U.S. Government Introduces Cybersecurity Safety Label for Smart Devices
The White House has officially launched the U.S. Cyber Trust Mark, a new cybersecurity safety label designed to help American consumers make informed decisions about internet-connected devices. Starting later this year, the label will appear on a variety of smart products, signaling compliance with robust cybersecurity standards established by the National Institute of Standards and Technology (NIST). What the Cyber
GitHub Strengthens Security Tools Following Massive Secret Leak in 2025
GitHub has introduced major updates to its Advanced Security platform after detecting over 39 million exposed secrets during 2025. These included API keys, credentials, and tokens—critical elements that, if exposed, pose serious cybersecurity risks to developers and organizations. According to GitHub’s new report, its built-in secret scanning tool detected the leaked data. This tool scans for sensitive information like passwords
Protect Yourself from Tax Scammers: Secure Your IRS Identity Protection PIN
The IRS has reopened its Identity Protection Personal Identification Number (IP PIN) program, urging U.S. taxpayers to enroll now. This program adds a critical layer of security against identity theft and fraudulent tax returns. What is an IP PIN and Why Do You Need One? An IP PIN is a unique six-digit number that taxpayers must include when filing their
OpenAI Raises Security Bounty to $100,000 for Critical Flaws
OpenAI has announced a major update to its bug bounty program, now offering rewards of up to $100,000 for identifying critical vulnerabilities. This change demonstrates the company's commitment to strengthening platform security through collaborative research. In a move to encourage in-depth and impactful vulnerability discoveries, OpenAI has introduced limited-time bounty bonuses. These are available for specific categories of reports submitted
Oracle Cloud Breach Allegations Disputed Amid Confirmed Data Leaks
Oracle faces renewed scrutiny after a threat actor claimed to breach its Oracle Cloud SSO infrastructure. Despite the company’s strong denial, leaked data appears to be real, raising questions about the security of cloud authentication systems. Threat Actor Claims Access to 6 Million Accounts A user named ‘rose87168’ announced they had infiltrated Oracle Cloud’s federated SSO servers. They claimed to
ChatGPT Unlocks Native Image Generation with GPT-4o Update
OpenAI has launched a major update to ChatGPT, giving users native image-generation capabilities through its GPT-4o model. This upgrade, announced by CEO Sam Altman during a livestream, marks the first major leap in ChatGPT’s visual functionality in over a year. GPT-4o Brings Text-to-Image and Photo Editing to ChatGPT Until now, GPT-4o powered ChatGPT only for text-based interactions. With this upgrade,
VanHelsing Ransomware Spreads Fast With Multi-Platform Targets
A new ransomware-as-a-service (RaaS) called VanHelsing has emerged as a fast-spreading cyber threat. Launched in March 2025, it quickly infected three organizations within weeks. Its operators, believed to be Russian, offer the service to affiliates for $5,000. VanHelsing RaaS Targets Multiple Systems VanHelsing allows affiliates to launch attacks across Windows, Linux, BSD, ARM, and ESXi platforms. Cybersecurity firm CYFIRMA first
Google is rolling out Gemini’s real-time AI video features
Google is now launching real-time AI video features for Gemini Live. This update allows Gemini to analyze smartphone screens or camera feeds instantly. According to Google representative Alex Joseph, these advanced functionalities are now accessible to select Google One AI Premium subscribers. Nearly one year ago, Google showcased “Project Astra,” the technology driving these innovations. Users recently started noticing Gemini’s
Oracle Responds to Claims of Data Breach Involving 6 Million Records
Oracle has firmly denied suffering a data breach after a hacker claimed to have stolen approximately 6 million records from Oracle Cloud’s federated Single Sign-On (SSO) servers. According to Oracle’s statement, shared with security news outlet BleepingComputer, the company asserts that “there has been no breach of Oracle Cloud,” adding explicitly that none of its cloud customers experienced any data
Cloudflare Eliminates Unencrypted HTTP API Access
Cloudflare recently announced it has completely disabled unencrypted HTTP connections to its API endpoint (api.cloudflare.com). The company now exclusively accepts secure HTTPS connections, significantly strengthening protection against sensitive data exposure. Previously, Cloudflare permitted API requests via both HTTP and HTTPS. Non-secure HTTP requests were either redirected or rejected with a 403 Forbidden response. However, even brief unencrypted interactions risked exposing
