TechNadu
@technadu.com
Cybersecurity, VPNs, & digital privacy, decoded. Smart takes, real insights, and expert reviews to keep you safe online.
👉 Subscribe to our newsletter → technadu.com/newsletter
👉 Subscribe to our newsletter → technadu.com/newsletter
Firefox 145 debuts new anti-fingerprinting protections - randomizing hardware + display data and blocking local fonts to limit tracking.
Trackability now estimated at 20%, down from 35%.
Mozilla says stricter privacy shouldn’t come at the cost of usability.
#Firefox #Privacy #CyberSecurity
Trackability now estimated at 20%, down from 35%.
Mozilla says stricter privacy shouldn’t come at the cost of usability.
#Firefox #Privacy #CyberSecurity
November 11, 2025 at 5:11 PM
Firefox 145 debuts new anti-fingerprinting protections - randomizing hardware + display data and blocking local fonts to limit tracking.
Trackability now estimated at 20%, down from 35%.
Mozilla says stricter privacy shouldn’t come at the cost of usability.
#Firefox #Privacy #CyberSecurity
Trackability now estimated at 20%, down from 35%.
Mozilla says stricter privacy shouldn’t come at the cost of usability.
#Firefox #Privacy #CyberSecurity
Genians reports APT37 hackers abusing Google’s Find Hub to track and remotely reset Android devices via stolen Google credentials.
No Android exploit - just legitimate tools misused.
Google urges users to enable 2-Step Verification and consider Advanced Protection.
#CyberSecurity #AndroidSecurity
No Android exploit - just legitimate tools misused.
Google urges users to enable 2-Step Verification and consider Advanced Protection.
#CyberSecurity #AndroidSecurity
November 11, 2025 at 3:33 PM
Genians reports APT37 hackers abusing Google’s Find Hub to track and remotely reset Android devices via stolen Google credentials.
No Android exploit - just legitimate tools misused.
Google urges users to enable 2-Step Verification and consider Advanced Protection.
#CyberSecurity #AndroidSecurity
No Android exploit - just legitimate tools misused.
Google urges users to enable 2-Step Verification and consider Advanced Protection.
#CyberSecurity #AndroidSecurity
65% of Forbes AI 50 companies exposed secrets on GitHub - API keys for HuggingFace, LangChain & ElevenLabs found in commit histories & deleted forks.
#AIsecurity #GitHubLeaks #Cybersecurity
#AIsecurity #GitHubLeaks #Cybersecurity
November 11, 2025 at 2:31 PM
65% of Forbes AI 50 companies exposed secrets on GitHub - API keys for HuggingFace, LangChain & ElevenLabs found in commit histories & deleted forks.
#AIsecurity #GitHubLeaks #Cybersecurity
#AIsecurity #GitHubLeaks #Cybersecurity
New AI flaw: “Whisper Leak” lets attackers deduce topics of encrypted LLM chats from network metadata.
Fixes applied by Microsoft, OpenAI & xAI - but others still at risk.
#Cybersecurity #WhisperLeak #AIprivacy
Fixes applied by Microsoft, OpenAI & xAI - but others still at risk.
#Cybersecurity #WhisperLeak #AIprivacy
November 11, 2025 at 1:47 PM
New AI flaw: “Whisper Leak” lets attackers deduce topics of encrypted LLM chats from network metadata.
Fixes applied by Microsoft, OpenAI & xAI - but others still at risk.
#Cybersecurity #WhisperLeak #AIprivacy
Fixes applied by Microsoft, OpenAI & xAI - but others still at risk.
#Cybersecurity #WhisperLeak #AIprivacy
DanaBot’s back.
Version 669 marks its return after Operation Endgame, with rebuilt hybrid C2 infra and renewed focus on crypto theft (BTC, ETH, LTC, TRX).
Detected by Zscaler researchers.
#CyberSecurity #Malware #DanaBot #Crypto #OperationEndgame
Version 669 marks its return after Operation Endgame, with rebuilt hybrid C2 infra and renewed focus on crypto theft (BTC, ETH, LTC, TRX).
Detected by Zscaler researchers.
#CyberSecurity #Malware #DanaBot #Crypto #OperationEndgame
November 11, 2025 at 12:52 PM
DanaBot’s back.
Version 669 marks its return after Operation Endgame, with rebuilt hybrid C2 infra and renewed focus on crypto theft (BTC, ETH, LTC, TRX).
Detected by Zscaler researchers.
#CyberSecurity #Malware #DanaBot #Crypto #OperationEndgame
Version 669 marks its return after Operation Endgame, with rebuilt hybrid C2 infra and renewed focus on crypto theft (BTC, ETH, LTC, TRX).
