Critical macOS Flaw Lets Attackers Bypass Apple Privacy Controls Without Consent

A newly disclosed macOS vulnerability bypasses Apple’s TCC privacy controls, allowing silent access to files, microphone data ...
North Penn Now

How AI-Powered Tools Are Reshaping Software Testing for Healthcare and Finance Apps

Healthcare and finance apps operate in two of the most demanding digital environments today. Both industries deal with ...

Apple Rolls Out iOS 26.3 Security Test to Beta Users

The tech giant released iOS 26.3 (a) to beta users, marking the debut of their new “Background Security Improvements” system ...
SecurityWeek

CISA KEV Catalog Expanded 20% in 2025, Topping 1,480 Entries

The CISA KEV catalog was expanded with 245 vulnerabilities in 2025, including 24 flaws exploited by ransomware groups.

This SmarterMail vulnerability allows remote code execution - here's what we know

Business-grade email server software SmarterMail just patched a maximum-severity vulnerability that allowed threat actors to ...
Infosecurity Magazine

Five Key Flaws Exploited in 2025's Major Software Supply Chain Incidents

Infosecurity has selected five of the most significant vulnerability exploitation campaigns of 2025 that led to major ...
SecurityWeek

MITRE Releases 2025 List of Top 25 Most Dangerous Software Vulnerabilities

XSS remains the top software weakness, followed by SQL injection and CSRF. Buffer overflow issues and improper access control make it to top 25. The MITRE Corporation has released an updated Common ...
Bleeping Computer

NCSC's ‘Proactive Notifications’ warns orgs of flaws in exposed devices

The UK's National Cyber Security Center (NCSC) announced the testing phase of a new service called Proactive Notifications, designed to inform organizations in the country of vulnerabilities present ...
SiliconANGLE

OpenAI unveils Aardvark, an autonomous GPT-5 agent built to hunt software vulnerabilities

OpenAI Group PBC today unveiled Aardvark, a new GPT-5-powered autonomous artificial intelligence agent designed to identify, verify and help fix software vulnerabilities in real time. Pitched by ...