Author: PulauWin

Internet Security

NPM package with 56,000 downloads compromises WhatsApp accounts

December 27, 2025 add comment
An NPM package with over 56,000 downloads stole WhatsApp credentials, hid its activity, and installed a backdoor. Koi Security researchers warned that the NPM package ‘Lotusbail’, a WhatsApp Web... Read more »
Internet Security

Trust Wallet warns users to update Chrome extension after $7M security loss

December 26, 2025 add comment
Trust Wallet urged users to update its Chrome extension after a security incident caused about $7 million in losses. Trust Wallet warned users to update its Google Chrome extension... Read more »
Internet Security

Pro-Russian group Noname057 claims cyberattack on La Poste services

December 26, 2025 add comment
Pro-Russian hacking group Noname057 claimed responsibility for the cyberattack that recently disrupted La Poste’s digital banking and online services. This week, the French national postal service La Poste confirmed... Read more »
Internet Security

Aflac confirms June data breach affecting over 22 million customers

December 26, 2025 add comment
A June data breach exposed the personal information of more than 22 million Aflac customers, the company confirmed. A data breach in June exposed the information of more than... Read more »
Internet Security

Spotify cracks down on unlawful scraping of 86 million songs

December 26, 2025 add comment
Spotify shut down accounts after Anna’s Archive scraped and published data on 86 million songs, confirming action against unlawful scraping. Spotify disabled user accounts after an open-source group published... Read more »
Help Net Security

LLMs can assist with vulnerability scoring, but context still matters

December 26, 2025 add comment
Every new vulnerability disclosure adds another decision point for already stretched security teams. A recent study explores whether LLMs can take on part of that burden by scoring vulnerabilities... Read more »
Help Net Security

From AI to cyber risk, why IT leaders are anxious heading into 2026

December 26, 2025 add comment
Cybersecurity threats are shaping IT planning for 2026, with AI maturity and regulation emerging as another major source of disruption, according to a global survey from Veeam. Veeam surveyed... Read more »
Help Net Security

The next big IT security battle is all about privileged access

December 26, 2025 add comment
Leostream predicts changes in Identity and Access Management (IAM) and Privileged Access Management (PAM) in 2026 driven by new realities of cybersecurity, hybridization, AI, and more. Passwordless moves from... Read more »
Internet Security

Five-year-old Fortinet FortiOS SSL VPN vulnerability actively exploited

December 25, 2025 add comment
Fortinet reported active exploitation of a five-year-old FortiOS SSL VPN flaw, abused in the wild under specific configurations. Fortinet researchers observed “recent abuse” of a five-year-old security vulnerability, tracked... Read more »
Internet Security

High-severity MongoDB flaw CVE-2025-14847 could lead to server takeover

December 25, 2025 add comment
MongoDB addressed a high-severity vulnerability that can be exploited to achieve remote code execution on vulnerable servers. MongoDB addressed a high-severity vulnerability, tracked as CVE-2025-14847 (CVSS score 8.7), an... Read more »
Subscribe to our Newsletter