Detected by Zscaler researchers.
#CyberSecurity #Malware #DanaBot #Crypto #OperationEndgame
Threat actors exploit Triofox AV scanner (CVE-2025-12480) for RCE - deploying AnyDesk & Zoho Assist for persistence.
#CyberSecurity #Triofox #RCE #ThreatIntel
#CyberSecurity #Triofox #RCE #ThreatIntel
November 11, 2025 at 12:23 PM
Threat actors exploit Triofox AV scanner (CVE-2025-12480) for RCE - deploying AnyDesk & Zoho Assist for persistence.
#CyberSecurity #Triofox #RCE #ThreatIntel
#CyberSecurity #Triofox #RCE #ThreatIntel
xHunt APT renews espionage in Kuwait - abusing Exchange & IIS to deploy PowerShell backdoors “Hisoka” & “TriFive.”
#CyberSecurity #xHunt #APT #ThreatIntel
#CyberSecurity #xHunt #APT #ThreatIntel
November 11, 2025 at 11:22 AM
xHunt APT renews espionage in Kuwait - abusing Exchange & IIS to deploy PowerShell backdoors “Hisoka” & “TriFive.”
#CyberSecurity #xHunt #APT #ThreatIntel
#CyberSecurity #xHunt #APT #ThreatIntel
Surfshark spotlighted journalist data safety at the #IPI2025 Congress 🇦🇹
📊 Research Hub insights by Vaiva Norkūnaitė
💻 Live demo by Miguel Fornés Belcasem
🤝 Partnerships for journalist protection
#Surfshark #CyberSecurity #PressFreedom #DigitalRights
📊 Research Hub insights by Vaiva Norkūnaitė
💻 Live demo by Miguel Fornés Belcasem
🤝 Partnerships for journalist protection
#Surfshark #CyberSecurity #PressFreedom #DigitalRights
November 11, 2025 at 10:46 AM
Surfshark spotlighted journalist data safety at the #IPI2025 Congress 🇦🇹
📊 Research Hub insights by Vaiva Norkūnaitė
💻 Live demo by Miguel Fornés Belcasem
🤝 Partnerships for journalist protection
#Surfshark #CyberSecurity #PressFreedom #DigitalRights
📊 Research Hub insights by Vaiva Norkūnaitė
💻 Live demo by Miguel Fornés Belcasem
🤝 Partnerships for journalist protection
#Surfshark #CyberSecurity #PressFreedom #DigitalRights
🇬🇧 Ofcom is tracking VPN use in the UK using an AI-powered third-party tool - sparking privacy concerns.
Critics warn that even aggregated data could risk re-identification.
“VPNs can help protect children online too.” - James Baker, Open Rights Group
#VPN #Privacy #Ofcom #OnlineSafetyAct
Critics warn that even aggregated data could risk re-identification.
“VPNs can help protect children online too.” - James Baker, Open Rights Group
#VPN #Privacy #Ofcom #OnlineSafetyAct
November 11, 2025 at 8:39 AM
🇬🇧 Ofcom is tracking VPN use in the UK using an AI-powered third-party tool - sparking privacy concerns.
Critics warn that even aggregated data could risk re-identification.
“VPNs can help protect children online too.” - James Baker, Open Rights Group
#VPN #Privacy #Ofcom #OnlineSafetyAct
Critics warn that even aggregated data could risk re-identification.
“VPNs can help protect children online too.” - James Baker, Open Rights Group
#VPN #Privacy #Ofcom #OnlineSafetyAct
Chrome wants to hold your passport now.
Bro, you can’t even remember my login for 5 minutes. 😭
#infosec #privacy #digitalidentity
Bro, you can’t even remember my login for 5 minutes. 😭
#infosec #privacy #digitalidentity
November 11, 2025 at 7:56 AM
Chrome wants to hold your passport now.
Bro, you can’t even remember my login for 5 minutes. 😭
#infosec #privacy #digitalidentity
Bro, you can’t even remember my login for 5 minutes. 😭
#infosec #privacy #digitalidentity
🚨 Google warns billions: fake VPNs are stealing your data.
Attackers disguise malicious apps as trusted VPNs -collecting passwords & personal info.
#VPN #Cybersecurity #Google #Android
Attackers disguise malicious apps as trusted VPNs -collecting passwords & personal info.
#VPN #Cybersecurity #Google #Android
November 11, 2025 at 7:12 AM
🚨 Google warns billions: fake VPNs are stealing your data.
Attackers disguise malicious apps as trusted VPNs -collecting passwords & personal info.
