lemmydev2

Sensitive data is moving through Android healthcare apps without adequate protection. Researchers found that many transmit information without encryption, store files without safeguards, or share it through third-party components. Study design showing data collection, static security analysis (MobSF, RiskInDroid, OWASP), and sentiment-based review analysis How the study worked The methodology followed three phases: data collection, security and privacy testing, and user experience analysis. To gather the sample, the team used twenty targeted search terms on … More → The post The diagnosis is in: Mobile health apps are bad for your privacy appeared first on Help Net Security.

Windows 10 is so popular that Windows 11 only overtook it in terms of usage just a few months ago. That's why I'm surprised that Microsoft is still, kind of, going ahead with its end of support cutoff today. At one point last year, I wasn't sure if Microsoft was actually going to end support […]

5CA is a customer service support company that works with Discord. Recently, the chat platform said the vendor had been breached as part of a “security incident” where 70,000 government ID photos may have leaked. Now, 5CA says in a post on its website that it was “not hacked.” According to Discord, “this incident impacted […]

Comments

In early October 2025, cybersecurity researcher Jeremiah Fowler discovered a publicly accessible database belonging to Invoicely, a Vienna-based invoicing and billing platform used by over 250,000 businesses worldwide. The repository contained 178,519 files in XLSX, CSV, PDF, and image formats, each harboring sensitive personal and financial information. Among the exposed documents were invoices, scanned checks, […] The post 178,000+ Invoices With Customers Personal Records Exposes from Invoice Platform Invoicely appeared first on Cyber Security News.

A man who works for the people overseeing America’s nuclear stockpile has lost his security clearance after he uploaded 187,000 pornographic images to a Department of Energy (DOE) network.

Lucky few randomly selected to trial the feature, which won't fully roll out for several months Mozilla is working on a built-in VPN for Firefox, with beta tests opening to select users shortly.…

The military's use of AI will be critical to operate at the speed needed to react to cyber threats, Army leaders said.

The U.S. Department of Justice has seized $15 billion in bitcoin from the leader of Prince Group, a criminal organization that stole billions of dollars from victims in the United States through cryptocurrency investment scams, also known as romance baiting or pig butchering. [...]

The maker of ChatGPT released a toolkit to help protect its AI from attack earlier this month. Almost immediately, someone broke it.

With just $800 in basic equipment, researchers found a stunning variety of data—including thousands of T-Mobile users’ calls and texts and even US military communications—sent by satellites unencrypted.

Brayden Lindrea / Cointelegraph: Bhutan announces that it is migrating its national ID system for roughly 800,000 residents from Polygon to Ethereum, with completion expected by Q1 2026  —  The Kingdom of Bhutan has tapped Ethereum to store the national identities of its roughly 800,000 citizens, leveraging the network's immutability and decentralization.