Amtrak data breach exposes millions of customer records

A dataset attributed to Amtrak appeared on Have I Been Pwned, reportedly exposing customer emails, names, addresses and ...

GrapheneOS closes an Android VPN loophole before Google does

Google didn't fix an Android 16 flaw that can let malicious apps bypass VPN lockdown protections, but GrapheneOS has already ...
Dark Reading

Attacks Abuse Windows Phone Link to Steal Texts & Bypass 2FA

Attackers are dropping the CloudZ RAT and a fresh plug-in, Pheno, to hijack the Windows-based bridge between PCs and ...
Hosted on MSN

Hackers exploit Claude AI gift loophole to bypass 2FA

Claude AI users are being targeted by scammers exploiting a loophole in the platform’s gift subscription system to bypass two-factor authentication. Attackers use stolen credentials or hijacked ...

Google Update: Android Flaw Could Put Billions of Devices at Risk

Google patched an Android zero-click RCE flaw affecting multiple versions. Here’s what IT teams should know and how to reduce mobile risk.
WeLiveSecurity

Fake call logs, real payments: How CallPhantom tricks Android users

ESET researchers uncovered fraudulent apps on Google Play that claim to provide the call history “for any number” and had ...
Dark Reading

Can Anthropic Keep Its Exploit-Writing AI Out of the Wrong Hands?

Anthropic's Mythos model promises major innovations in vulnerability management and security red-teaming, but questions remain regarding how defenders can keep threat actors from taking full advantage ...
Wall Street Journal

AI Is Finding Bugs That Hackers Can Exploit. Get Ready for Bugmageddon.

The software bug was capable of crashing an operating system used by firewalls, servers and network appliances. It went undetected for over 27 years. Last month, it was caught by Mythos, the latest AI ...
MacRumors

Here's How Researchers Stole $10,000 From MKBHD's Locked iPhone

An iPhone exploit that involves a linked Visa card can allow attackers to steal money from a locked device using NFC, but the process is complex, requiring physical access and specialized hardware.
PC World

Unpatched Microsoft Defender flaw lets hackers gain admin access

PCWorld reports on the ‘RedSun’ vulnerability in Microsoft Defender affecting Windows 10, 11, and Server systems that allows attackers to gain administrative privileges. Security researcher Chaotic ...
Hosted on MSN

Smarter two-factor tips to keep hackers out

Two-factor authentication is a powerful security tool, but it’s not bulletproof. Weak methods, phishing tricks, and poor habits can still put your accounts at risk. By choosing stronger verification ...
Android Police

Best midrange Android phones in 2026

Midrange phones are nice because they give you the best of both worlds. They stick closer to the wallet-friendly limits of budget devices while providing some of the cooler features that trickle down ...