Attention: You are using an outdated browser, device or you do not have the latest version of JavaScript downloaded and so this website may not work as expected. Please download the latest software or switch device to avoid further issues.
| 8 May 2026 | |
| Written by Gabi Gerber | |
| Attacks & Threats |
An attacker with administrative privileges can gain access to Microsoft Edge user passwords even when they're not in use, because the browser stores them in cleartext in process memory as part of a design decision by Microsoft.
Security researcher Tom Jøran Sønstebyseter Rønning revealed the issue and how it can be exploited in a proof-of-concept (PoC) tool at Palo Alto Networks Norway's BIG Bite of Tech conference last week. He subsequently posted resources for the PoC and tool on GitHub. More here
AI agents aren't black boxes — they're models interacting with software tools. The risk lies in their overlap. More...
SharePoint access often means access to the keys of the kingdom, something attackers and defenders understand all too we… More...
A security researcher discovered the API keys can still be used for up to 23 minutes after deletion, even though the clo… More...
GitHub confirmed a data breach this week involving the theft of thousands of developer code repositories. One threat act… More...
Microsoft has disclosed a new security vulnerability impacting on-premise versions of Exchange Server that it said has c… More...
AI agents aren't black boxes — they're models interacting with software tools. The risk lies in their overlap. More...
Four talks tracing the path from Principles to Practice in Trustworthy AI. More...
SharePoint access often means access to the keys of the kingdom, something attackers and defenders understand all too we… More...
Join our multi-language webinar on June 11, 2026 to hone your cybersecurity skills, expand your practical knowledge and … More...
A security researcher discovered the API keys can still be used for up to 23 minutes after deletion, even though the clo… More...
