SecurityWeek

TP-Link Patches Vulnerability Exposing VIGI Cameras to Remote Hacking

TP-Link has patched a serious vulnerability that can be exploited to take control of more than 32 of its VIGI camera models.

Instagram Password Reset Attacks — What You Need To Know And Do Now

Do not lose your Instagram account to hackers as malicious password reset notifcations surge — here’s what you need to know ...
CSO Online

Modular DS bug hands hackers instant WordPress admin access

Security researchers confirmed in-the-wild exploitations of the mx-severity flaw, allowing unauthenticated actors gain full ...

Enterprises still aren’t getting IAM right

A large number of employees still work around identity controls, and agentic AI is only exacerbating the problem, according ...

Here's how I keep my NAS safe from prying eyes

If you run Plex, Nextcloud, or remote backups, your NAS is exposed. Here’s the safer way to do it without exposing your data.

ConsentFix debrief: Insights from the new OAuth phishing attack

ConsentFix is an OAuth phishing technique abusing browser-based authorization flows to hijack Microsoft accounts. Push ...
Microsoft

Inside RedVDS: How a single virtual desktop provider fueled worldwide cybercriminal operations

Microsoft’s investigation into RedVDS services and infrastructure uncovered a global network of disparate cybercriminals ...
CSO Online

Critical RCE flaw allows full takeover of n8n AI workflow platform

A compromised n8n instance doesn’t just mean losing one system — it means handing attackers the keys to everything,’ security ...
Cloud Security Alliance

Reimagining the Browser as a Critical Policy Enforcement Point: A Zero Trust Security Architecture for Modern Enterprises

Explores turning the browser into a policy enforcement point within a Zero Trust framework, covering governance, MFA, device ...
ITWeb on MSN

AI-driven identity fraud supercharges emergency scam threat

AI-driven ID fraud is a current risk management issue that belongs in mainstream compliance discussions alongside POPIA and ...

New Windows Flaw Lets Attackers Bypass Mark of the Web

Microsoft patched a Windows Remote Assistance flaw that lets attackers bypass Mark of the Web, weakening protections against ...

Hackers exploit Modular DS WordPress plugin flaw for admin access

Hackers are actively exploiting a maximum severity flaw in the Modular DS WordPress plugin that allows them to bypass ...