A critical security vulnerability has been discovered in TLP, a widely used Linux laptop battery optimization utility, allowing local attackers to bypass authentication controls and manipulate system power settings without authorization. Security researchers from openSUSE identified a severe authentication bypass…
GitLab Patches Multiple Vulnerabilities that Enables Arbitrary Code Execution
GitLab has released emergency security patches for multiple versions of its platform, addressing eight vulnerabilities that could enable arbitrary code execution and unauthorized access in self-managed installations. The updated versions 18.7.1, 18.6.3, and 18.5.5 were deployed to GitLab.com on January…
Logitech macOS mouse mayhem traced to expired dev certificate
Company says it dropped the ball, apologizes for wasting people’s time Logitech says an expired developer certificate is to blame after swaths of customers were left infuriated when their mice malfunctioned.… This article has been indexed from The Register –…
Maximum Severity “Ni8mare” Bug Lets Hackers Hijack n8n Servers
A newly discovered vulnerability in authentication platform n8n could allow threat actors to take control of n8n servers This article has been indexed from www.infosecurity-magazine.com Read the original article: Maximum Severity “Ni8mare” Bug Lets Hackers Hijack n8n Servers
CES: ARM Adds Robotics Division
Chip designer ARM reportedly reorganises company, adds Physical AI unit for robotics tech that includes automotive applications This article has been indexed from Silicon UK Read the original article: CES: ARM Adds Robotics Division
PayPal email scam: How it worked before the fix
A recent PayPal email scam used real PayPal messages to show fake purchase details and a callback number. See how it worked. The post PayPal email scam: How it worked before the fix appeared first on Security Boulevard. This article…
Anthropic Said To Raise $10bn At $350bn Valuation
Anthropic reportedly seeking to close $10bn funding round at $350bn valuation, nearly double that of four months ago This article has been indexed from Silicon UK Read the original article: Anthropic Said To Raise $10bn At $350bn Valuation
China-linked groups intensify attacks on Taiwan’s critical infrastructure, NSB warns
Taiwan says China-linked cyberattacks on its energy sector rose tenfold in 2025, hitting critical infrastructure across nine sectors, with total incidents up 6%. Taiwan reports China-linked cyberattacks on its energy sector surged tenfold in 2025, targeting critical infrastructure across nine…
Top 3 Cyber Attacks In March 2026
March 2026 delivered a surge in cyber threats targeting users and organizations alike from banking apps hijacked to siphon personal data, to trusted domains exploited for phishing redirects. Cybercriminals unleashed increasingly cunning and perilous tactics. Here’s a breakdown of the…
10 Best IT Asset Management Tools In 2026
IT asset management (ITAM) software has become indispensable for businesses seeking to track, manage, and optimize their hardware, software, and cloud resources efficiently. As 2026 approaches, ITAM tools are evolving rapidly with cutting-edge features that cut costs, bolster security, ensure…
Top 10 Best Server Monitoring Tools in 2026
Server monitoring tools keep IT infrastructure running smoothly by delivering real-time visibility into key metrics like CPU load, memory usage, disk capacity, and network throughput. Standouts include Zabbix for its scalability and customization, Nagios with vast plugin ecosystems for tailored…
10 Best Web Scanners for Website Security In 2026
Securing websites demands top-tier web vulnerability scanners. These powerful tools pinpoint critical flaws like SQL injection, cross-site scripting (XSS), and command injection, keeping your site fortified against attacks. Elite scanners emulate attacker strategies, delivering concrete proof and precise fix instructions.…
Top 50 Best Penetration Testing Companies in 2026
Penetration testing companies serve as vital cybersecurity allies, simulating real-world cyberattacks to expose vulnerabilities in systems, networks, and applications before malicious actors strike. Employing ethical hackers with advanced techniques, they rigorously assess defenses, pinpoint misconfigurations, and evaluate control effectiveness to…
IPFire update brings new network and security features to firewall deployments
Security and operations teams often work with firewall platforms that require frequent tuning or upgrades to meet evolving network demands. IPFire has released its 2.29 Core Update 199, aimed at network and protection teams that manage this open source firewall…
Cyber-Attack School Extends Closure To At Least Monday
Midlands secondary school to remain closed until Monday at the earliest, as it struggles to deal with fallout from cyber-attack This article has been indexed from Silicon UK Read the original article: Cyber-Attack School Extends Closure To At Least Monday
Chinese Authorities Review Meta’s Manus Acquisition
Chinese officials reportedly review $2bn acquisition of AI start-up Manus by Facebook parent over potential export rule violations This article has been indexed from Silicon UK Read the original article: Chinese Authorities Review Meta’s Manus Acquisition
ESA confirms new data heist, Ni8mare lets hackers hijack n8n servers, Taiwan blames ‘cyber army’ for intrusion attempts
ESA confirms new data heist Ni8mare lets hackers hijack n8n servers Taiwan blames ‘cyber army’ for intrusion attempts Huge thanks to our sponsor, Hoxhunt Traditional security training fails because it treats employees like the problem. Hoxhunt treats them like the…
ownCloud Warns Users to Enable MFA After Credential Theft Incident
ownCloud has issued an urgent security advisory urging users to enable Multi-Factor Authentication (MFA) following a credential theft incident reported by threat intelligence firm Hudson Rock. The incident, discovered in January 2026, affected organizations using self-hosted file-sharing platforms, including some…
Linux Battery Utility Vulnerability Allows Authentication Bypass and System Tampering
Linux laptop users are being urged to update after a flaw in a popular battery optimisation tool was found to allow authentication bypass and system tampering. The vulnerability affects the TLP power profiles daemon introduced in version 1.9.0, which exposes a D-Bus API for…
Three Malicious NPM Packages Target Developers’ Login Credentials
Security researchers at Zscaler ThreatLabz have uncovered three malicious npm packages designed to install a sophisticated remote access trojan (RAT) targeting JavaScript developers. The packages, named bitcoin-main-lib, bitcoin-lib-js, and bip40, collectively registered over 3,400 downloads before being removed from the…
BlueDelta Hackers Target Microsoft OWA, Google, and Sophos VPN to Steal Credentials
A sophisticated credential-harvesting operation conducted by BlueDelta, a Russian state-sponsored threat group linked to the GRU’s Main Directorate, targeted critical infrastructure organizations and research institutions throughout 2025, according to a comprehensive investigation by Recorded Future’s Insikt Group. The campaign, spanning…
GitLab Patches Multiple Flaws Allowing Arbitrary Code Execution
Linux administrators are being urged to update promptly after disclosures of multiple vulnerabilities in GitLab, including flaws that could enable cross-site scripting, authorization bypass, and denial of service in selfmanaged instances. The latest patch releases, GitLab 18.7.1, 18.6.3, and 18.5.5, address these security…
OpenAI Launches ChatGPT Health with Isolated, Encrypted Health Data Controls
Artificial intelligence (AI) company OpenAI on Wednesday announced the launch of ChatGPT Health, a dedicated space that allows users to have conversations with the chatbot about their health. To that end, the sandboxed experience offers users the optional ability to…
IT Security News Hourly Summary 2026-01-08 09h : 4 posts
4 posts were published in the last hour 7:36 : Three Malicious NPM Packages Attacking Developers to Steal Login Credentials 7:36 : Ni8mare Vulnerability Let Attackers Hijack n8n Servers – Exploit Released With 26,512 Vulnerable Hosts 7:36 : Cybercriminals are…