Security

Pwn2Own Berlin 2025: total prize money reached $1,078,750Pwn2Own Berlin 2025: total prize money reached $1,078,750

Pwn2Own Berlin 2025: total prize money reached $1,078,750

Pwn2Own Berlin 2025 wrapped up with $383,750 awarded on the final day, pushing the total prize money to $1,078,750 over…

51 minutes ago
Experts found rogue devices, including hidden cellular radios, in Chinese-made power inverters used worldwideExperts found rogue devices, including hidden cellular radios, in Chinese-made power inverters used worldwide

Experts found rogue devices, including hidden cellular radios, in Chinese-made power inverters used worldwide

Chinese "kill switches" found in Chinese-made power inverters in US solar farm equipment that could let Beijing remotely disable power…

24 hours ago
U.S. CISA adds Google Chromium, DrayTek routers, and SAP NetWeaver flaws to its Known Exploited Vulnerabilities catalog<gwmw style="display:none;"></gwmw>U.S. CISA adds Google Chromium, DrayTek routers, and SAP NetWeaver flaws to its Known Exploited Vulnerabilities catalog<gwmw style="display:none;"></gwmw>

U.S. CISA adds Google Chromium, DrayTek routers, and SAP NetWeaver flaws to its Known Exploited Vulnerabilities catalog<gwmw style="display:none;"></gwmw>

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Google Chromium, DrayTek routers, and SAP NetWeaver flaws to its Known Exploited…

2 days ago
Pwn2Own Berlin 2025 Day Two: researcher earned 150K hacking VMware ESXiPwn2Own Berlin 2025 Day Two: researcher earned 150K hacking VMware ESXi

Pwn2Own Berlin 2025 Day Two: researcher earned 150K hacking VMware ESXi

On day two of Pwn2Own Berlin 2025, participants earned $435,000 for demonstrating zero-day in SharePoint, ESXi, VirtualBox, RHEL, and Firefox.…

3 days ago
Meta plans to train AI on EU user data from May 27 without consentMeta plans to train AI on EU user data from May 27 without consent

Meta plans to train AI on EU user data from May 27 without consent

Meta plans to train AI on EU user data from May 27 without consent; privacy group noyb threatens lawsuit over…

3 days ago
Google fixed a Chrome vulnerability that could lead to full account takeoverGoogle fixed a Chrome vulnerability that could lead to full account takeover

Google fixed a Chrome vulnerability that could lead to full account takeover

Google released emergency security updates to fix a Chrome vulnerability that could lead to full account takeover. Google released emergency…

3 days ago
U.S. CISA adds a Fortinet flaw to its Known Exploited Vulnerabilities catalogU.S. CISA adds a Fortinet flaw to its Known Exploited Vulnerabilities catalog

U.S. CISA adds a Fortinet flaw to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a Fortinet vulnerability to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and…

4 days ago
U.S. CISA adds Microsoft Windows flaws to its Known Exploited Vulnerabilities catalogU.S. CISA adds Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog

U.S. CISA adds Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog

U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Microsoft Windows flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity…

5 days ago
Fortinet fixed actively exploited FortiVoice zero-day<gwmw style="display:none;"></gwmw><gwmw style="display:none;"></gwmw>Fortinet fixed actively exploited FortiVoice zero-day<gwmw style="display:none;"></gwmw><gwmw style="display:none;"></gwmw>

Fortinet fixed actively exploited FortiVoice zero-day<gwmw style="display:none;"></gwmw><gwmw style="display:none;"></gwmw>

Fortinet fixed a critical remote code execution zero-day vulnerability actively exploited in attacks targeting FortiVoice enterprise phone systems. Fortinet released…

5 days ago
APT group exploited Output Messenger Zero-Day to target Kurdish military operating in IraqAPT group exploited Output Messenger Zero-Day to target Kurdish military operating in Iraq

APT group exploited Output Messenger Zero-Day to target Kurdish military operating in Iraq

A Türkiye-linked group used an Output Messenger zero-day to spy on Kurdish military targets in Iraq, collecting user data since…

6 days ago