Author: PulauWin

Help Net Security

Unbounded AI use can break your systems

January 22, 2026 add comment
In this Help Net Security video, James Wickett, CEO of DryRun Security, explains cyber risks many teams underestimate as they add AI to products. He focuses on how fast... Read more »
Help Net Security

The internet’s oldest trust mechanism is still one of its weakest links

January 22, 2026 add comment
Attackers continue to rely on domain names as an entry point into enterprise systems. A CSC domain security study finds that large organizations leave this part of their attack... Read more »
Help Net Security

A new framework helps banks sort urgent post-quantum crypto work from the rest

January 22, 2026 add comment
Financial institutions now have a concrete method for deciding where post-quantum cryptography belongs on their security roadmaps. New research coordinated by Europol sets out a scoring framework that helps... Read more »
Help Net Security

macOS Tahoe improves privacy and communication safety

January 22, 2026 add comment
macOS Tahoe privacy and security features focus on screening unwanted contact, limiting tracking, and keeping more decisions on the device. Most updates run quietly in the background and require... Read more »
Internet Security

Cisco fixed actively exploited Unified Communications zero day

January 22, 2026 add comment
Cisco patched a critical zero-day RCE flaw (CVE-2026-20045) in Unified Communications and Webex Calling that is actively exploited in the wild. Cisco patched a critical zero-day remote code execution... Read more »
Help Net Security

Microsoft updates the security baseline for Microsoft 365 Apps for enterprise

January 21, 2026 add comment
Microsoft has published version 2512 of its security baseline for Microsoft 365 Apps for enterprise. The baseline documents recommended policy settings for Office applications used in enterprise environments and... Read more »
Help Net Security

Fully patched FortiGate firewalls are getting compromised via CVE-2025-59718?

January 21, 2026 add comment
CVE-2025-59718, a critical authentication bypass flaw that attackers exploited in December 2025 to compromise FortiGate appliances, appears to persist in newer, purportedly fixed releases of the underlying FortiOS. According... Read more »
Internet Security

Zoom fixed critical Node Multimedia Routers flaw

January 21, 2026 add comment
Zoom addressed a critical security vulnerability, tracked as CVE-2026-22844, that could result in remote code execution. Cloud-based video conferencing and online collaboration platform Zoom released security updates to address... Read more »
Help Net Security

RCE flaw in Cisco enterprise communications products probed by attackers (CVE-2026-20045)

January 21, 2026 add comment
Cisco has fixed a critical remote code execution vulnerability (CVE-2026-20045) in some of its unified communications solutions that’s being targeted by attackers in the wild, the company announced on... Read more »

Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers

January 21, 2026 add comment
Cloudflare has addressed a security vulnerability impacting its Automatic Certificate Management Environment (ACME) validation logic that made it possible to bypass security controls and access origin servers.  “The vulnerability... Read more »
Subscribe to our Newsletter