Latest news as of 6/18/2025, 11:34:08 PM
The Register
Zuckercorp and Yandex used localhost loophole to tie browser data to app users, say boffins Security researchers say Meta and Yandex used native Android apps to listen on localhost ports, allowing them to link web browsing data to user identities and bypass typical privacy protections.…
The Register
Microsoft, CrowdStrike, and pals promise clarity on cybercrew naming, deliver alias salad instead Microsoft and CrowdStrike made a lot of noise on Monday about teaming up with other threat-intel outfits to "bring clarity to threat-actor naming."… Opinion
Bleeping Computer
OpenAI's next big foundational model is GPT-5, and the AI startup is hoping that the model will compete a little more with rivals. [...]
Dark Reading
The data-stealing malware initially targeted users in Turkey but has since evolved into a global threat.
Bleeping Computer
Hewlett Packard Enterprise (HPE) has issued a security bulletin to warn about eight vulnerabilities impacting StoreOnce, its disk-based backup and deduplication solution. [...]
Bleeping Computer
ChatGPT's memory feature is now better and capable of referencing past conversations for free accounts. [...]
Dark Reading
But that didn't stop the clothing retailer from issuing preliminary results for the first quarter of 2025.
Dark Reading
Digital certificates authorized by the authorities will no longer have trust by default in the browser starting in August, over what Google said is a loss of integrity in actions by the respective companies.
The Register
TAG team spotted the V8 bug first, so you can bet nation-states weren’t far behind Google revealed Monday that it had quietly deployed a configuration change last week to block active exploitation of a Chrome zero-day.…
Dark Reading
LummaC2 formerly accounted for almost 92% of Russian Market's credential theft log alerts. Now, the Acreed infostealer has replaced its market share.