ShinyHunters claim to be behind SSO-account data theft attacks

The ShinyHunters extortion gang claims it is behind a wave of ongoing voice phishing attacks targeting single sign-on (SSO) ...
Windows Report

Windows 11 and Server 2025 Updates Get Bigger With New CLFS Security Changes

Microsoft adds HMAC protection to CLFS in Windows 11 25H2 and Server 2025, improving security while increasing disk and I/O ...
The Hacker News

Fortinet, Ivanti, and SAP Issue Urgent Patches for Authentication and Code Execution Flaws

Fortinet, Ivanti, and SAP have moved to address critical security flaws in their products that, if successfully exploited, could result in an authentication bypass and code execution. The Fortinet ...
Frontiers

Synchronizing LLM-based semantic knowledge bases via secure federated fine-tuning in semantic communication

1 Shanghai Key Laboratory of Integrated Administration Technologies for Information Security, School of Computer Science, Shanghai Jiao Tong University, Shanghai, China 2 National Key Laboratory of ...
Mobile ID News

Google Messages Launches QR Code Verification System for Enhanced RCS Security

Google has unveiled a new QR code-based key verification system for its Google Messages app, specifically designed to enhance security for Rich Communication Services (RCS) messaging. The system ...
Dark Reading

Phishers Abuse Microsoft 365 to Spoof Internal Users

Cybercriminals appear to have found a troubling new way to bypass Microsoft 365's email security defenses and deliver convincing phishing emails to targeted users. The tactic exploits a legitimate ...
ZDNet

Why SMS two-factor authentication codes aren't safe and what to use instead

We've probably all received confirmation codes sent via text message when trying to sign into an account. Those codes are supposed to serve as two-factor authentication to confirm our identity and ...
Mobile ID News

One Million 2FA Codes Exposed Through Message Aggregator Fink Telecom Services

A major security incident has come to light involving the exposure of one million two-factor authentication (2FA) codes, revealing vulnerabilities in the authentication system widely used by major ...