpected system failures and…
O2 VoLTE Flaw Allows Tracking of Customers’ Locations Through Phone Calls
Significant privacy vulnerability in O2 UK’s Voice over LTE (VoLTE) implementation was recently discovered, allowing any caller to access precise location data of call recipients. The security flaw, which exposed sensitive information through IMS (IP Multimedia Subsystem) signaling messages, has…
Half of Consumers Targeted by Social Media Fraud Ads
Around half of US and UK consumers have seen fraud ads and content on ‘refund hacks’ on social media This article has been indexed from www.infosecurity-magazine.com Read the original article: Half of Consumers Targeted by Social Media Fraud Ads
Malicious npm Package in Koishi Chatbots Steals Sensitive Data in Real Time
Socket’s Threat Research Team has uncovered a dangerous npm package named koishi-plugin-pinhaofa, masquerading as a spelling-autocorrect helper for Koishi chatbots. Marketed innocently, this plugin embeds a insidious data-exfiltration backdoor that scans every incoming message for an eight-character hexadecimal string a…
Virgin Media O2 patches hole that let callers snoop on your coordinates
Researcher finds VoLTE metadata could be used to locate users within 100 meters UK telco Virgin Media O2 has fixed an issue with its 4G Calling feature that allowed users’ general location to be discerned by those who called them.……
Go-Based Malware Deploys XMRig Miner on Linux Hosts via Redis Configuration Abuse
Cybersecurity researchers are calling attention to a new Linux cryptojacking campaign that’s targeting publicly accessible Redis servers. The malicious activity has been codenamed RedisRaider by Datadog Security Labs. “RedisRaider aggressively scans randomized portions of the IPv4 space and uses legitimate…
New 23andMe Buyer Regeneron Promises to Prioritize Security
Regeneron, which intends to acquire 23andMe for $256m, says data security and privacy will be a priority This article has been indexed from www.infosecurity-magazine.com Read the original article: New 23andMe Buyer Regeneron Promises to Prioritize Security
Dell Taps Nvidia Blackwell Ultra For Latest AI Servers
Dell introduces servers running Nvidia’s Blackwell Ultra AI GPUs as high costs, intense competition pressure profit margins This article has been indexed from Silicon UK Read the original article: Dell Taps Nvidia Blackwell Ultra For Latest AI Servers
Microsoft’s GitHub Offers AI Coding Agent
Microsoft’s GitHub expands AI offerings with semi-autonomous programming agent, Azure to offer models from xAI, Mistral, Black Forest Labs This article has been indexed from Silicon UK Read the original article: Microsoft’s GitHub Offers AI Coding Agent
Tycoon2FA Linked Phishing Attack Targeting Microsoft 365 Users to Steal Logins
A sophisticated phishing campaign linked to Tycoon2FA is actively targeting Microsoft 365 users by employing an unusual URL manipulation technique. The attack leverages malformed URL prefixes with backslash characters (https:\$$ instead of the standard forward slashes (https://) to bypass security…
W3LL Phishing Kit Actively Attacking Users to Steal Outlook Login Credentials
A sophisticated phishing campaign utilizing the W3LL Phishing Kit has been actively targeting users’ Microsoft Outlook credentials through elaborate impersonation techniques. First identified by Group-IB in 2022, this phishing-as-a-service (PhaaS) tool has evolved into a comprehensive ecosystem complete with its…
CISA Adds Ivanti EPMM 0-day to KEV Catalog Following Active Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) officially added two critical zero-day vulnerabilities affecting Ivanti Endpoint Manager Mobile (EPMM) to its Known Exploited Vulnerabilities (KEV) catalog. These vulnerabilities, CVE-2025-4427 and CVE-2025-4428, are actively exploited in the wild and pose…
Multiple pfSense Firewall Vulnerabilities Let Attackers Inject Malicious Codes
Three critical vulnerabilities in pfSense firewall software that could allow authenticated attackers to inject malicious code, manipulate cloud backups, and potentially achieve remote code execution. The vulnerabilities affect both pfSense Community Edition (CE) prior to version 2.8.0 beta and corresponding…
Engineering Calm in Crisis: Lessons from the Frontlines of Security
High-pressure incidents can be defining moments for organizations, demanding immediate, coordinated, and often high-stakes responses. In the realm of cybersecurity, where threats evolve rapidly and stakes include sensitive data, reputational damage, and financial loss, the pressure to act quickly is…
W3LL Phishing Kit Launches Active Campaign to Steal Outlook Login Credentials
Cybersecurity researchers have recently uncovered a sophisticated phishing campaign leveraging the notorious W3LL Phishing Kit. Originally identified by Group-IB in 2022, W3LL differentiates itself in the criminal ecosystem as a phishing-as-a-service (PaaS) tool, supported by a unique marketplace known as…
Tor Browser 14.5.2 Released: Bug Fixes and Enhanced Features
Tor Project has launched Tor Browser 14.5.2, a significant update addressing security vulnerabilities, refining cross-platform functionality, and enhancing build system reliability. This release integrates critical Firefox security patches, resolves longstanding privacy-related bugs, and implements infrastructural improvements to streamline future development.…
Sarcoma Ransomware Unveiled: Anatomy of a Double Extortion Gang
Cybersecurity Observatory of the Unipegaso’s malware lab published a detailed analysis of the Sarcoma ransomware. It is with great pleasure and honor that I present the first report produced by the Malware Analysis Lab, led by Luigi Martire. The lab…
CampusGuard ScriptSafe prevents unauthorized script execution
CampusGuard introduced ScriptSafe, a software data security and privacy compliance solution. ScriptSafe identifies and mitigates risks posed by JavaScript, third-party vendors and open-source code within your web ecosystem. Beyond securing your code, it addresses a critical gap in managing third-party digital…