Eufy Security Camera Maker Fined $450,000 for Major Privacy Breach
Three companies behind Eufy security cameras face penalties after investigation reveals unencrypted video streams were accessible without authentication. New York Attorney General mandates comprehensive security overhaul following breach of consumer privacy claims.
Chinese AI Startup DeepSeek Halts New Registrations After Major Cyberattack
DeepSeek, a rising Chinese AI company that recently surpassed ChatGPT in App Store downloads, faces service disruption from large-scale attacks. The startup's cost-effective approach and recent R1 model launch have positioned it as a formidable competitor to established AI leaders.
Critical Backdoor Malware 'J-Magic' Discovered in Enterprise Juniper VPN Systems
Security researchers have uncovered a sophisticated backdoor malware targeting Juniper Networks VPN systems across 36 organizations. The stealthy 'J-Magic' threat employs advanced memory-based evasion and cryptographic authentication to maintain persistent network access while avoiding detection.
GamaCopy: The Cyber Group Mimicking Russian State Hackers
A new threat actor dubbed GamaCopy has emerged, imitating tactics of Kremlin-linked Gamaredon group to target Russian organizations. Using military-themed bait and sophisticated tools like UltraVNC, the group represents an evolution in cyber espionage techniques aimed at creating attribution confusion.
Chinese WiFi Routers Face Potential US Ban Following TikTok Crackdown
U.S. officials are targeting Chinese-made WiFi routers, particularly TP-Link devices, as the next potential security threat following TikTok legislation. Congressional leaders warn of cybersecurity risks and data collection concerns, with TP-Link controlling 65% of the U.S. router market.
Critical Security Flaw in Subaru Starlink System Exposed Remote Vehicle Access Risk
Researchers uncovered a severe vulnerability in Subaru's Starlink service that allowed unauthorized access to vehicles and customer data across multiple countries. The flaw, which could be triggered using basic customer information, enabled remote vehicle control and access to sensitive personal data.
The Privacy Paradox: Why Online Age Verification Systems Are More Complex Than Physical ID Checks
Recent state laws mandating online age verification for adult content face mounting criticism over privacy and security concerns. Unlike simple ID checks at stores, these digital systems create lasting records of sensitive data, raising risks of breaches and accessibility issues while achieving limited compliance.
Critical Security Flaws in Subaru Starlink System Expose Millions of Vehicles to Remote Access
Researchers uncovered vulnerabilities in Subaru's Starlink system that allowed unauthorized access to vehicle locations and remote control functions affecting millions of cars. The flaws enabled tracking of detailed location histories and control of features like door locks and engine start, raising broader privacy concerns in the automotive industry.
CISA Under Fire: Homeland Security Nominee Calls for Major Agency Overhaul
South Dakota Governor Kristi Noem, nominee for Secretary of Homeland Security, advocates for a streamlined CISA focused solely on cybersecurity threats. During Senate confirmation hearings, she criticized the agency's disinformation work while facing questions about her own cybersecurity record as governor.
Critical Vehicle Security Flaws Net $382,750 in Rewards at Pwn2Own Automotive 2025
Security researchers exposed 16 critical vulnerabilities in automotive systems during Pwn2Own Automotive 2025's opening day in Tokyo, focusing on infotainment systems, EV chargers, and operating systems. Multiple teams successfully demonstrated exploits of charging infrastructure, while a $500,000 Tesla autopilot challenge remained unattempted.