CISA orders feds to patch Zimbra XSS flaw exploited in attacks

CISA has ordered U.S. government agencies to secure their servers against an actively exploited vulnerability in the Zimbra Collaboration Suite (ZCS).

My most useful Chrome extension was stealing my data for years

An extension I used almost every day was bought by a new owner and loaded up with spyware. It happened in 2024, but Google ...

New font-rendering trick hides malicious commands from AI tools

A new font-rendering attack causes AI assistants to miss malicious commands shown on webpages by hiding them in seemingly harmless HTML.

Critical Chrome Security Flaws Threaten Billions of Users Worldwide

Google patches two actively exploited Chrome vulnerabilities that could allow attackers to crash browsers or run malicious code. Billions of users urged to update.
Yahoo

Peter Thiel and other tech billionaires are publicly shielding their children from the products that made them rich

Add Yahoo as a preferred source to see more of our stories on Google. Investor Peter Thiel in April 2022. (Eva Marie Uzcategui—Bloomberg/Getty Images) Despite building an increasingly screen-focused ...
TechCrunch

As browser wars heat up, Chrome adds new productivity features

As AI companies and startups push their way into the web browser market, the world’s biggest browser, Google Chrome, is rolling out a handful of new features. The company on Thursday announced the ...
Computerworld

Swedish AI browser Strawberry is now available to everyone

Strawberry is a browser with built-in AI agents that can surf, click, and perform real tasks on behalf of the user, even on login-protected sites. The idea is to make AI agents available to ...
The Business Journals

Indeed economist: Charlotte tech jobs plunge while health-care postings surge

To continue reading this content, please enable JavaScript in your browser settings and refresh this page. Preview this article 1 min An Indeed.com economist says the ...
CSOonline

Zscaler extends zero-trust security to browsers with SquareX acquisition

The acquisition adds browser controls to Zscaler’s Zero Trust Exchange to protect against phishing, data leakage, and AI risks. Cloud security company Zscaler has announced the acquisition of SquareX, ...
Yahoo! Sports

Duke vs Virginia Tech Prediction, Picks & Odds for Today's College Basketball Game

Duke and Virginia Tech will meet up for a conference tilt to help open our college basketball Saturday. Not only has Duke won by a lot lately, but they’ve also covered the spread in five straight. My ...
CSOonline

CrowdStrike to add browser security to Falcon with Seraphic acquisition

CrowdStrike has agreed to acquire Israel-based Seraphic Security, a browser runtime security company, to extend its Falcon platform to browser-native enterprise security. Expected to close by April, ...
PC World

Hackers are using browser-in-the-browser trick to steal Facebook logins

PCWorld reports that hackers are increasingly using browser-in-the-browser (BITB) attacks to steal Facebook login credentials through sophisticated fake browser windows. Facebook’s large and diverse ...