EUVD-2026-4144

A vulnerability was detected in Totolink NR1800X 9.1.0u.6279B20210910. Impacted is the function setWizardCfg of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. Performing a manipulation of the argument ssid results in buffer overflow. The attack may be initiated remotely. The...

Fears Mount That US Federal Cybersecurity Is Stagnating—or Worse

Government staffing cuts and instability, including this year’s prolonged shutdown, could be hindering US digital defense and creating vulnerabilities...

The WIRED Guide to Digital Opsec for Teens

Practicing good “operations security” is essential to staying safe online. Here's a complete guide for teenagers and anyone else who wants to button up their digital lives...

Online Fraud and Abuse 2025: AI Is in the Driver’s Seat

...

EUVD-2011-3301

Malware in sbrugna...

EUVD-2025-6476

Malicious code in bioql PyPI...

EUVD-2024-43490

Malicious code in bioql PyPI...

EUVD-2025-15940

Malicious code in bioql PyPI...

DSA-6015-1 openssl - security update

Bulletin has no description...

Digital Threat Modeling Under Authoritarianism

Today's world requires us to make complex and nuanced decisions about our digital security. Evaluating when to use a secure messaging app like Signal or WhatsApp, which passwords to store on your smartphone, or what to share on social media requires us to assess risks and make judgments...

personal-security-checklist-1

This repository is an open-source project for a curated checklist of 300+ tips for protecting digital security and privacy in 2022. It is a community-driven project that allows contributors to suggest and submit points to be added, amended, or removed from the list. The project has a code of...

The Promise and Peril of Digital Security in the Age of Dictatorship

LGBTIQ+ organizations in El Salvador are using technology to protect themselves and create a record of the country’s ongoing authoritarian escalations against their community. It’s not without risks...

CERTFR-2025-ACT-026

creationtimestamp| type| source ---|---|--- 2025-06-23 12:20:29+00:00| seen| https://bsky.app/profile/cert-fr.bsky.social/post/3lsbkyfpb4524 2025-06-23 12:20:33+00:00| seen| https://social.numerique.gouv.fr/users/certfr/statuses/114732644952742769...

CVE-2011-3337

eEye Audit ID 2499 in eEye Digital Security Audits 2406 through 2423 for eEye Retina Network Security Scanner on HP-UX, IRIX, and Solaris allows local users to gain privileges via a Trojan horse gauntlet program in an arbitrary directory under /usr/local/...

Exploit for Use After Free in Apple Ipados

iOS "Airborne" Vulnerabilities - Log Artifact Extractor This...

CVE-2023-37535

Insufficient URI protocol whitelist in HCL Domino Volt and Domino Leap allow script injection through query parameters...

Combat Rising Account Abuse: Akamai and Ping Identity Partner Up

...

Fake Reddit and WeTransfer Sites are Pushing Malware

There are thousands of fake Reddit and WeTransfer webpages that are pushing malware. They exploit people who are using search engines to search sites like Reddit. Unsuspecting victims clicking on the link are taken to a fake WeTransfer site that mimicks the interface of the popular file-sharing...

CVE-2024-56647

creationtimestamp| type| source ---|---|--- 2024-12-27 15:19:54+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lecbz37tr322 2025-08-15 19:33:05+00:00| seen| https://bsky.app/profile/gcpweekly.bsky.social/post/3lwhluqui2w2q 2025-12-03 14:14:49+00:00| seen|...

Hacking Digital License Plates

Not everything needs to be digital and "smart." License plates, for example: Josep Rodriguez, a researcher at security firm IOActive, has revealed a technique to “jailbreak” digital license plates sold by Reviver, the leading vendor of those plates in the US with 65,000 plates already sold. By...