Security

A computer engineer, Timothy D. Meadows, discovered that ARC Raiders was logging private Discord conversations, after which Embark Studios released a hotfix to address the issue.

Cisco has released a March 2026 bundled security update for Secure Firewall ASA, Secure FTD, and Secure FMC, addressing 48 vulnerabilities across 25 advisories, including two CVSS 10.0 flaws in Secure FMC.

Google says Chrome will move to a two-week major release cycle starting in September 2026, beginning with Chrome 153 on September 8, with Extended Stable remaining on an eight-week cadence for enterprise.

If you want to replace your Vodafone router with your own OpenWRT or x86-based router, the first step is enabling bridge mode. Only then does the Vodafone Station act as a pure modem, passing the internet connection directly to your new router without interference. In part 4 of my “Unbloated Network” series, I walk through how to enable bridge mode in the Vodafone account portal—and why the Homespot feature often prevents it.

Security Onion 2.4.210 is back with major improvements for the Onion AI Assistant, as well as local model support for Onion AI. Several system components of this platform that performs threat hunting and enterprise security monitoring were updated. This new version also comes with the usual set of minor tweaks and fixes.

One of the more recent Arch-based distros is Berserk Arch, which targets power users and "is not designed to be easy" but allows Linux connoisseurs to have a base to use for building their edge. Using Openbox as the default desktop environment, Berserk Arch 2026.03.01 updates several packages, including Firefox, Mesa, Vim, and more.

OpenAI says it amended its Pentagon contract to explicitly prohibit domestic surveillance of U.S. persons, including through commercially acquired personal data, and to confirm that any NSA use would require a separate agreement.

NATO, the North Atlantic Treaty Organization, has authorized Apple mobile devices for use with classified information within the organization, according to Apple. This makes the iPhone and the iPad the first (and currently only) consumer devices to meet NATO's software security standards.

Many ISP-provided routers are closed black boxes with limited functionality. In part 3 of my “Unbloated Network” project, I show how to install OpenWRT on an x86 PC to replace the Vodafone router with your own hardware. Step by step, we’ll set up the latest stable release, including image selection, Linux-based installation, and partition expansion.

Version 7.5 of the Debian-based Irish-flavored Linux distro with a strong focus on online anonymity and security, namely Tails, is now available with several updated apps and the usual set of bugs and fixes. It is also the first version that installs Thunderbird as additional software on each start.

A widespread safety mandate has inadvertently created a massive privacy vulnerability, allowing anyone with inexpensive radio equipment to track the movement patterns of vehicles.

Discord says its UK Persona age-verification test has ended, and its support docs explain how “age assurance” will work as teen-by-default settings roll out.

The FBI issued an IC3 FLASH advisory warning of increased malware-enabled ATM jackpotting in the U.S., naming Ploutus malware, sharing IOCs, and outlining mitigation steps.

Small mistake, big impact. A misplaced backslash caused a PowerShell script running on GPT to completely erase the hard drive contents for a Reddit user. A simple "typo" that could have happened to anyone reveals that it's not just vibecoding that is prone to errors.

Wavelet Lab’s xSDR is a tiny M.2 2230 A+E-key software-defined radio (SDR) module built to plug straight into laptops, tablets, embedded PCs, and other compact systems. Just drop this tiny card into a spare M.2 slot, and turn it into a portable cellular network analyzer or penetration testing tool.

Google has shipped newer Chrome 145 Stable builds after the CVE-2026-2441 zero-day fix, adding three more security patches, updating Extended Stable, and prompting a CISA KEV listing for the exploited flaw.

Windows 11 KB5077181 (OS Builds 26100.7840/26200.7840) shipped on Feb. 10, 2026. On a Lenovo LOQ test system, KB5077181 installed Feb. 11 (Build 26200.7840) and was followed by Wi-Fi instability, Bluetooth disconnects, stutter, and slow shutdowns.

Mass surveillance through a tech titan, enabled by cameras purchased by the monitored consumers themselves – this appears to be Amazon’s latest plans. Leaked emails show how Amazon aims to utilise a new Ring feature to track much more than just parcels.

Windows 10 ESU update KB5075912 (Build 19045.6937) is rolling out for February 2026, addressing a shutdown/hibernation restart issue on some Secure Launch-capable PCs and carrying Secure Boot rollout targeting data.

Google has released an emergency security update for Chrome Desktop to address CVE-2026-2441, a high-severity use-after-free vulnerability in the browser's CSS component.

70mai has unveiled the new 4K A810S two-channel dash cam in the global market with its in-house Night Owl Vision technology. The dash cam features 4K recording, a 3-inch IPS display, AI motion detection, a built-in GPS and ADAS, and WiFi 6 connectivity for high-speed transfers.

After deciding against using the ISP router in part one, it’s time to focus on hardware: what actually works best for an OpenWRT router? A mini PC, Raspberry Pi, or a traditional router? And what about the switch and access point? In this part, I’ll walk through my hardware choices, including considerations around power consumption, architecture, and cost.

Microsoft’s Windows 11 KB5077181 update (Builds 26100.7840 / 26200.7840) is reportedly triggering infinite boot loops and SENS sign-in failures. Despite officially fixing previous boot bugs, users are encountering new DHCP networking regressions and 0x800f0983 installation errors.

