Security researchers discovered three vulnerabilities in Google’s Gemini artificial intelligence (AI) assistant. Although now patched, this “Trifecta”, as the researchers called it, raises important questions about how safe AI tools really are, especially as they become a part of services many of us use on a daily basis. The flaws were found in three different […]
Gemini AI flaws could have exposed your data Leggi tutto »
Researchers at the Georgia Institute of Technology scrutinized the security of the popular Tile tracker and came out disappointed. Bluetooth trackers are a steadily growing market, and Life360 is one of the major players. In 2021, Amazon expanded its Sidewalk network to include Tile. That means Ring cameras and Echo devices can act as relays,
Tile trackers plagued by weak security, researchers warn Leggi tutto »
Apple has released important security updates to address a critical vulnerability in FontParser—the part of MacOS/iOS/iPadOS that processes fonts. Identified as CVE-2025-43400, the flaw was discovered internally by Apple and allows an attacker to craft a malicious font that can cause apps to crash or corrupt process memory, potentially leading to arbitrary code execution. While
Apple fixes critical font processing bug. Update now! Leggi tutto »
Online crime of all kinds is deplorable, but romance scammers and sextortionists who target the most vulnerable victims are among the worst. Now, there’s likely a place for 260 of them in jail, thanks to international law enforcement. Interpol’s Operation Contender 3.0 targeted alleged criminals from several countries across Africa. It arrested 260 people and
260 romance scammers and sextortionists caught in huge Interpol sting Leggi tutto »
Another day, another settlement. Amazon has settled a lawsuit filed by the Federal Trade Commission (FTC) over misleading customers who signed up for Amazon Prime—though it claims it did nothing wrong. The FTC alleged that Amazon used deceptive methods to sign up consumers for Prime subscriptions—and made it exceedingly difficult to cancel. In the settlement,
Amazon pays $2.5B settlement over deceptive Prime subscriptions Leggi tutto »
We’ve covered spyware and stalkerware leaks many times before, but we don’t often see such exposure in software used by law enforcement. According to a report by Straight Arrow News (SAN), the hacker “wikkid” said the intrusion against RemoteCOM was “one of the easiest” they’d ever carried out. RemoteCOM describes itself as “the premier computer,
Sex offenders, terrorists, drug dealers, exposed in spyware breach Leggi tutto »
Last week on Malwarebytes Labs: Hackers threaten parents: Get nursery to pay ransom or we leak your child’s data Google and Flo to pay $56 million after misusing users’ health data Neon App pays users to record their phone calls, sells data for AI training [updated] New SVG-based phishing campaign is a recipe for disaster
A week in security (September 22 – September 28) Leggi tutto »
Just when you think extortionists can’t sink any lower, along comes a lowlife that manages to surprise you. The BBC reported that a group calling itself “Radiant” claims to have stolen sensitive data related to around 8,000 children from nursery chain Kido, which operates in the UK, US, China, and India. The data the group
Hackers threaten parents: Get nursery to pay ransom or we leak your child’s data Leggi tutto »
Popular period-tracking app Flo Health shared users’ intimate health data—such as menstrual cycles and fertility information—with Google and Meta, allegedly for targeted advertising purposes, according to multiple class-action lawsuits filed in the US and Canada. Between 2016 and 2019, the developers of Flo Health shared intimate user data with companies including Facebook and Google, mobile
Google and Flo to pay $56 million after misusing users’ health data Leggi tutto »
TechCrunch reports about a “bizarre app” inviting you to record and share your audio calls so that it can sell the data to AI companies. And if that’s not weird enough on its own, it’s ranking No. 2 in Apple’s US app store at the time of writing. The name of the app is Neon Mobile
Neon App pays users to record their phone calls, sells data for AI training Leggi tutto »
