Phishing-resistant passkeys are rapidly replacing one-time codes, with over 2 billion now in use. Early adopters report huge security and speed gains, but the convenience of syncing them comes with a trade-off.
Biometrics are replacing passwords, using your unique physical traits to unlock devices and access services. The tech is powerful, but it raises huge questions about privacy and security that can’t be ignored.
Researchers have uncovered a critical, easy-to-exploit vulnerability in the React framework dubbed “React2Shell.” It affects default configurations and could impact a massive portion of the web, requiring immediate patching by organizations worldwide.
Security firm GreyNoise has released a free, instant-check tool that tells you if your IP address is showing malicious scanning activity associated with botnets. You don’t need to log in or provide any email to use it. The tool gives a simple “Clean,” “Malicious/Suspicious,” or “General corporate se
The FTC has taken action against edtech provider Illuminate Education for a 2021 data breach that impacted 10.1 million students. The regulator says the company ignored security warnings, stored data in plain text, and delayed notifying schools.
Google’s latest Android security bulletin addresses a massive 107 vulnerabilities. Three of the patched flaws are already being exploited in limited, targeted attacks against devices running Android 13 through 16.
The Supreme Court heard arguments on whether ISPs like Cox must terminate users accused of piracy. Justices seemed torn, questioning how to handle universities and the legal standard for “aiding and abetting” infringement.
A dangerous new Android malware family named Albiriox is being marketed as Malware-as-a-Service on Russian cybercrime forums. For a monthly subscription, it offers full remote takeover of devices to target financial and cryptocurrency applications worldwide.
The cybersecurity industry consolidated rapidly in November 2025 as major players like Palo Alto Networks and Zscaler acquired startups focused on AI-driven security and observability. These deals highlight a strategic push to automate defense and manage risk in complex, cloud-native environments.
The FBI has issued an urgent warning about sophisticated phone scams targeting bank accounts. Scammers have already stolen $262 million this year using fake calls that appear to come from legitimate institutions. New data shows 25% of scams now happen over the phone.
