Latest News

Cybersecurity Researcher, Jeremiah Fowler, discovered and reported to vpnMentor about a non-password-protected database that contained nearly 8 million records belonging to a UK-based software company that facilitates employee data management, compliance, timesheets, and payroll. The

Security researchers have found that AI’s tendency to hallucinate package names when used to assist with writing code has led to a new software supply chain vulnerability, dubbed “slopsquatting.” The term, introduced by security expert Seth Larson, refers to a variation of typosquatting. While

Under the Trump administration, the Department of Homeland Security (DHS) announced that it will begin to consider immigrants’ social media history as part of their visa evaluation process. This policy will be enacted by the United States Citizen and Immigration Services (USCIS) agency. In an

A newly released court document from WhatsApp’s lawsuit against NSO Group has confirmed that 1,223 users across 51 countries were targeted by Pegasus spyware in a two-month attack campaign in 2019. The breakdown, based on internal WhatsApp data, provides the most detailed picture yet of how widely

A UK tribunal has ruled that the government cannot conduct its legal battle with Apple concerning encryption behind closed doors, affirming the public’s right to open justice in a case with wide-reaching privacy implications. The judgment, handed down by the Investigatory Powers Tribunal on April

Corporate email marketing accounts have been compromised and used in a phishing campaign known as "PoisonSeed," which is targeting cryptocurrency users and spreading fraudulent wallet seed phrases. The attacks were initiated in March 2025 and targeted Coinbase and Ledger users globally. Security

X, formerly Twitter, has seemingly fallen victim to the largest social media data breach ever, involving 400 GB of data on 2.8+ billion users. In January 2025, a user published a 34GB sample of the data on BreachForum, a popular hacking forum and messaging board on the surface level web. The

A serious security vulnerability in Verizon’s Call Filter app allowed users to access the incoming call logs of any other Verizon customer by modifying an API request. The issue, discovered by cybersecurity researcher Evan Connelly, was disclosed to Verizon in February 2025 and patched by

OpenSNP, a long-running open-source genetic data platform, is shutting down after citing growing concerns over data privacy, the misuse of genetic information by law enforcement, and the rise of authoritarian governments. The decision comes as 23andMe, a major source of user-submitted genetic data

The United States Department of Justice has frozen $8.2 million in cryptocurrency tied to a romance baiting scam that defrauded dozens of Americans. In the scheme, scammers established a friendship or romance with the victim online. They then pushed them into making investments on counterfeit