Security firm Cyera revealed a critical flaw in the n8n workflow automation platform that allows unauthenticated attackers to read files and execute code. The bug, patched in version 1.121.0, could expose API keys and credentials for services like Salesforce and OpenAI stored on over 100,000 potenti
A new Horizon Europe project called SHASAI is taking a holistic approach to AI cybersecurity. Running from November 2025 to April 2029, it will develop tools to protect AI from design through real-world operation.
Crypto hardware wallet maker Ledger is dealing with another data breach, this time via its third-party payment processor. While crypto keys are safe, leaked customer names and contact info are a goldmine for scammers planning future attacks.
Internet provider Brightspeed is investigating claims by the Crimson Collective that they stole data on over a million customers. The criminals have listed the dataset for sale for three bitcoin, roughly $276,370, and threaten to dump it publicly.
A new Android ransomware app, “Adult Player,” masquerades as adult content but hijacks your phone. It secretly takes photos and demands $500 to unlock the device. Security researchers have found a way to remove it, but the threat is a nasty one.
Browsers with built-in VPNs promise easy privacy but come with major limitations. They only protect your browser traffic, not other apps, and often struggle with streaming and customization. Here’s who they’re actually for.
Finnish authorities have launched a criminal investigation after seizing a vessel suspected of damaging a telecom cable between Helsinki and Tallinn. It’s the latest in a rash of subsea infrastructure incidents in the Baltic, a region on edge.
According to a new set of predictions, 2026 will see AI-driven attacks and defenses escalate into a full-blown arms race. The most unsettling forecast is the dawn of self-learning, “agentic” malware that can adapt its tactics in real-time. Platform consolidation is also expected to reshape the entir
The insurance giant Aflac has revealed the massive scale of a data breach it first reported in June 2025. The personal data of 22.65 million people, including Social Security numbers and health information, was compromised. The company is offering affected individuals two years of free credit monito
Microsoft is optimizing its accounts for a “passwordless and passkey-first experience” in 2025. Removing your password dramatically increases security against phishing, but it requires careful setup to avoid locking yourself out. The author explains the switch and the crucial steps.
