Apple Patches Beats Studio Buds Flaw That Could Enable Wiretapping

Apple patched a Beats Studio Buds Bluetooth flaw that could let nearby attackers listen through the microphone during pairing. The post Apple Patches Beats Studio...

AWS Unveils ‘Continuum,’ an AI-Powered Vulnerability Management Platform

Working with frontier AI models, this new platform aims to help discovering, prioritizing, validating and remediating code vulnerabilities - Read more

UK information commissioner John Edwards resigns after HR investigation

The UK’s information commissioner has resigned following an HR investigation, saying there were occasions when he exercised ‘poor judgement’ and made ‘inappropriate attempts at...

HTTP/2 Bomb Denial-of-Service Vulnerability

Security researchers have disclosed a new denial-of-service (DoS) attack technique dubbed HTTP/2 Bomb, tracked as CVE-2026-49975, that affects multiple major HTTP/2 server implementations. Unlike...

Gogs – Authentication Bypass via Unvalidated Reverse Proxy Headers

Gogs - Authentication Bypass via Unvalidated Reverse Proxy Headers When 'ENABLE_REVERSE_PROXY_AUTHENTICATION' is enabled, Gogs accepts the configured authentication header (default: 'X-WEBAUTH-USER') directly from client...

FortiBleed Campaign Exposing Credentials for 73,932 FortiGate Systems

Last updated on 19 June. A dataset containing valid administrative and VPN credentials for tens of thousands of Fortinet FortiGate firewalls has been...

Ralph Lauren – 139,903 breached accounts

In June 2026, fashion retailer Ralph Lauren was targeted in a ShinyHunters "pay or leak" extortion campaign. The group subsequently published hundreds of gigabytes...

Operation Endgame 4.0 – 4,160,519 breached accounts

On 18 June 2026, the latest phase of Operation Endgame targeted the SocGholish malware operation, a prolific malware distribution network used to compromise systems...

Operation Endgame 4.0 – 153,527 breached accounts

On 18 June 2026, the latest phase of Operation Endgame targeted the SocGholish malware operation, a prolific malware distribution network used to compromise systems...

Accelerate security investigations with Kiro CLI

When a security event occurs in your Amazon Web Services (AWS) environment, rapid response is critical. However security teams often struggle with time-consuming, manual...

Latest article

Apple’s ‘Hide My Email’ Privacy Flaw Exposes Real Email Addresses

Researchers say Apple’s Hide My Email flaw may expose real addresses, despite two fixes. Here’s what users should know about the privacy risk. The post...

Missed incidents, persistent threats, and response gaps: Insights from compromise assessment projects

The following analysis presents the key findings from Kaspersky Compromise Assessment engagements performed in 2025. A compromise assessment is an independent, expert-driven service that...

Test Cache

Testing cache response - Read more

Secure Amazon container workloads using container attribute-based rules in AWS Network Firewall

Today, you can use AWS Network Firewall to protect traffic flowing to and from containerized applications on Amazon Elastic Kubernetes Service (Amazon EKS) and...