689 Brother printer models, along with some from a handful of other manufacturers, are vulnerable to a critical security vulnerability. The printer's default password is determined algorithmically at manufacturing and is reverse-engineerable, and is unfixable via firmware updates.

© Brother

Stolen Device Protection boosts safety for your private info if someone steals your iPhone and its passcode. Here’s how to use it.

(via Cult of Mac - Your source for the latest Apple news, rumors, analysis, reviews, how-tos and deals.)

Cloudflare says that it blocked the 7.3 Tbps of junk traffic in mid-May — the largest DDoS attack to happen in recorded history.

© Shutterstock

A collection of entirely new data leak datasets has been uncovered by security researchers, exposing 16 billion new records to the public. The data was sourced from around the world, with breaches on this scale easily contributing to massive future attacks.

© Shutterstock

A new air-gap attack dubbed 'SmartAttack' theorizes using a smartwatch to capture covert signals and steal information.

© Getty / iStock

Apple updated parental controls in iOS 26 and other operating systems with new child safety features, like permission to text new numbers.

Bitsight warns of real-time privacy breaches as cameras in homes, offices, and factories stream openly on the web

© Google / Nest

Cellebrite is acquiring hardware virtualization firm Corellium for $200 million, which could have major implications for Apple’s push to make devices more secure.

A stealthy botnet attack that has to date infected over 9,000 exposed routers has been addressed by Asus. The company advises users to monitor their SSH access and update firmware to protect against and purge routers from the attack.

© Shutterstock

Security researchers have shared a poof-of-concept of CVE-2025-31200, a security vulnerability patched in iOS 18.4.1.

New botnet campaign exploits legitimate system features to establish deep persistence while remaining virtually undetectable

© Tom's Hardware

Security researcher @karzan_0x455 has shared a proof of concept for CVE-2023-41992.

A vulnerability has been exposed in Asus' DriverHub utility that makes it vulnerable to remote code execution attacks. Thankfully, the vulnerability has been patched and has not been used in any known hacks.

© Shutterstock

Microsoft says that passkeys reduce password use by 20% and wants to remove password use altogether.

© Microsoft

If any of your accounts is secured with one of these horrible passwords, take World Password Day as an excuse to change it.

(via Cult of Mac - Apple news, rumors, reviews and how-tos)

Apple recently notified iPhone owners who became victims of government-sponsored spyware attacks around the world to help increase their security and privacy.

This hardware can protect your identity online and shield you from threats. Save on Deeper Connect Mini, a decentralized VPN and firewall.

(via Cult of Mac - Apple news, rumors, reviews and how-tos)

Wireless CarPlay in iOS 18.4 was causing an unknown percentage of drivers connection issues, but Apple's iOS 18.4.1 update fixes the problem.

Learn how to disable iPhone Stolen Device Protection if you don’t like waiting an hour to make changes to your Apple Account and your phone.

A number of Silicon Valley crosswalks were hacked to sound like U.S. big-tech broligarchs, according to reports published by local media this weekend.

© Palo Alto Online

Learn how to remove all passwords and security checkpoints from your iPad or iPhone, so the device can be used as a simple tablet or phone.

An all-in-one antivirus, VPN, text scam blocker and more, McAfee Total Protection wins awards for its complete digital protection.

(via Cult of Mac - Apple news, rumors, reviews and how-tos)

Device backups on iCloud can waste precious capacity. Learn how to clear out iCloud storage in a few simple steps.

(via Cult of Mac - Apple news, rumors, reviews and how-tos)

Security firm technical analysis confirms the use of sandbox escape by bank apps to see if users are jailbroken or using TrollStore.

Google Project Zero security researcher Ian Beer has published an analysis on NSO's 0-click BLASTPASS iMessage exploit.

Lars Fröder, the developer behind TrollStore, says that certain banking apps in the App Store use a 0-day sandbox escape to detect TrollStore.

Learn how to enable Lockdown Mode to harden the security of your iPhone, iPad, or Mac and protect from highly sophisticated cyber attacks.

Tinyhack publishes a full how-to guide on brute-forcing past the Akira ransomware's encryption attack and freeing captive files.

© Shutterstock

Apple has patched a WebKit vulnerability with the iOS 18.3.2, iPadOS 18.3.2, macOS Sequoia 15.3.2, tvOS 18.3.1 and visionOS 2.3.2 updates.

With SettingsWiFiPassword, you can easily copy and share a current Wi-Fi network password from a jailbroken device on iOS 15 or earlier.

Alfie CG has just published a write-up about a deterministic kernel exploit called Trigon that can't fail when used.

Lars Fröder (opa334dev) spoke at Nullcon Goa 2025 about the state of jailbreaking and a projected ETA for an iOS 17 and 18 jailbreak.

An exploit in Apple's Find My network allows hackers to turn any device with Bluetooth, like a phone or a computer, into a AirTag tracker.

A wide list of apartment complexes using IoT-connected intercoms still use the default logins from their manuals, making them easily accessible by bad actors.

© Shutterstock

The FBI has traced the ByBit crypto exchange hack to a group of North Korean hackers.

© Shutterstock

Learn about Advanced Data Protection and turn it on to end-to-end encrypt additional things like iCloud notes, photos, voice memos, and more.

Cybercriminals are targeting the CS2 community with streamjacking scams. Innocents have been lured into sharing Steam credentials, and paying into crypto-doubling scams.

© <a href="https://www.bitdefender.com/en-us/blog/hotforsecurity/streamjacking-scams-on-youtube-leverage-cs2-pro-player-championships-to-defraud-gamers">Bitdefender Labs blog</a>

Web-connected smart bed provider Eight Sleep revealed to be including an SSH backdoor in its beds, as well as exposing a live AWS key.

© Eight Sleep

Norton 360 is a comprehensive tool that offers multiple layers of protection for 10 devices, including antivirus, antimalware, VPN and more.

(via Cult of Mac - Apple news, rumors, reviews and how-tos)