Hackaday

This Week In Security: Another Linux Exploit, Ubuntu Knocked Offline, Finals Interrupted, And Backdoored Tools

After the CopyFail vulnerability gave root access from any user on almost all distributions last week, this week we’ve got DirtyFrag. This chains the vulnerability in CopyFail (xfrm-ESP) and ...

Spotify is getting into AI podcasts, but not how you'd expect

If you're familiar with AI apps like OpenClaw, a new Spotify utility lets you generate and stream custom generated podcasts.

ScarCruft hackers push BirdCall Android malware via game platform

The North Korean hacker group APT37 has been delivering an Android version of a backdoor called BirdCall in a supply-chain ...

OpenAI’s Codex just moved into Chrome, where the useful work and the risks live

OpenAI’s Codex Chrome extension pushes the coding agent into signed-in browser work, making it more useful for real tasks while raising new questions about access, approvals, and agentic AI risk.
WeLiveSecurity

Fake call logs, real payments: How CallPhantom tricks Android users

ESET researchers uncovered fraudulent apps on Google Play that claim to provide the call history “for any number” and had ...

Google is adopting a new framework to stop shady Android apps from raising hell

Google is expanding Binary Transparency for Android, using a public ledger to help verify official Google apps and spot ...

Online archives of over 20 years of tech reporting | The Register

Dive into The Register's online archive of incisive tech news reporting, features, and analysis dating back to 1998 ...

Security Patches news | The Register

Emergency patches out now for those managing the millions of domains assumed to be affected This CVSS 10.0 RCE vuln has been ...