Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.

Why Passwords Are Still a Developer's Problem in 2026. The case against password-based authentication is well-established in the IAM community, but the practical implications for ...

Server-side rendering vulnerabilities could allow attackers to steal authorization headers or perpetrate phishing and SEO hacking.

Nestlé’s Anneliese Douglass returns for the third time to B&T’s CMO Power List. And it’s been another standout 12 months for ...

Article updated at the bottom with additional technical details about this campaign. Amazon is warning that a Russian-speaking hacker used multiple generative AI services as part of a campaign that ...

The Fulu Foundation, a nonprofit that pays out bounties for removing user-hostile features, is hunting for a way to keep Ring cameras from sending data to Amazon—without breaking the hardware. The ad ...

An AI agent on T-Mobile's network can translate between languages as you and the other person talk. And you don't need special phone hardware to do it. Jeff Carlson writes about mobile technology for ...

Cloud attacks move fast — faster than most incident response teams. In data centers, investigations had time. Teams could collect disk images, review logs, and build timelines over days. In the cloud, ...

A government customer of sanctioned spyware maker Intellexa hacked the phone of a prominent journalist in Angola, according to Amnesty International, the latest case of targeting someone in civil ...

Fourteen years after the last titles in the .hack series, CyberConnect2 is celebrating the studio's 30th anniversary by unveiling .hack//Z.E.R.O., also known as "Project Dusk." With no release date ...

The immediate threat may be fixed, but this raises serious questions. The immediate threat may be fixed, but this raises serious questions. is a senior editor and founding member of The Verge who ...