UK Government Urged to Review Palantir Contracts After Swiss Security Report
The report warned that sensitive military data shared with Palantir could potentially be accessed by US government bodies, including intelligence...
Month: December 2025
SEC Targets Crypto Platforms in Social Media Scam Crackdown
The Securities and Exchange Commission launched an enforcement wave targeting three purported cryptocurrency trading platforms and four investment clubs. The...
Best of 2025: Microsoft’s January 2025 Patch Tuesday Addresses 157 CVEs (CVE-2025-21333, CVE-2025-21334, CVE-2025-21335)
10Critical147Important0Moderate0LowMicrosoft addresses 157 CVEs in the first Patch Tuesday release of 2025 and the largest Patch Tuesday update ever...
Best of 2025: Blue Shield of California Data Breach Exposes 4.7M Members’ Info
Blue Shield of California has confirmed a data breach affecting 4.7 million members due to a misconfigured Google Analytics...
How to sanitize production data for use in testing
Production data reveals the edge cases your unit tests miss—the rare value combinations, the unexpected nulls, the referential integrity...
Building Secure User Portals for Content-Heavy SaaS Applications
Content-heavy SaaS applications face a unique challenge: balancing seamless user access with robust security. When your platform handles large...
Apple fined $116 million in Italy
The Italian competition authority, Autorità Garante della Concorrenza e del Mercato, has fined Apple more than $116 million (€98.6 million) for...
Why Third-Party Access Remains the Weak Link in Supply Chain Security
Why Third-Party Access Remains the Weak Link in Supply Chain Security Pierluigi Paganini December 23, 2025 Attackers exploited a supply...
U.S. CISA adds a flaw in Digiever DS-2105 Pro to its Known Exploited Vulnerabilities catalog
U.S. CISA adds a flaw in Digiever DS-2105 Pro to its Known Exploited Vulnerabilities catalog Pierluigi Paganini December 23, 2025...
INTERPOL Arrests 574 in Africa; Ukrainian Ransomware Affiliate Pleads Guilty
A law enforcement operation coordinated by INTERPOL has led to the recovery of $3 million and the arrest of 574...
Passwd: A walkthrough of the Google Workspace Password Manager
Passwd is designed specifically for organizations operating within Google Workspace. Rather than competing as a general consumer password manager, its...
U.S. DoJ Seizes Fraud Domain Behind $14.6 Million Bank Account Takeover Scheme
î ‚Dec 23, 2025î „Ravie LakshmananFinancial Crime / Law Enforcement The U.S. Justice Department (DoJ) on Monday announced the seizure of a...
Critical n8n Flaw (CVSS 9.9) Enables Arbitrary Code Execution Across Thousands of Instances
î ‚Dec 23, 2025î „Ravie LakshmananVulnerability / Workflow Automation A critical security vulnerability has been disclosed in the n8n workflow automation platform...
FCC Bans Foreign-Made Drones and Key Parts Over U.S. National Security Risks
î ‚Dec 23, 2025î „Ravie LakshmananCybersecurity / Surveillance The U.S. Federal Communications Commission (FCC) on Monday announced a ban on all drones...
Revisiting CVE-2025-50165: A critical flaw in Windows Imaging Component
ESET researchers examined CVE‑2025‑50165, a serious Windows vulnerability described to grant remote code execution by merely opening a specially crafted...