#VPN #Cybersecurity #Google #Android
Attackers disguise malicious apps as trusted VPNs -collecting passwords & personal info.
#VPN #Cybersecurity #Google #Android
California’s privacy agency is pushing for stronger data privacy laws - including protections and financial incentives for whistleblowers
It could also expand data deletion rights and make privacy requests easier
Do you think this could be a model for nationwide reform?
#Cybersecurity #DigitalRights
It could also expand data deletion rights and make privacy requests easier
Do you think this could be a model for nationwide reform?
#Cybersecurity #DigitalRights
November 11, 2025 at 6:28 AM
California’s privacy agency is pushing for stronger data privacy laws - including protections and financial incentives for whistleblowers
It could also expand data deletion rights and make privacy requests easier
Do you think this could be a model for nationwide reform?
#Cybersecurity #DigitalRights
It could also expand data deletion rights and make privacy requests easier
Do you think this could be a model for nationwide reform?
#Cybersecurity #DigitalRights
🚨 Cyber alert:
A hacker named Kazu claims to have breached Colombia’s Defensoría del Pueblo, stealing over 2.2M files and demanding $100K by Nov 24.
Authorities are investigating - breach remains unverified.
#CyberSecurity #Colombia #DataBreach #Infosec #CyberThreats #DigitalSecurity #TechNadu
A hacker named Kazu claims to have breached Colombia’s Defensoría del Pueblo, stealing over 2.2M files and demanding $100K by Nov 24.
Authorities are investigating - breach remains unverified.
#CyberSecurity #Colombia #DataBreach #Infosec #CyberThreats #DigitalSecurity #TechNadu
November 10, 2025 at 6:06 PM
🚨 Cyber alert:
A hacker named Kazu claims to have breached Colombia’s Defensoría del Pueblo, stealing over 2.2M files and demanding $100K by Nov 24.
Authorities are investigating - breach remains unverified.
#CyberSecurity #Colombia #DataBreach #Infosec #CyberThreats #DigitalSecurity #TechNadu
A hacker named Kazu claims to have breached Colombia’s Defensoría del Pueblo, stealing over 2.2M files and demanding $100K by Nov 24.
Authorities are investigating - breach remains unverified.
#CyberSecurity #Colombia #DataBreach #Infosec #CyberThreats #DigitalSecurity #TechNadu
Kenya’s cybercrime law is raising questions about how far governments should go to protect citizens online.
It tightens penalties and expands takedown powers - but critics fear overreach into freedom of expression.
#CyberSecurity #Kenya #DigitalRights #TechPolicy #FreedomOfSpeech #Infosec
It tightens penalties and expands takedown powers - but critics fear overreach into freedom of expression.
#CyberSecurity #Kenya #DigitalRights #TechPolicy #FreedomOfSpeech #Infosec
November 10, 2025 at 5:22 PM
Kenya’s cybercrime law is raising questions about how far governments should go to protect citizens online.
It tightens penalties and expands takedown powers - but critics fear overreach into freedom of expression.
#CyberSecurity #Kenya #DigitalRights #TechPolicy #FreedomOfSpeech #Infosec
It tightens penalties and expands takedown powers - but critics fear overreach into freedom of expression.
#CyberSecurity #Kenya #DigitalRights #TechPolicy #FreedomOfSpeech #Infosec
HackGPT Enterprise uses GPT-4, Ollama, and TensorFlow to power automated penetration testing.
It blends AI with compliance and cloud-native scalability - built for enterprise teams seeking faster, data-driven assessments
#CyberSecurity #EthicalHacking #DevSecOps #Automation #CloudSecurity #TechNadu
It blends AI with compliance and cloud-native scalability - built for enterprise teams seeking faster, data-driven assessments
#CyberSecurity #EthicalHacking #DevSecOps #Automation #CloudSecurity #TechNadu
November 10, 2025 at 3:20 PM
HackGPT Enterprise uses GPT-4, Ollama, and TensorFlow to power automated penetration testing.
It blends AI with compliance and cloud-native scalability - built for enterprise teams seeking faster, data-driven assessments
#CyberSecurity #EthicalHacking #DevSecOps #Automation #CloudSecurity #TechNadu
It blends AI with compliance and cloud-native scalability - built for enterprise teams seeking faster, data-driven assessments
#CyberSecurity #EthicalHacking #DevSecOps #Automation #CloudSecurity #TechNadu
Swiss NCSC warns iPhone users about phishing texts claiming “Your iPhone was found.”
Scammers use real device info to build trust and steal Apple IDs via fake Find My pages.
