Meta’s confusing new approach to chat privacy

Recent news had us wondering whether Meta actually knows what it wants. On one platform, Meta is promoting AI chats that it says even it cannot read. On another, it has removed one of the few features that genuinely prevented Meta from accessing private conversations. "Meta removed support for...

ThreatsDay Bulletin: PAN-OS RCE, Mythos cURL Bug, AI Tokenizer Attacks, and 10+ Stories

Everything is still on fire. This week feels dumb in the worst way — bad links, weak checks, fake help desks, shady forum posts, and people turning supply chain attacks into some cursed little game for clout and cash. Half of it feels new. Half of it feels like crap we should have fixed years ago...

WhatsApp Adds Meta AI Chats That Are Built to Be Fully Private

The company says its new Incognito Chat allows you to use its AI chatbot without anyone else—including Meta—being able to access your conversations...

An FBI ‘Asset’ Helped Run a Dark Web Site That Sold Fentanyl-Laced Drugs for Years

A staffer of the Incognito dark web market was secretly controlled by the FBI—and still allegedly approved the sale of fentanyl-tainted pills, including those from a dealer linked to a confirmed death...

Google Chrome < 66.0.3359.139 Vulnerability

The version of Google Chrome installed on the remote macOS host is prior to 66.0.3359.139. It is, therefore, affected by a vulnerability as referenced in the 201804stable-channel-update-for-desktop26 advisory. - A double-eviction in the Incognito mode cache that lead to a user-after-free in cache...

Google Chrome < 66.0.3359.139 Vulnerability

The version of Google Chrome installed on the remote Windows host is prior to 66.0.3359.139. It is, therefore, affected by a vulnerability as referenced in the 201804stable-channel-update-for-desktop26 advisory. - A double-eviction in the Incognito mode cache that lead to a user-after-free in cac...

EUVD-2020-29144

Malware in sbrugna...

EUVD-2014-5823

Malware in sbrugna...

EUVD-2016-2681

Malware in sbrugna...

EUVD-2021-24455

Malware in sbrugna...

EUVD-2020-30534

Malware in sbrugna...

EUVD-2018-17881

Malware in sbrugna...

EUVD-2018-17849

Malware in sbrugna...

EUVD-2025-31731

Malicious code in bioql PyPI...

CVE-2025-10859

Cookie storage for non-HTML temporary documents was being shared incorrectly with normal browsing content, allowing information from private tabs to escape Incognito mode even after the user closed all tabs. This vulnerability was fixed in Firefox for iOS 143.1...

CVE-2025-10859

Cookie storage for non-HTML temporary documents was being shared incorrectly with normal browsing content, allowing information from private tabs to escape Incognito mode even after the user closed all tabs This vulnerability affects Firefox for iOS 143.1...

CVE-2025-10859

Cookie storage for non-HTML temporary documents was being shared incorrectly with normal browsing content, allowing information from private tabs to escape Incognito mode even after the user closed all tabs. This vulnerability was fixed in Firefox for iOS 143.1...

CVE-2025-10859 Data stored in cookies for non-HTML content while browsing Incognito could be viewed after closing private tabs

Cookie storage for non-HTML temporary documents was being shared incorrectly with normal browsing content, allowing information from private tabs to escape Incognito mode even after the user closed all tabs. This vulnerability was fixed in Firefox for iOS 143.1...

CVE-2025-10859

CVE-2025-10859 affects Mozilla Firefox for iOS (pre-143.1). The issue is an information disclosure caused by cookie storage for non-HTML temporary documents being shared with normal browsing content, allowing data from private/incognito tabs to be exposed even after all tabs are closed. Impact de...

CVE-2025-10859

Cookie storage for non-HTML temporary documents was being shared incorrectly with normal browsing content, allowing information from private tabs to escape Incognito mode even after the user closed all tabs. This vulnerability was fixed in Firefox for iOS 143.1...