Security | TechnologyTangle

Sep 03 • 8 months ago

Mis-issued certificates for 1.1.1.1 DNS service pose a threat to the Internet

The three certificates were issued in May but only came to light Wednesday. ...

{"_":"https://arstechnica.com/security/2025/09/mis-issued-certificates-for-1-1-1-1-dns-service-pose-a-threat-to-the-internet/","$":{"isPermaLink":"true"}}2 min read

Sep 03 • 8 months ago

Google says Gmail security is “strong and effective” as it denies major breach

Google refutes claims that all 2.5 billion Gmail users are at risk. ...

{"_":"https://arstechnica.com/gadgets/2025/09/google-says-reports-of-massive-gmail-data-breach-are-entirely-false/","$":{"isPermaLink":"true"}}2 min read

Aug 30 • 8 months ago

Google warns that mass data theft hitting Salesloft AI agent has grown bigger

Assume all Salesloft credentials are compromised after Workspace breach, Google says. ...

{"_":"https://arstechnica.com/security/2025/08/google-warns-that-mass-data-theft-hitting-salesloft-ai-agent-has-grown-bigger/","$":{"isPermaLink":"true"}}1 min read

Aug 29 • 9 months ago

Unpacking Passkeys Pwned: Possibly the most specious research in decades

Researchers take note: When the endpoint is compromised, all bets are off. ...

{"_":"https://arstechnica.com/security/2025/08/new-research-claiming-passkeys-can-be-stolen-is-pure-nonsense/","$":{"isPermaLink":"true"}}1 min read

Aug 28 • 9 months ago

High-severity vulnerability in Passwordstate credential manager. Patch now.

Vulnerability can be exploited to gain access to customers' crown jewels. ...

{"_":"https://arstechnica.com/security/2025/08/high-severity-vulnerability-in-passwordstate-credential-manager-patch-now/","$":{"isPermaLink":"true"}}1 min read

Aug 25 • 9 months ago

Senator castigates federal judiciary for ignoring “basic cybersecurity”

Breaches in 2020 and 2025, reportedly by foreign adversaries, exposed confidential files. ...

{"_":"https://arstechnica.com/security/2025/08/senator-to-supreme-court-justice-federal-court-hacks-threaten-us-security/","$":{"isPermaLink":"true"}}2 min read

Aug 12 • 9 months ago

High-severity WinRAR 0-day exploited for weeks by 2 groups

Exploits allow for persistent backdooring when targets open booby-trapped archive. ...

{"_":"https://arstechnica.com/security/2025/08/high-severity-winrar-0-day-exploited-for-weeks-by-2-groups/","$":{"isPermaLink":"true"}}1 min read

Aug 09 • 9 months ago

Encryption made for police and military radios may be easily cracked

An encryption algorithm can have weaknesses that could allow an attacker to listen in. ...

{"_":"https://arstechnica.com/security/2025/08/encryption-made-for-police-and-military-radios-may-be-easily-cracked/","$":{"isPermaLink":"true"}}1 min read

Aug 08 • 9 months ago

Adult sites are stashing exploit code inside racy .svg files

Running JavaScript from inside an image? What could possibly go wrong? ...

{"_":"https://arstechnica.com/security/2025/08/adult-sites-use-malicious-svg-files-to-rack-up-likes-on-facebook/","$":{"isPermaLink":"true"}}1 min read

Aug 07 • 9 months ago

Google discovered a new scam—and also fell victim to it

Disclosure comes two months after Google warned the world of ongoing spree. ...

{"_":"https://arstechnica.com/information-technology/2025/08/google-sales-data-breached-in-the-same-scam-it-discovered/","$":{"isPermaLink":"true"}}2 min read

Aug 07 • 9 months ago

Here’s how deepfake vishing attacks work, and why they can be hard to detect

Why AI-based voice cloning is the next frontier social-engineering attacks. ...

{"_":"https://arstechnica.com/security/2025/08/heres-how-deepfake-vishing-attacks-work-and-why-they-can-be-hard-to-detect/","$":{"isPermaLink":"true"}}1 min read

Aug 05 • 9 months ago

Voice phishers strike again, this time hitting Cisco

Stopping people from falling for phishing attacks isn't working. So what are organizations to do? ...

{"_":"https://arstechnica.com/security/2025/08/attackers-who-phished-cisco-downloaded-user-data-from-third-party-crm/","$":{"isPermaLink":"true"}}1 min read