Google introduces biometric camera authentication in reCAPTCHA that analyzes hand gestures, but has already been bypassed through AI-generated animations.
An actively exploited XSS vulnerability in Exchange OWA is being patched for current versions but remains unfixed for Exchange 2016/2019 without paid Extended Support.
VPN technology protects only on the transmission path against man-in-the-middle attacks, not against malware, phishing, or modern tracking—and concentrates trust rather than eliminating it.
Klue customers must review their Salesforce integrations as OAuth tokens have been compromised and a new extortion group claims responsibility for the attack.
The Gentlemen has developed GentleKiller, an EDR killer framework that provides less experienced affiliate partners with ready-to-use tools for bypassing enterprise security systems.
A campaign called FortiBleed conducted by Russian-speaking actors has compromised over 86,600 Fortinet FortiGate devices and requires immediate protective measures by affected organizations.
NIS2 mandates organisations in critical infrastructure and essential services to implement enhanced cybersecurity measures and establishes a binding compliance framework with enforcement mechanisms.