The Exploit Post

Sign in Subscribe

Red Dog Security

Zero-Day Vulnerability Patched in WhatsApp for iOS and macOS

Zero-Day Vulnerability Patched in WhatsApp for iOS and macOS

WhatsApp developers have patched a zero-day vulnerability affecting versions of the messenger for iOS and macOS. According to the company, this issue—together with a recently disclosed Apple bug—may have been used in “sophisticated attacks targeting specific users.” The flaw, tracked as CVE-2025-55177, received a CVSS score of 8.

Firefox Patches Vulnerability Discovered by Positive Technologies Expert

Firefox Patches Vulnerability Discovered by Positive Technologies Expert

A newly patched vulnerability in Mozilla Firefox could have allowed attackers to steal credentials and redirect users to phishing pages by injecting malicious code into a compromised website. The flaw, discovered by Positive Technologies expert Daniil Satyaev, was assigned the identifier CVE-2025-6430 (PT-2025-30487) and rated 6.1 on the CVSS

Microsoft Says Windows Update Did Not Break SSDs or HDDs

Microsoft Says Windows Update Did Not Break SSDs or HDDs

Microsoft has denied reports that the August security update KB5063878 caused failures and data corruption in solid-state drives (SSDs) and hard disk drives (HDDs). According to company representatives, engineers found no evidence linking the update to the issues described by customers. Speculation about a possible connection first surfaced two weeks

Secure Boot Required to Run Battlefield 6 Anti-Cheat

Secure Boot Required to Run Battlefield 6 Anti-Cheat

In August, Electronic Arts (EA) announced that players participating in the Battlefield 6 open beta on PC would need to enable Secure Boot in both Windows and BIOS settings. The decision immediately sparked controversy, with many players concerned about granting EA’s anti-cheat software such deep access to their systems.

Positive Technologies: Attacks via GitHub and GitLab Reach Record Levels

Positive Technologies: Attacks via GitHub and GitLab Reach Record Levels

By posting fake projects on popular developer platforms like GitHub and GitLab, attackers are increasingly tricking users into executing malicious payloads. These payloads download additional components from hacker-controlled repositories, ultimately installing remote access trojans (RATs) and spyware on victims’ devices. Malware Dominates Cyberattacks Analysts from Positive Technologies have released a

Jon von Tetzchner Speaks Out Against AI in Browsers

Jon von Tetzchner Speaks Out Against AI in Browsers

Jon von Tetzchner, head of the Norwegian company Vivaldi Technologies, developer of the Vivaldi browser, has voiced strong criticism of efforts to integrate AI models directly into web browsers. In his view, the industry’s push to merge AI with everyday browsing has already gone too far. AI in Browsers:

Endless Nonsense. An Editor's Column

Endless Nonsense. An Editor's Column

They say evolution “invented” the crab at least five times—meaning five different species independently evolved into something crab-like. Scientists call this carcinization. The same process seems to be happening with social networks. Only instead of turning into crabs, they all turn into TikTok. Open any platform—YouTube, X, even