The private messaging app Session is planning a major protocol upgrade to boost user security. The new version, slated for a detailed spec release in 2026, will add perfect forward secrecy and post-quantum cryptography.
The race to build quantum computers isn’t just about raw power—it’s a race against time to protect our encrypted data. A security chief from ST Engineering laid out the urgent, complex path to quantum resilience at a major conference, highlighting a two-pronged defense strategy.
Missouri residents are scrambling for VPNs as the state’s new age verification law takes effect. Google searches for VPN services have doubled since Saturday, with many turning to potentially risky free options to protect their privacy.
Experienced CISOs are abandoning leadership roles amid mounting personal liability and burnout. This brain drain comes as cyber threats have increased 600% since COVID-19, leaving organizations dangerously exposed.
According to Dark Reading, sophisticated AI-driven fraud involving social engineering and synthetic identities surged 180% year-over-year in 2025. These complex attacks now account for 28% of all fraud attempts, up from just 10% in 2024. The report reveals scammers are deploying autonomous AI agents
According to Inc, consumers reported $12.5 billion in fraud losses last year, and 82% of phishing emails now use AI. When brands use generic shorteners, they’re training customers to click the very links security experts warn against.
Account takeover fraud has cost Americans over $262 million since January 2025. Cybercriminals are using sophisticated phishing and social engineering to steal login credentials. The FBI warns these scams are becoming increasingly convincing and widespread.
A new attack called HashJack can manipulate AI browsers to serve malicious content through trusted websites. The technique exploits how AI assistants process URL fragments, bypassing traditional security measures. Researchers found varying responses from Google, Microsoft, and Perplexity when report
Hackers have weaponized Zapier’s NPM account to deploy malware that automatically spreads across the open-source ecosystem. The worm steals credentials and creates over 19,000 public repositories containing exposed secrets, representing an unprecedented escalation in supply chain attacks.
The recent Snowflake data breach revealed how cloud security has fundamentally changed. Attackers bypassed traditional defenses using compromised credentials, accessing data from major companies like Ticketmaster. This signals a major shift in how organizations need to approach cloud protection.
