TechCapsules

Security researchers have disclosed an unpatchable SecureROM exploit, called usbliter8, for Apple's A12 and A13 chips. The vulnerability affects devices such as iPhones, iPads, and Apple Watches, allowing researchers to gain control before iOS starts loading. The exploit targets a flaw in Apple's USB boot process and cannot be fixed through software updates. Devices affected include the iPhone XS, iPhone 11 lineup, and several iPad and Apple Watch models. The vulnerability exists in the SecureROM, the first [...]

Living Security has launched its 2026 Cybersecurity Awareness Month program to help organizations navigate trust in an AI world. The program provides a complete campaign package with expert-led learning, interactive experiences, and ready-to-launch resources. It aims to help employees recognize AI-enabled deception, strengthen verification behaviors, and reduce human risk. The program includes a live virtual kickoff event, weekly awareness content, and a campaign planning toolkit. Organizations can launch the program in days, simplifying planning and execution. The [...]

A USB worm is spreading crypto-stealing malware via Windows shortcut files, targeting cryptocurrency wallets since at least February. The malware monitors clipboard contents, replacing wallet addresses with ones controlled by the attacker, and captures screenshots. Infection occurs when a victim opens a malicious LNK file on a USB drive, triggering the malware to execute and spread to other connected devices. The malware uses the Tor network to conceal communication and can capture seed phrases and private keys. [...]

Republicans in Congress have proposed the SECURE Data Act, a law that aims to establish national standards for protecting privacy rights. The legislation seeks to end the growing number of lawsuits targeting U.S. companies, often with no proof of harm. The proposed law, dubbed the "Safeguarding and Enhancing Cybersecurity and Understanding Rights of Every Data Subject Act," aims to address a "patchwork" of state privacy protection laws that have generated billions of dollars for trial lawyers. The [...]

Ayo Akinyele, Chief Engineer at RippleX, has outlined a security upgrade strategy to protect the XRP Ledger (XRPL) from threats posed by quantum computing and artificial intelligence. The upgrade, which has been in development since 2024-2025, involves implementing a hybrid signature method that allows the blockchain to operate normally under standard conditions but switch to a protected cryptographic stack if a quantum attack is detected. This approach balances security with operational continuity and avoids the performance overhead [...]

The FBI, in collaboration with Google and Black Lotus Labs, has disrupted a China-based phishing service known as Outsider Enterprise. This service used artificial intelligence to send fake texts and create scam websites, resulting in the theft of personal data, including credit cards and passwords. Authorities report that the service powered thousands of phishing websites, leading to millions of stolen credit cards and significant financial losses. The disruption of this service is a significant development in the [...]

Union Home Minister Amit Shah has ordered a comprehensive overhaul of the National Cyber Crime Helpline, integrating Artificial Intelligence to enhance its efficiency. The 1930 helpline will utilize AI for intelligent call routing and complaint logging, aiming to transform it into a tech-driven first line of defence against cyber crimes. The modernisation aims to ensure a zero-pendency approach, with all citizen calls for help being answered. The Ministry of Home Affairs will provide necessary support for hardware [...]

South African Small and Medium-Sized Businesses are leading the world in cybersecurity investment, with 69% planning to increase spending over the next year. Despite this, they face a resilience gap, with one in two experiencing a cybersecurity incident or data breach in the past year. The IDC study surveyed over 2,200 SMBs globally, finding that South African businesses are highly alert to digital danger, with 37% describing their security posture as proactive. However, the high incident rate [...]