India’s Department of Telecommunications (DoT) has mandated that all smartphone makers preload a non-removable government cybersecurity app, Sanchar Saathi, on new devices sold in the country.
The private directive, dated November 28, 2025, sets a strict 90-day compliance deadline for giants like Apple, Samsung,...
WatchGuard disclosed multiple high-severity vulnerabilities in Firebox appliances on December 4, 2025, including flaws that let privileged attackers execute arbitrary code and bypass boot-time integrity checks.
These issues affect Fireware OS versions up to 12.11.4 and 2025.1.2, potentially compromising network security gateways used by...
The Federal Communications Commission announced a significant enforcement action against Comcast, imposing a $1.5 million fine following a data breach at a third-party vendor that exposed personal information belonging to approximately 237,000 customers.
The incident underscores persistent supply chain security vulnerabilities and highlights regulatory...
Microsoft announced a significant security upgrade for Microsoft Entra ID authentication on November 25, 2025, via its Entra Blog.
The change blocks external script injection during sign-ins to help combat threats such as cross-site scripting (XSS).
This proactive step aligns with Microsoft's Secure Future...
KawaiiGPT is an open‑source “kawaii” command‑line chatbot that aims to offer WormGPT‑style, unrestricted AI assistance for free by chaining together multiple large language models, including DeepSeek, Google’s Gemini, and Moonshot’s Kimi‑K2.
It lowers the barrier for experimentation with jailbroken models, but also raises serious...
Cobalt Strike 4.12 launched on November 24, 2025, bringing major updates for red team operators, including a refreshed graphical user interface, beta REST API, and User Defined Command and Control (UDC2) for custom C2 channels.
The release adds evasion-focused process injection techniques, fresh UAC...