Google plans to make it easier for users to access AI mode by allowing them to set it as the default, replacing the traditional blue links. AI mode is an advanced version of Google Search that uses large language models to summarise information from the web, so...

ChatGPT is getting two big changes. First, the Projects feature is now free. Second, you can now create new conversations from existing conversations. Projects have been around for months now, but they're now rolling out to everyone, including those with a free...

iCloud Calendar invites are being abused to send callback phishing emails disguised as purchase notifications directly from Apple's email servers, making them more likely to bypass spam filters to land in targets' inboxes. Earlier this month, a reader shared an...

VirusTotal has discovered a phishing campaign hidden in SVG files that create convincing portals impersonating Colombia's judicial system that deliver malware. VirusTotal detected this campaign after it added support for SVGs to its AI Code Insight platform....

Investigations into the Nx "s1ngularity" NPM supply chain attack have unveiled a massive fallout, with thousands of account tokens and repository secrets leaked. According to a post-incident evaluation by Wiz researchers, the Nx compromise has resulted in the...

interview It all started as an idea for a research paper.  Within a week, however, it nearly set the security industry on fire over what was believed to be the first-ever AI-powered ransomware. A group of New York University engineers who had been studying the...

A team of data thieves has doubled down by developing its CastleRAT malware in both Python and C variants. Both versions spread by tricking users into pasting malicious commands through a technique called ClickFix, which uses fake fixes and login prompts. The...

Microsoft says it has been enforcing multifactor authentication (MFA) for Azure Portal sign-ins across all tenants since March 2025. The company's Azure MFA enforcement efforts were announced in May 2024 when Redmond began implementing mandatory MFA for all...

A critical code-injection bug in SAP S/4HANA that allows low-privileged attackers to take over your SAP system is being actively exploited, according to security researchers. SAP issued a patch for the 9.9-rated flaw in August. It is tracked as CVE-2025-42957,...

Microsoft announced that starting this Thursday, all college students in the United States can get a free year of Microsoft 365 Personal. For everyone else, a yearly Microsoft 365 Personal subscription costs $99.99. It provides ransomware protection for...