CSO Online

Seven IBM WebSphere Liberty flaws can be chained into full takeover

A pre‑authentication bug in SAML Web SSO, combined with weak access controls and cryptography, allows attackers to escalate privileges and achieve remote code execution.
Decrypt

New Bitcoin Proposal Would Freeze Coins to Counter Quantum Threat

A new Bitcoin proposal would phase out the network's existing signature schemes and freeze coins that fail to migrate to ...

Google Confirms Gmail End-To-End Android And iPhone Email Encryption

Users of Android and iPhone smartphones can now benefit from end-to-end Gmail encryption, for any recipient, Google has ...

Hackers meet their match: New DNA encryption protects engineered cells from within

Engineered cells are a high-value genetic asset that is key to many fields, including biotechnology, medicine, aging, and ...

The Future of Encrypted Messaging Is Peer-to-Peer

With other messaging apps being targeted by hackers and security services, Keet – the peer-to-peer messaging and video app ...

The silent “Storm”: New infostealer hijacks sessions, decrypts server-side

New "Storm" infostealer skips local decryption, sending browser data to attacker servers. Varonis shows how server-side decryption enables session hijacking, bypassing passwords and MFA.
The Hacker News

Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover

CVE-2026-33032 exposes nginx-ui to unauthenticated takeover via MCP endpoint, impacting 2,600+ instances with active ...

Gmail brings native end-to-end encryption to Android and iOS

If you work in an industry that handles highly sensitive data such as healthcare, finance, or the public sector, you’re ...