NIS2 compliance: How to get passwords and MFA right

NIS2 puts identity and access controls under the spotlight, with weak passwords and poor authentication now a compliance risk ...

4.3B LinkedIn-Style Records Found in One of the Largest Data Exposures Ever

An unsecured database exposed 4.3 billion LinkedIn-derived records, enabling large-scale phishing and identity-based attacks.
The Hacker News

FreePBX Patches Critical SQLi, File-Upload, and AUTHTYPE Bypass Flaws Enabling RCE

FreePBX patched 2025 flaws allowing SQL injection, file upload attacks, and an auth bypass only when webserver AUTHTYPE was ...

Microsoft will finally kill obsolete cipher that has wreaked decades of havoc

Microsoft is killing off an obsolete and vulnerable encryption cipher that Windows has supported by default for 26 years ...

Microsoft 365 accounts targeted in wave of OAuth phishing attacks

Multiple threat actors are compromising Microsoft 365 accounts in phishing attacks that leverage the OAuth device code ...
PC World

6 reasons people don’t use a password manager—and why they’re wrong

A lot of people still have weak security practices, especially for their passwords. They’re reusing them, relying on easily cracked ones, or are unaware of current recommended guidelines. Their ...

Need to encrypt Mac files? I found a free app that makes it super easy

Open the Launchpad on your Dock and search for Encrypto. Once the icon appears, click it to launch the app. Click the downward-pointing arrow (which will turn into a +) and locate the file you want ...