SecurityWeek

Critical FreeScout Vulnerability Leads to Full Server Compromise

A critical-severity FreeScout vulnerability can be exploited for remote code execution without authentication or user interaction.

Microsoft: Hackers abuse OAuth error flows to spread malware

Hackers are abusing the legitimate OAuth redirection mechanism to bypass phishing protections in email and browsers to take ...

LexisNexis confirms data breach as hackers leak stolen files

American data analytics company LexisNexis Legal & Professional has confirmed to BleepingComputer that hackers breached its servers and accessed some customer and business information.
Microsoft

OAuth redirection abuse enables phishing and malware delivery

OAuth redirection is being repurposed as a phishing delivery path. Trusted authentication flows are weaponized to move users ...
The Hacker News

APT28 Tied to CVE-2026-21513 MSHTML 0-Day Exploited Before Feb 2026 Patch Tuesday

APT28 exploited CVE-2026-21513, an MSHTML zero-day (CVSS 8.8), using malicious LNK files to bypass security controls and execute code.
IEEE

Secured Lightweight TRNG Design Using Encrypt Flip-Flop Architecture

Abstract: The development of a True Random Number Generator (TRNG) is crucial for enhancing security in a cryptographic system, or in general where high unpredictability is insisted upon. True ...
GitHub

Offline Electron app for AES-256-CBC file encryption/decryption

Securely encrypt any file (AES-256-CBC via WebCrypto) and export an encrypted file Generate and securely copy your Base64-encoded key and IV Decrypt previously encrypted files locally with the correct ...
ZDNet

7 apps I use to lock down, encrypt, and store my private files - and most are free

File and folder security is crucial in this day and age. There are apps you can use to heighten the security of your files. These apps are free and available for desktop and mobile devices. The need ...