December 2025

MuddyWater Deploys UDPGangster Backdoor in Targeted Turkey-Israel-Azerbaijan Campaign

Dec 08, 2025Ravie LakshmananNetwork Security / Vulnerability The Iranian hacking group known as MuddyWater has been observed leveraging a new backdoor dubbed UDPGangster that uses the User Datagram Protocol (UDP) for command-and-control (C2) purposes. The…

This simple fix finally stopped macOS Tahoe from freezing and crashing my MacBook

by Michael Simon
December 6, 2025
How To – Apple Mac
4 min read

Back in September, when macOS 26 Tahoe arrived for download on my MacBook, I installed it along with millions of other people. I didn’t give it a second thought—I have an M3 Max MacBook Pro…

Researchers Uncover 30+ Flaws in AI Coding Tools Enabling Data Theft and RCE Attacks

Dec 06, 2025Ravie LakshmananAI Security / Vulnerability Over 30 security vulnerabilities have been disclosed in various artificial intelligence (AI)-powered Integrated Development Environments (IDEs) that combine prompt injection primitives with legitimate features to achieve data exfiltration…

Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation

Dec 06, 2025Ravie LakshmananVulnerability / Patch Management The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday formally added a critical security flaw impacting React Server Components (RSC) to its Known Exploited Vulnerabilities (KEV) catalog…

Apple design reset? How a key VP’s exit can fix the iPhone

by Alex Blake
December 5, 2025
How To – Apple Mac
8 min read

For a few years now, something has felt off with Apple’s software design. There’s been too much emphasis on showy effects and eye-catching animations, and not enough on creating intuitive experiences that actually work for…

Apple may be the biggest loser in the Netflix-Warner Bros deal

by Roman Loyola
December 5, 2025
How To – Apple Mac
3 min read

On Friday, Netflix announced that it has agreed to acquire Warner Bros in a deal worth a staggering $82.7 billion. The acquisition means that Netflix will have possession of the entire Warner Bros library and…

Zero-Click Agentic Browser Attack Can Delete Entire Google Drive Using Crafted Emails

Dec 05, 2025Ravie LakshmananEmail Security / Threat Research A new agentic browser attack targeting Perplexity’s Comet browser that’s capable of turning a seemingly innocuous email into a destructive action that wipes a user’s entire Google…

Critical XXE Bug CVE-2025-66516 (CVSS 10.0) Hits Apache Tika, Requires Urgent Patch

Dec 05, 2025Ravie LakshmananApplication Security / Vulnerability A critical security flaw has been disclosed in Apache Tika that could result in an XML external entity (XXE) injection attack. The vulnerability, tracked as CVE-2025-66516, is rated…

The magical Logitech MX Master 3S Mac mouse just hit its all-time low price

by Gabriela Vatu
December 5, 2025
How To – Apple Mac
2 min read

If you absolutely hate using your Mac’s trackpad and feel like it’s testing your patience more than actually helping you be productive, you need an actual mouse. We’re not talking about Apple’s Magic Mouse—you need…

Petco confirms security lapse exposed customers’ personal data

by Lorenzo Franceschi-Bicchierai
December 5, 2025
I.T. Today
2 min read

Pet products and services giant Petco disclosed a data breach on Wednesday in a filing with California’s attorney general, which the company says involves the personal information of its customers. The state published a sample…

« Previous
1
…
23
24
25
26
27
…
38
Next »