Oasis Security discovered a vulnerability in the popular OpenClaw agentic AI software that allows websites to silently bruteforce access to a locally running instance and take it over.
Notepad++ has released a blog post describing the security enhancements they’ve made since the state-sponsored hack earlier this month, highlighting their new “double lock” update mechanism.
Researchers have discovered a vulnerability in Google Fast Pair, dubbed WhisperPair, that leaves affected accessories open to being fully controlled by an attacker.
Security research and consulting firm Trail of Bits analyzed agentic AI in browsers and found vulnerabilites that resemble cross-site scripting (XSS) and cross-site request forgery (CSRF) attacks.
Kohler's smart toilet camera claims that all photos are secured with end‑to‑end encryption, but it turns out that they only use TLS encryption.
Researchers at Oligo have found several “trivially exploitable” vulnerabilities in the widely-used Fluent Bit logging software that left users vulnerable for over 8 years.
Security researchers from the University of Vienna and SBA Research have disclosed a now-patched vulnerability that can enumerate around 3.5 billion WhatsApp accounts using the app's contact discovery feature.
SecurityScorecard’s STRIKE team has worked with ASUS to unveil a massive malware campaign against End-of-Life (EoL) ASUS WRT routers.
Elcomsoft, purveyor of forensic extraction tools, announced that they were the first to achieve a full filesystem extraction for the Apple TV 4K running tvOS 26, marking the first forensic extraction of one of Apple's latest operating systems, according to them.
Today, Trail of Bits, a well-respected security research and auditing firm, has released a blog post outlining two vulnerabilities in elliptic, a widely used JavaScript cryptographic library.
A recent blog post by Google shows that memory safety vulnerabilities account for less than 20% of new vulnerabilities in Android this year, down from 76% in 2019.
YouTuber Ben Jordan released a 40 minute exposé, showing just how easy it is for hackers to get info the sensitive data stored inside Flock's now ubiquitous surveillance cameras.