Juni Artawan
-
Google Chrome Reportedly Downloads AI Models Automatically, Raising Privacy Concerns
Read more: Google Chrome Reportedly Downloads AI Models Automatically, Raising Privacy ConcernsA new report says Google Chrome may quietly download a large AI model to some devices. In some cases, the download size can reach up to 4GB. As a result, many users worry about bandwidth…
-
Microsoft Confirms Active Exploitation of Windows Shell Vulnerability CVE-2026-32202
Read more: Microsoft Confirms Active Exploitation of Windows Shell Vulnerability CVE-2026-32202Microsoft has confirmed that attackers are actively exploiting a Windows Shell vulnerability tracked as CVE-2026-32202. The flaw was previously patched, but the company recently updated its advisory to state that real-world attacks have already been…
-
WordPress Redirect Plugin Found With Hidden Backdoor for Years
Read more: WordPress Redirect Plugin Found With Hidden Backdoor for YearsA popular WordPress redirect plugin was found to contain a hidden backdoor. This issue remained undetected for years. As a result, many websites could be at risk. The plugin is widely used to manage URL…
-
Why DNS Filtering Is Important for Modern Network Security
Read more: Why DNS Filtering Is Important for Modern Network SecurityBanyak organisasi fokus pada firewall, antivirus, dan endpoint protection, tetapi sering melupakan satu lapisan penting: DNS filtering. Padahal hampir semua koneksi internet dimulai dari proses DNS lookup. Saat user membuka website, sistem akan menerjemahkan nama…
-
73 Fake VS Code Extensions Found Spreading GlassWorm Malware
Read more: 73 Fake VS Code Extensions Found Spreading GlassWorm MalwareSecurity researchers have uncovered 73 fake Visual Studio Code extensions on the Open VSX marketplace that were linked to a malware campaign known as GlassWorm v2. The extensions copied names, icons, and descriptions of legitimate…
-
WordPress Plugin Supply Chain Attack: Smart Slider 3 Pro Backdoor Incident Explained
Read more: WordPress Plugin Supply Chain Attack: Smart Slider 3 Pro Backdoor Incident ExplainedA serious supply chain attack recently hit Smart Slider 3 Pro, a widely used plugin on WordPress and Joomla sites. Instead of exploiting a typical bug, attackers managed to compromise the official update system and…
-
Adobe Reader Zero-Day Exploit Targets Users via Malicious PDF Files
Read more: Adobe Reader Zero-Day Exploit Targets Users via Malicious PDF FilesA newly discovered zero-day vulnerability in Adobe Acrobat Reader is actively being exploited in real-world attacks, putting users at significant risk. The flaw allows attackers to execute malicious actions simply by tricking victims into opening…
-
Masjesu Botnet: Emerging DDoS-for-Hire Threat Targeting IoT Devices
Read more: Masjesu Botnet: Emerging DDoS-for-Hire Threat Targeting IoT DevicesThe Masjesu botnet is emerging as a new DDoS-for-hire service targeting Internet of Things (IoT) devices such as routers and network gateways. Active since 2023, this botnet focuses on stealth and persistence, quietly building a…
-
Shadow AI in the Workplace: Risks and How to Manage It Safely
Read more: Shadow AI in the Workplace: Risks and How to Manage It SafelyThe rapid adoption of AI in the workplace has introduced a new challenge known as shadow AI. This refers to employees using tools like ChatGPT or GitHub Copilot without approval from the IT department. While…
-
Docker Auth Bypass Bug Could Lead to Full Host Compromise
Read more: Docker Auth Bypass Bug Could Lead to Full Host CompromiseA high-severity vulnerability tracked as CVE-2026-34040 has been found in Docker Engine, allowing attackers to bypass authorization controls and potentially take over the host system. The flaw impacts environments that rely on authorization plugins (AuthZ)…