-
A newly discovered Redis security flaw, tracked as CVE-2025-49844, has been rated with the maximum severity score. The vulnerability enables remote code execution through Redis’s built-in Lua scripting engine. Redis has urged all administrators to patch their systems immediately. How the Flaw Works The bug stems from a use-after-free error in Redis’s Lua engine. Attackers…
-
Russian AI resurrection videos are transforming private grief into public propaganda. These clips use deepfake technology to bring fallen soldiers “back to life,” comforting families while amplifying pro-war narratives. The videos blur the boundaries between mourning, faith, and state messaging — redefining how loss is portrayed in digital warfare. How the Videos Are Made For…
-
Security researchers have discovered that XWorm malware has resurfaced with major upgrades, including a new ransomware module and more than 35 active plugins. The latest version transforms XWorm from a remote access trojan into a full-scale cybercrime toolkit capable of stealing, encrypting, and spying on data. A Malware Toolkit Reborn XWorm first appeared in early…
-
A Gisele Bündchen deepfake scam on Instagram has exposed how advanced AI technology is being weaponized for fraud. Brazilian authorities uncovered a network of scammers using fake celebrity videos to promote non-existent deals and steal millions from unsuspecting users. How the Scam Worked The group used deepfake technology to create convincing video ads featuring Brazilian…
-
Signal has issued a strong warning to Germany over the EU’s proposed chat control legislation. The company argues that mandatory client-side scanning would destroy end-to-end encryption and create unprecedented privacy risks. Signal calls on Germany to stand firm and reject policies that could compromise user security. What Client-Side Scanning Means Client-side scanning is a technology…
-
The highly anticipated OpenAI AI-powered hardware has been delayed. The company revealed that its upcoming device faces design, software, and cost challenges that have slowed development. Despite high expectations, OpenAI now admits that creating a next-generation AI assistant is far more complex than expected. An Ambitious Plan Meets Reality OpenAI has been developing a revolutionary…
-
A Discord vendor hack has exposed user IDs, support chat logs, and limited billing information. The company confirmed that a third-party customer support partner was compromised, allowing attackers to access sensitive data. Discord stated that no passwords or complete account information were affected. What Information Was Exposed The breach impacted users who interacted with Discord’s…
-
A critical Oracle EBS zero-day flaw exploited in Clop data theft attacks has now been patched. The vulnerability allowed hackers to execute code remotely and steal sensitive data from major organizations. Oracle confirmed that the Clop ransomware group exploited the flaw before a fix was available. The Oracle EBS Zero-Day Explained The vulnerability, tracked as…
-
A new Zimbra zero-day exploit has been used in targeted attacks worldwide. Hackers deployed malicious iCalendar files to inject JavaScript, steal credentials, and access victims’ emails. The flaw allowed remote code execution inside active webmail sessions, giving attackers full control over compromised accounts. How the Zimbra Zero-Day Exploit Worked Researchers identified the vulnerability as CVE-2025-27915,…
-
OpenAI has officially launched GPT Codex Alpha, giving select users early access to its next generation of code-focused AI models. The rollout marks a major step toward expanding the company’s developer-oriented tools and previewing features that may appear in future GPT releases. Early Access and Developer Testing The GPT Codex Alpha program allows developers to…