Critical flaw in Protobuf library enables JavaScript code execution

Proof-of-concept exploit code has been published for a critical remote code execution flaw in protobuf.js, a widely used ...
Cyber Daily

McGraw Hill confirms ShinyHunters breach, won’t confirm if any Aussie customers impacted

Hackers claim 45 million records compromised as education publisher says “data does not contain sensitive information”; Have ...
The Register-Herald

Federal judge finds Pentagon is violating court order to restore access to reporters

A federal judge has ruled that the Defense Department is violating his earlier order to restore access to the Pentagon for ...
Security Boulevard

This fake Windows support website delivers password-stealing malware

A convincing Microsoft lookalike tricks users into downloading malware that steals passwords, payments, and account access.

Max severity Flowise RCE vulnerability now exploited in attacks

Hackers are exploiting a maximum-severity vulnerability, tracked as CVE-2025-59528, in the open-source platform Flowise for ...
The Next Web

Keeper Security brings zero-trust database access to its PAM platform with KeeperDB

Database credentials remain one of the most common attack vectors in enterprise breaches, yet most organisations still manage them through shared spreadsheets, hardcoded connection strings, or ...
Windows Report

Microsoft Announces Retirement of Access Database Compare Tool

Microsoft has confirmed that it will retire the Database Compare tool in Microsoft Access, marking the end of a long-standing utility used by developers and IT professionals. The tool allowed users to ...
dbta

Keeper Security KeeperDB Blends Zero-Trust Database Access into KeeperPAM

Keeper Security, the leading zero-trust and zero-knowledge identity security and Privileged Access Management (PAM) platform, is offering KeeperDB, a new vault-embedded database access capability that ...
CNN

Homeland Security pushes for access to restricted federal database on child support, employment information for millions

The Department of Homeland Security is seeking to gain access to a trove of federal information that is intended to support the collection of child support payments but could potentially be used for ...
KGW8

Oregon eyes Abiqua Falls purchase for public access; bipartisan talks underway

SALEM, Ore. — The state of Oregon is exploring the possibility of acquiring Abiqua Falls, a scenic waterfall in the Santiam State Forest, currently owned by the Abbey Foundation of Oregon. Lawmakers ...
TechCrunch

India disrupts access to popular developer platform Supabase with blocking order

Supabase, a popular developer database platform, has been blocked in India — one of its key markets — TechCrunch has learned. New Delhi ordered internet providers to block its website, resulting in ...
The Hacker News

China-Linked Hackers Have Used the PeckBirdy JavaScript C2 Framework Since 2023

Cybersecurity researchers have discovered a JScript-based command-and-control (C2) framework called PeckBirdy that has been put to use by China-aligned APT actors since 2023 to target multiple ...