Always use iCloud. com/find or the official app - and ignore unsolicited “found” messages.
#CyberSecurity #Phishing #safety
Scammers use real device info to build trust and steal Apple IDs via fake Find My pages.
Always use iCloud. com/find or the official app - and ignore unsolicited “found” messages.
#CyberSecurity #Phishing #safety
November 10, 2025 at 2:41 PM
Swiss NCSC warns iPhone users about phishing texts claiming “Your iPhone was found.”
Scammers use real device info to build trust and steal Apple IDs via fake Find My pages.
Always use iCloud. com/find or the official app - and ignore unsolicited “found” messages.
#CyberSecurity #Phishing #safety
Scammers use real device info to build trust and steal Apple IDs via fake Find My pages.
Always use iCloud. com/find or the official app - and ignore unsolicited “found” messages.
#CyberSecurity #Phishing #safety
Threat actor “BreachParty” claims to have breached Santander Bank Spain, leaking 10K customer records with PII and IBANs.
Verification pending.
#SantanderBank #DataBreach #CyberSecurity #InfoSec
Verification pending.
#SantanderBank #DataBreach #CyberSecurity #InfoSec
November 10, 2025 at 1:39 PM
Threat actor “BreachParty” claims to have breached Santander Bank Spain, leaking 10K customer records with PII and IBANs.
Verification pending.
#SantanderBank #DataBreach #CyberSecurity #InfoSec
Verification pending.
#SantanderBank #DataBreach #CyberSecurity #InfoSec
TorrentGalaxy has resurfaced… but only as a Solana memecoin promo for “$1.”
Marks the final end of the torrent site.
#TorrentGalaxy #Crypto #CyberSecurity #Solana
Marks the final end of the torrent site.
#TorrentGalaxy #Crypto #CyberSecurity #Solana
November 10, 2025 at 12:48 PM
TorrentGalaxy has resurfaced… but only as a Solana memecoin promo for “$1.”
Marks the final end of the torrent site.
#TorrentGalaxy #Crypto #CyberSecurity #Solana
Marks the final end of the torrent site.
#TorrentGalaxy #Crypto #CyberSecurity #Solana
Three new runC CVEs (CVE-2025-31133 / 52565 / 52881) let attackers abuse symlinks & bind mounts to write into /proc and escape containers. Fixes are in runC 1.2.8, 1.3.3, 1.4.0-rc.3+. Patch, use rootless/user-ns containers, watch for suspicious symlink activity
#CyberSecurity #Infosec #CloudSecurity
#CyberSecurity #Infosec #CloudSecurity
November 10, 2025 at 11:20 AM
Three new runC CVEs (CVE-2025-31133 / 52565 / 52881) let attackers abuse symlinks & bind mounts to write into /proc and escape containers. Fixes are in runC 1.2.8, 1.3.3, 1.4.0-rc.3+. Patch, use rootless/user-ns containers, watch for suspicious symlink activity
#CyberSecurity #Infosec #CloudSecurity
#CyberSecurity #Infosec #CloudSecurity
EFF & AV-Comparatives found Android’s Play Protect misses nearly half of tested stalkerware samples (53%), while others like Malwarebytes and Kaspersky detect nearly all.
Experts say clearer alerts and privacy-focused safeguards are still lacking.
#CyberSecurity #Android #Infosec #MobileSecurity
Experts say clearer alerts and privacy-focused safeguards are still lacking.
#CyberSecurity #Android #Infosec #MobileSecurity
November 10, 2025 at 10:27 AM
EFF & AV-Comparatives found Android’s Play Protect misses nearly half of tested stalkerware samples (53%), while others like Malwarebytes and Kaspersky detect nearly all.
Experts say clearer alerts and privacy-focused safeguards are still lacking.
#CyberSecurity #Android #Infosec #MobileSecurity
Experts say clearer alerts and privacy-focused safeguards are still lacking.
#CyberSecurity #Android #Infosec #MobileSecurity
Samsung patched a zero-day used to deliver LANDFALL Android spyware - a campaign discovered by Unit 42 targeting Galaxy devices in the Middle East.
The attacks involved malicious DNG images sent via WhatsApp before the April 2025 patch.
#CyberSecurity #Samsung #ZeroDay #MobileSecurity #Privacy
The attacks involved malicious DNG images sent via WhatsApp before the April 2025 patch.
#CyberSecurity #Samsung #ZeroDay #MobileSecurity #Privacy
November 10, 2025 at 9:28 AM
Samsung patched a zero-day used to deliver LANDFALL Android spyware - a campaign discovered by Unit 42 targeting Galaxy devices in the Middle East.
