News
Cheap Wi-Fi Cameras and Doorbells Can Be Hijacked, No Fix Coming: CVE-2026-28742
SecurityMobilePrivacy
Cheap Wi-Fi cameras and doorbells sold on Temu and Amazon (Naxclow / V720, X3) have a flaw that lets a stranger hijack the camera with no login, and CISA has issued an advisory. Your Wi-Fi password leaks too, and there is no patch. Here is CVE-2026-28742 and what owners should do.
2026.06.138 views
News
Aqara Smart Locks and Cameras Could Be Hijacked: Cloud Flaws Including CVE-2026-50083
PrivacySecurityMobile
Researchers disclosed 10 vulnerabilities in Aqara's smart-home cloud, including CVE-2026-50083, that let an unauthenticated attacker operate smart locks and cameras. Here is the takeover chain and what owners should do.
2026.06.1337 views
News Updated 7 days ago
Flaw in Mitsubishi Electric Home Appliances (AC, Fridge & More): Someone on Your Wi-Fi Can Knock Out Remote Control, CVE-2025-49604, Update the Firmware
SecurityMobileJapanese Companies
Mitsubishi Electric disclosed CVE-2025-49604 affecting a wide range of Wi-Fi-enabled home appliances — air conditioners, refrigerators, rice cookers, IH cooktops and more. A device on the same Wi-Fi sending crafted traffic can temporarily halt the appliance's Wi-Fi, blocking smartphone remote control. There is no risk of data theft or takeover, but affected models should update to the fixed firmware.
2026.06.115 views
News
Exploited Chrome Zero-Day CVE-2026-11645, the 5th of 2026 — Update Chrome Now
SecurityMobileGlobal Companies
Google Chrome, the world's most-used browser, has a serious flaw already used in attacks (CVE-2026-11645), and an emergency fix is out. Opening a trap page alone can hand over your device, and this is the fifth such case in 2026. All Chrome users are affected, as are Edge and Brave. Update to 149.0.7827.103 now. Here's how to check and what's affected.
2026.06.107 views
News
Ivanti Sentry CVE-2026-10520 Exploited (KEV): Patch the 10.0 RCE Now
MobileSecurityInfrastructure
A flaw lets attackers remotely take over Ivanti Sentry — the gateway between staff phones and corporate email — with no password (CVE-2026-10520, severity 10.0). Paired with an authentication-bypass flaw that creates administrators at will (CVE-2026-10523), it requires an update to R10.5.2 / R10.6.2 / R10.7.1. The product has been attacked repeatedly before. Here are the affected versions and what to do now.
2026.06.1015 views
News
Docomo phones won't connect: morning outage reports, carrier says "not equipment failure"
MobileInfrastructureJapanese Companies
NTT Docomo acknowledged on the morning of May 19 that social-media complaints about mobile service difficulties have been increasing. Users report being out of service since before 4 a.m. and unable to connect for more than eight hours. Docomo says no equipment failure has been confirmed and is still investigating as of 11:30 a.m. Cause and recovery timeline are unknown.
2026.05.19109 views
News
App Store reviews hit 45 days as AI vibe-coded apps flood the queue (2026)
MobileDevelopmentGlobal Companies
App Store reviews are in crisis. What normally takes under 24 hours now takes up to 45 days. Vibe coding drove a 24% surge in submissions, and Apple remains silent.
2026.03.3052 views
