‘Hacking is assumed now’: experts raise the alarm about added risk of surveillance cameras in childcare centres
As governments consider mandatory CCTV in early education, one big provider with cameras already installed is yet to formalise guidelines for how the footage will be stored and usedGet our breaking news email, free app or daily news podcastIn the wake of horrifying reports last week alleging that eight children had been sexually abused by a worker in a...
Louis Vuitton says UK customer data stolen in cyber-attack
Lead brand of French luxury group LVMH reassures customers financial data such as bank details were not takenLouis Vuitton has said the data of some UK customers has been stolen, as it became the latest retailer targeted by cyber hackers.The retailer, the leading brand of the French luxury group LVMH, said an unauthorised third party had accessed its UK...
CVE-2025-48384: Git vulnerable to arbitrary file write on non-Windows systems
Learn more about the emerging vulnerability affecting Git. - Read more
AI adoption in security: Top use cases and mistakes to avoid
Discover top AI use cases in cybersecurity and key pitfalls to avoid when adopting AI in your SOC to improve threat detection and response. - Read more
What is Quantum Computing?
Quantum computing enhances information processing, impacting cryptography and emphasizing the need for quantum-resistant technologies. - Read more
We’ve Issued Our First IP Address Certificate
Since Let’s Encrypt started issuing certificates in 2015, people have repeatedly requested the ability to get certificates for IP addresses, an option that only a few certificate authorities have offered. Until now, they’ve had to look elsewhere, because we haven’t provided that feature.
Today, we’ve issued our first certificate for an IP address, as we announced we would in January....
The State of Post-Quantum Cryptography (PQC) on the Web
We analyze the world’s most popular websites and most widely used web browsers to determine the current state of PQC adoption on the web. - Read more
Expiration Notification Service Has Ended
Since its inception, Let’s Encrypt has been sending expiration notification emails to subscribers that have provided an email address to us via the ACME API. This service ended on June 4, 2025. The decision to end the service is the result of the following factors:
Over the past 10 years more and more of our subscribers have been able to...
Langflow Unauth RCE Attack
FortiGuard Labs has observed a significant uptick in attacks targeting Langflow, leveraging a recently discovered authentication bypass vulnerability that allows unauthenticated remote attackers to fully compromise affected servers. - Read more
Elastic named a Leader in The Forrester Wave™: Security Analytics Platforms, Q2 2025
Elastic has been named a Leader in The Forrester Wave™: Security Analytics Platforms, Q2 2025. Elastic Security is AI-driven and open, delivering detection, investigation and response at scale, without lock-in or limits. - Read more
Latest article
Yarbo Android/iOS Mobile Application and Cloud Infrastructure
View CSAF
Summary
Successful exploitation of these vulnerabilities could allow an attacker to obtain hard-coded credentials, gain access to telemetry data, and potentially send operational commands...
Check Point VPN Authentication Bypass Vulnerability
What is the Vulnerability? A critical authentication bypass vulnerability, CVE-2026-50751 (CVSS...
CISA tells agencies to patch smarter, not harder — foreshadowing broader industry practice
Security teams’ patching practices have come under intense pressure over the past year, as active exploitation is up, time-to-exploit windows...