The attacks involved malicious DNG images sent via WhatsApp before the April 2025 patch.
#CyberSecurity #Samsung #ZeroDay #MobileSecurity #Privacy
The attacks involved malicious DNG images sent via WhatsApp before the April 2025 patch.
#CyberSecurity #Samsung #ZeroDay #MobileSecurity #Privacy
Microsoft’s “Whisper Leak” shows AI chats might not be as private as they seem.
Attackers observing encrypted traffic could still infer conversation topics using timing & packet analysis — a reminder that even encrypted AI tools can leak metadata.
#CyberSecurity #Microsoft #InfoSec #AIThreats
Attackers observing encrypted traffic could still infer conversation topics using timing & packet analysis — a reminder that even encrypted AI tools can leak metadata.
#CyberSecurity #Microsoft #InfoSec #AIThreats
November 10, 2025 at 6:23 AM
Microsoft’s “Whisper Leak” shows AI chats might not be as private as they seem.
Attackers observing encrypted traffic could still infer conversation topics using timing & packet analysis — a reminder that even encrypted AI tools can leak metadata.
#CyberSecurity #Microsoft #InfoSec #AIThreats
Attackers observing encrypted traffic could still infer conversation topics using timing & packet analysis — a reminder that even encrypted AI tools can leak metadata.
#CyberSecurity #Microsoft #InfoSec #AIThreats
Old laws, new lawsuits. ⚖️
Coalition’s analysis reveals that most web privacy claims cite decades-old statutes like CIPA - and even small businesses using chatbots or analytics are now being targeted
Are outdated privacy laws still effective in the digital age?
#Compliance #DataSecurity #CyberRisk
Coalition’s analysis reveals that most web privacy claims cite decades-old statutes like CIPA - and even small businesses using chatbots or analytics are now being targeted
Are outdated privacy laws still effective in the digital age?
#Compliance #DataSecurity #CyberRisk
November 8, 2025 at 6:08 PM
Old laws, new lawsuits. ⚖️
Coalition’s analysis reveals that most web privacy claims cite decades-old statutes like CIPA - and even small businesses using chatbots or analytics are now being targeted
Are outdated privacy laws still effective in the digital age?
#Compliance #DataSecurity #CyberRisk
Coalition’s analysis reveals that most web privacy claims cite decades-old statutes like CIPA - and even small businesses using chatbots or analytics are now being targeted
Are outdated privacy laws still effective in the digital age?
#Compliance #DataSecurity #CyberRisk
AI can be a trusted partner - or a hidden threat.
Microsoft’s Charlie Bell explores the duality of “double agents” in AI and the idea of Agentic Zero Trust for safe, transparent governance.
What’s your stance - can AI ever truly be trusted with cybersecurity decisions?
#CyberSecurity #Microsoft
Microsoft’s Charlie Bell explores the duality of “double agents” in AI and the idea of Agentic Zero Trust for safe, transparent governance.
What’s your stance - can AI ever truly be trusted with cybersecurity decisions?
#CyberSecurity #Microsoft
November 8, 2025 at 5:17 PM
AI can be a trusted partner - or a hidden threat.
Microsoft’s Charlie Bell explores the duality of “double agents” in AI and the idea of Agentic Zero Trust for safe, transparent governance.
What’s your stance - can AI ever truly be trusted with cybersecurity decisions?
#CyberSecurity #Microsoft
Microsoft’s Charlie Bell explores the duality of “double agents” in AI and the idea of Agentic Zero Trust for safe, transparent governance.
What’s your stance - can AI ever truly be trusted with cybersecurity decisions?
#CyberSecurity #Microsoft
Canadian surveillance laws make VPNs a must in 2025.
Here’s TechNadu’s guide to the 5 best VPNs for security, streaming, and speed
www.technadu.com/best-vpn-for...
#VPN #Canada #OnlinePrivacy #CyberSecurity
Here’s TechNadu’s guide to the 5 best VPNs for security, streaming, and speed
www.technadu.com/best-vpn-for...
#VPN #Canada #OnlinePrivacy #CyberSecurity
November 8, 2025 at 3:38 PM
Canadian surveillance laws make VPNs a must in 2025.
Here’s TechNadu’s guide to the 5 best VPNs for security, streaming, and speed
www.technadu.com/best-vpn-for...
#VPN #Canada #OnlinePrivacy #CyberSecurity
Here’s TechNadu’s guide to the 5 best VPNs for security, streaming, and speed
www.technadu.com/best-vpn-for...
#VPN #Canada #OnlinePrivacy #CyberSecurity