Ex-WhatsApp cybersecurity head says Meta endangered billions of users in new suit

A former top cybersecurity executive at WhatsApp filed a lawsuit on Monday alleging that parent company Meta disregarded internal flaws in the app’s digital defenses and exposed billions of its users. He says the company systematically violated cybersecurity regulations and retaliated against him for reporting the failures. Attaullah Baig, who served as head of security for WhatsApp from 2021 to 2025, […]

Continue reading


Zscaler Confirms Data Breach – Hackers Compromised Salesforce Instance and Stole Customer Data

Cybersecurity company Zscaler has confirmed it fell victim to a widespread supply-chain attack that exposed customer contact information through compromised Salesforce credentials linked to marketing platform Salesloft Drift. The breach, disclosed on August 31, 2025, stems from a larger campaign targeting Salesloft Drift’s OAuth tokens that has impacted over 700 organizations worldwide. Zscaler emphasized that the […]

Continue reading


UK and allies expose China-based technology companies for enabling global cyber campaign against critical networks

The UK and international allies have today (Wednesday) publicly linked three technology companies based in China with a global malicious cyber campaign targeting critical networks. In a new advisory published today, the National Cyber Security Centre (NCSC) – a part of GCHQ – and international partners from twelve other countries have shared technical details about […]

Continue reading


Hackers steal data from Salesforce instances in widespread campaign

Hackers stole user credentials from Salesforce customers in a widespread campaign earlier this month, according to researchers at Google Threat Intelligence Group, who warned that the thefts could lead to follow-up attacks. A threat actor that Google tracks as UNC6395 targeted Salesforce instances using compromised OAuth tokens that were associated with the customer engagement vendor Salesloft’s […]

Continue reading


McDonald’s Free Nuggets Hack Leads to Exposure of Confidential Data

A series of alarming vulnerabilities in McDonald’s digital infrastructure, from free food exploits to exposed executive data. What started as a simple app glitch developed into a months-long trial, culminating in the researcher, BobDaHacker, cold-calling the company’s headquarters while mentioning security employees he found on LinkedIn. The fixes were implemented only after extraordinary efforts to […]

Continue reading


Citrix NetScaler flaws lead to critical infrastructure breaches

Hackers have breached critical infrastructure organizations in the Netherlands using a vulnerability in Citrix’s NetScaler products, highlighting the serious risks facing the thousands of systems still running vulnerable NetScaler instances. “Several critical organizations in the Netherlands have been successfully attacked” using the memory-overflow vulnerability in NetScaler ADC and NetScaler Gateway, the Dutch National Cyber Security […]

Continue reading


Research shows AI agents are highly vulnerable to hijacking attacks

Some of the most widely used AI agents and assistants from Microsoft, Google, OpenAI and other major companies are susceptible to being hijacked with little or no user interaction, according to new research from Zenity Labs. During a presentation at the Black Hat USA cybersecurity conference, Zenity researchers showed how hackers could exfiltrate data, manipulate critical […]

Continue reading