Computer hacker in front of a Chinese flag
Posted inCybersecurity News

China’s Tencent is trying to shut down online archives of content censored from WeChat.

Tencent, the technology conglomerate behind China’s ubiquitous WeChat platform, is facing criticism from digital rights advocates after allegedly pressuring the shutdown of FreeWeChat.com—a prominent online archive dedicated to preserving content censored from WeChat. The incident has sparked debate about the use of legal tactics to suppress independent documentation of digital censorship in China.
Computer hacker holding a hammer tool
Posted inCybersecurity News

The first practical demonstration (POC) confirms that Rowhammer-style memory attacks can effectively target GPU memory. NVIDIA, meet GPUHammer.

A study from the University of Toronto has revealed that modern graphics processing units (GPUs) are susceptible to Rowhammer-style memory attacks, challenging long-held assumptions about the security of GPU memory. The attack, named GPUHammer, represents the first practical demonstration of a Rowhammer exploit targeting high-performance, discrete GPUs, specifically those utilizing GDDR6 memory.
Computer hacker talking on the phone
Posted inCybersecurity News

Researchers say critical flaws enable malicious actors to hijack smartphone accounts through SIM swap attacks.

A significant security vulnerability affecting embedded Subscriber Identity Module (eSIM) technology has come to light, placing millions of mobile devices at risk of espionage and unauthorized account access. Security researchers have identified critical flaws in the provisioning and management of eSIMs, which could allow malicious actors to intercept communications, perform SIM swap attacks, and gain control over user accounts.
Computer hacker holding a large remote control
Posted inCybersecurity News

Critical mcp-remote vulnerability puts thousands of systems at risk of remote code execution (RCE).

A critical security vulnerability (CVE-2025-6514) has been identified in the widely used open-source package mcp-remote, exposing hundreds of thousands of systems to the risk of remote code execution (RCE). The flaw affects versions 0.0.5 through 0.1.15 and has been downloaded more than 437,000 times, making its potential impact significant across the AI and developer communities.
Computer hacker holding a silicon computer chip
Posted inCybersecurity News

Former semiconductor engineer gets 3 years in prison for stealing sensitive chip technology for Russia.

A Dutch court has sentenced German Aksenov, a former engineer at leading semiconductor firms ASML and NXP, to three years in prison for stealing sensitive chip technology and illegally transferring it to a contact in Russia. The high-profile case underscores the growing risks of industrial espionage in the global semiconductor industry and the strict enforcement of European Union sanctions on technology exports to Russia.
Microsoft says, ‘Goodbye, JScript. Hello JScript9Legacy,’ replacing the long-standing legacy JavaScript engine.
Posted inCybersecurity News

Microsoft says, ‘Goodbye, JScript. Hello JScript9Legacy,’ replacing the long-standing legacy JavaScript engine.

Microsoft has taken a significant step toward strengthening the security architecture of Windows 11 with the adoption of the JScript9Legacy engine, replacing the long-standing legacy JScript engine. This update, introduced with Windows 11 version 24H2, is part of Microsoft’s ongoing initiative to modernize the Windows platform and mitigate vulnerabilities associated with outdated components.
Computer hacker with McDonalds French Fries on his desk
Posted inCybersecurity News

Applicants seeking McDonald’s jobs through their AI-powered McHire platform are not very McHappy about Olivia’s security vulnerabilities.

In a significant cybersecurity incident, McDonald’s AI-powered hiring platform, McHire, has been found to have exposed the personal information of millions of job applicants due to critical security vulnerabilities. The breach, uncovered by security researchers Ian Carroll and Sam Curry, highlights the growing risks associated with automated recruitment technologies and inadequate cybersecurity measures.
Computer hacker in front of a Chinese flag
Posted inCybersecurity News

The Irish are the next in line to investigate TikTok’s handling of European user data.

The Irish Data Protection Commission (DPC), the principal privacy regulator for TikTok in the European Union, has initiated a new investigation into the social media giant’s handling of European users’ data. The inquiry centers on revelations that TikTok stored a portion of European user data on servers located in China—an issue that has reignited concerns over cross-border data transfers and user privacy.