Provider routers are convenient—but that’s exactly their biggest problem. Poor Wi-Fi coverage, limited control, questionable privacy, and technical limitations are everyday issues for many users. In this new series, I’ll gradually replace my provider’s all-in-one device (the Vodafone Station) with a modular setup using an OpenWRT router, access point, and switch. In part 1, I’ll explain why I’m taking this approach and how the project is structured.

Microsoft warns that 2011 Secure Boot certificates expire in June 2026. Is your PC ready? We look at the OEM roadmap and how to verify your firmware status.

Meant to protect younger players, Microsoft’s age verification measures are affecting other UK gamers. Some players can’t finish a multiplayer match without having to relog into their Xbox accounts. The company is working on a fix, but hasn’t provided an ETA for a solution.

GitLab has released urgent patch updates for its Community and Enterprise editions, addressing multiple high-severity vulnerabilities including an 8.0-rated Web IDE flaw that could allow token theft and unauthorized access to private repositories.

Microsoft’s February 2026 Windows 11 updates (KB5077181 and KB5075941) add security patches, bug fixes, and new Secure Boot rollout signals ahead of certificate expirations starting in June 2026.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning after a cyberattack targeted renewable energy facilities in Poland. The incident shows security weaknesses in internet-connected systems used in energy infrastructure and has prompted global agencies to advise operators to improve their cybersecurity protections.

Microsoft has issued new guidance warning that 2011 Secure Boot certificates begin expiring in June 2026. Windows updates are rolling out 2023 replacement certificates, with some PCs requiring OEM firmware updates.

Discord will soon force all users to complete ID verification or be shut out from age-restricted servers and features. In March, chatters must upload a video showing their faces or other qualified IDs. The company outlined privacy protections following an attempted October 2025 data breach.

Microsoft is pivoting engineering teams to a new "swarming" model to fix Windows 11 performance and reliability issues after a wave of buggy 2026 updates.

Microsoft has expanded a confirmed Windows restart-on-shutdown bug to include some Windows 10 systems with Virtual Secure Mode enabled. Here’s what’s affected and what’s fixed so far.

Despite several name changes, OpenClaw remains one of the most hyped AI tools. After all, it turns a PC into a fully autonomous AI agent. However, the tool can easily burn through hundreds of dollars in API tokens per day. Even worse, serious security flaws have been discovered.

Moltbook, a Reddit-style forum for AI agents, is going viral as researchers report exposed emails, DMs, and agent tokens... raising authenticity concerns.

Steam workshops can keep a game feeling fresh without official updates. Sadly for People Playground, one mod took advantage of this freedom by destroying competing downloads. The game’s developer has taken the workshop offline while it evaluates the damage caused by the virus.

Microsoft says Windows 11’s January 2026 KB5074109 update is triggering boot failures mainly on a limited set of physical (mostly commercial) PCs that were left in an “improper state.”

Madhu Gottumukkala, Acting Director of the Cybersecurity and Infrastructure Security Agency, triggered internal security alerts by uploading sensitive documents to ChatGPT. The incident raises questions about data security at CISA.

Windows 11 KB5074109 removes four legacy modem drivers, disabling dial-up and telephony modems that rely on them as a security hardening move.

While the ThinkPad series of laptops has always lent itself to customization, the Intel processors powering them have limited complete control over the device due in part to Intel’s Management Engine. However, thanks to the work of dedicated security researchers, there is a method to build a fully open-source laptop, from the BIOS up.

Microsoft has released an out-of-band security update to fix an actively exploited Microsoft Office vulnerability tracked as CVE-2026-21509. The flaw allows attackers to bypass Office security protections via malicious documents and has been added to CISA’s Known Exploited Vulnerabilities catalog.

Reolink has announced the TrackFlex Floodlight WiFi surveillance camera with local AI video search. The latest member in the Floodlight series features a 2-in-1 dual-lens design, which offers 360° coverage with 6x hybrid zoom. Other features include dual-band Wi-Fi 6, auto-tracking, 24/7 continuous recording, and app-based controls.

Two years of work lost with a single click—that is how Professor Marcel Bucher describes his experience in an article in Nature. He concludes that ChatGPT is a threat to consistent productivity. However, the chatbot offers a backup function that the researcher apparently failed to utilize.

NASA has tested a cybersecurity system built using blockchain technology. The technology was tested using an Alta-X drone. This blockchain system is aimed at providing improved protection for flight data.

While Apple and Google stress that they cannot unlock customer devices, the situation is different with Windows encryption: Microsoft routinely hands over BitLocker keys from the cloud to law enforcement agencies.

A range of TP-Link security cameras are affected by a security vulnerability, according to a recent statement from the brand. A list of over 60 Vigi models has appeared on a support page, which details the issue. Impacted users are advised to download the relevant software update as soon as possible.

Stop Windows 11 battery drain with the new KB5074109 update. Patch 114 security vulnerabilities and fix NPU power issues on your laptop.

Researchers from Vienna have discovered a massive security vulnerability in WhatsApp, enabling them to identify 3.5 billion users. The lack of query limits allowed for the large-scale collection of usernames, profile pictures and status messages.

In an ironic turn of events, a notorious hacking forum was hacked, resulting in a breach compromising roughly 324,000 accounts. Some of these accounts had public IP addresses tied to them, meaning that law enforcement could use this information to catch malicious actors.