Implications of Russia-India-China Trilateral Cooperation
Examines Russia-India-China trilateral cooperation, U.S.
General
20 articles
Further Hardening Android GPUs
Posted by Liz Prucka, Hamzeh Zawawy, Rishika Hooda, Android Security and Privacy Team Last year, Google's Android Red Team partnered with Arm to conduct an i...
The big catch: How whaling attacks target top executives
Is your organization’s senior leadership vulnerable to a cyber-harpooning? Learn how to keep them safe.
GrayBravo’s CastleLoader Activity Clusters Target Multiple Industries
November 2025 CVE Landscape: 10 Critical Vulnerabilities Show 69% Drop from October
November 2025 CVE landscape: 10 exploited critical vulnerabilities, a 69% drop from October, and why Fortinet and Samsung flaws need urgent patching.
Architecting Security for Agentic Capabilities in Chrome
Posted by Nathan Parker, Chrome security team Chrome has been advancing the web’s security for well over 15 years, and we’re committed to meeting new challen...
When the Digital World Turns Physical: The Expanding Role of Threat Intelligence in Executive Protection
Discover how converged threat intelligence protects executives from deepfakes, doxxing, and cyber-enabled physical threats with Recorded Future.
[webapps] Pluck 4.7.7-dev2 - PHP Code Execution
Pluck 4.7.
The Bug That Won't Die: 10 Years of the Same Mistake
Explore a decade of deserialization vulnerabilities, from Java to React/Next.js CVEs, and learn how to harden apps and stay ahead with Recorded Future.
The Hidden Cascade: Why Law Firm Breaches Destroy More than Data
Discover how law firm breaches expose decades of M&A intelligence, client data, and privileged strategy—and how to reduce cascading vendor risk before it hits.
Android expands pilot for in-call scam protection for financial apps
Posted by Aden Haussmann, Associate Product Manager and Sumeet Sharma, Play Partnerships Trust & Safety Lead Android uses the best of Google AI and our advan...
The Maturity Gap: The Next Frontier in Threat Intelligence
Learn what advanced threat intelligence maturity really means and how to close the gap between current capabilities and predictive, autonomous operations.
[webapps] phpMyFAQ 2.9.8 - Cross-Site Request Forgery(CSRF)
phpMyFAQ 2.9.
[webapps] phpMyFAQ 2.9.8 - Cross-Site Request Forgery (CSRF)
phpMyFAQ 2.9.
[webapps] phpMyFaq 2.9.8 - Cross Site Request Forgery (CSRF)
phpMyFaq 2.9.
[webapps] phpIPAM 1.4 - SQL-Injection
phpIPAM 1.
[webapps] OpenRepeater 2.1 - OS Command Injection
OpenRepeater 2.
[webapps] PluckCMS 4.7.10 - Unrestricted File Upload
PluckCMS 4.7.
Introducing constant-time support for LLVM to protect cryptographic code
Trail of Bits has developed constant-time coding support for LLVM, providing developers with compiler-level guarantees that their cryptographic implementatio...
Inside the CopyCop Playbook: How to Fight Back in the Age of Synthetic Media
Uncover how Russia’s CopyCop network uses AI-generated news and fake media sites to influence global audiences—and learn the key defenses against synthetic m...