U.S. CISA adds RoundCube Webmail flaws to its Known Exploited Vulnerabilities catalog
U.S. CISA adds RoundCube Webmail flaws to its Known Exploited Vulnerabilities catalog Pierluigi Paganini February 21, 2026 U.S. Cybersecurity and...
Security
CISA Adds Two Actively Exploited Roundcube Flaws to KEV Catalog
Ravie LakshmananFeb 21, 2026Vulnerability / Patch Management The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added two security...
PayPal Flaw Exposed Email Addresses, Social Security Numbers for 6 Months
Image: akportfolio24/Envato PayPal is notifying customers after a software error in its PayPal Working Capital (PPWC) loan application exposed certain...
PayPal discloses extended data leak linked to Loan App glitch
PayPal discloses extended data leak linked to Loan App glitch Pierluigi Paganini February 20, 2026 PayPal disclosed a six-month data...
Google Blocked 1.75M Harmful Apps From Play Store in 2025
Generated with Google Gemini. Google relied on expanded AI-driven review systems and stronger front-end controls to block more than 1.75...
NDSS 2025 – NodeMedic-FINE: Automatic Detection And Exploit Synthesis For Node.js Vulnerabilities
Session 13A: JavaScript Security Authors, Creators & Presenters: Darion Cassel (Carnegie Mellon University), Nuno Sabino (IST & CMU), Min-Chien...
North Korean IT worker scam nets Ukrainian five-year sentence in the U.S.
North Korean IT worker scam nets Ukrainian five-year sentence in the U.S. Pierluigi Paganini February 20, 2026 A Ukrainian man...
Randall Munroe’s XKCD ‘Double-Pronged Extension Cord’
via the comic artistry and dry wit of Randall Munroe, creator of XKCD Permalink *** This is a Security...
What Is Zero Trust Security? A Plain-English Guide
The old security model had a name, even if no one used it: "castle and moat." You built a...
Using threat modeling and prompt injection to audit Comet
Before launching their Comet browser, Perplexity hired us to test the security of their AI-powered browsing features. Using adversarial...
Microsoft: Critical Security Issue Found in Windows Notepad
Image: Microsoft. Notepad has long been Windows’ quiet utility knife. It opens instantly, asks for nothing, and simply displays text....
Scammers Use Fake Gemini AI Chatbot for Crypto Scam
Image: vanenunes (Envato) If a chatbot claiming to be Gemini AI begins to promote a new Google cryptocurrency, it’s best...
FBI warns of surge in ATM Jackpotting, $20 Million lost in 2025
FBI warns of surge in ATM Jackpotting, $20 Million lost in 2025 Pierluigi Paganini February 20, 2026 The FBI warns...
PromptSpy abuses Gemini AI to gain persistent access on Android
PromptSpy abuses Gemini AI to gain persistent access on Android Pierluigi Paganini February 20, 2026 PromptSpy is the first Android...
Why Most Breaches Happen After Launch: SaaS Security Testing Best Practices
The post Why Most Breaches Happen After Launch: SaaS Security Testing Best Practices first appeared on StrongBox IT. ***...
