Information Technology

sankai/Getty Images The cybersecurity landscape of 2024 was marked by devastating ransomware attacks, artificial intelligence (AI)-powered social engineering, and state-sponsored cyber operations that caused billions in damages. As 2025 kicks off, the convergence of AI, geopolitical instability, and evolving attack surfaces presents an even more complex threat environment. Security professionals are bracing for what could […] More

Kerry Wan/ZDNETAt this year’s CES, ZDNET has teamed up with the rest of CNET Group (CNET, PCMag, Mashable, and Lifehacker) and the Consumer Technology Association (CTA) to name the official best Best of CES 2025 award winners in 12 categories.Also: CES 2025: The most impressive products you don’t want to miss More

dem10/Getty Images Data privacy has become absolutely crucial for businesses. And some businesses go to great lengths to protect their data, files, and communications. However, many consumers and smaller businesses continue to believe that adding extra security isn’t worth the extra work required. Wrong! Anyone who refuses or neglects to take the extra steps could […] More

ZDNETWhether you use Chrome, Firefox, or both, it’s time once again to update the browser to stay safe and secure while surfing the web. Released on Tuesday, the latest round of bug fixes for both programs resolves a number of nasty security flaws. Also: The best secure browsers for privacy Chrome users Chrome users will want to update the browser to version 31.0.6778.264/265 for Windows and Mac and version 131.0.6778.264 for Linux. This update includes fixes for four security vulnerabilities. The only flaw on the list that Google described is one for which the company paid $55,000 to the security researcher who discovered and reported it, a sign that it is critical. Known as CVE-2025-0291, this vulnerability cites a Type Confusion in Chrome’s V8 JavaScript engine. This kind of flaw could allow someone to remotely run malicious code through a specially crafted HTML page or even launch a Denial of Service attack on your computer. Also: How a Chrome extension malware scare ruined my dayIn squashing the other bugs, Google pointed to fixes based on internal audits, a software testing technique known as fuzzing, and other initiatives. The company said that many security flaws are found using such tools and techniques as AddressSanitizer, MemorySanitizer, UndefinedBehaviorSanitizer, Control Flow Integrity, libFuzzer, or AFL. Firefox users On the Firefox front, version 134 of Mozilla’s browser includes fixes for 11 security vulnerabilities, three of which are rated high and the rest as moderate. One high-severity flaw known as CVE-2025-0244 affects Firefox on Android devices. The description for this one says that an attacker could spoof the browser’s address bar by redirecting the request to an invalid protocol, thereby directing you to a phony URL. Also: How to protect yourself from phishing attacks in Chrome and FirefoxThe other two severe vulnerabilities affect both Firefox and Mozilla’s Thunderbird email client. Dubbed CVE-2025-0242 and CVE-2025-0247, respectively, these were both described by Google as memory safety bugs that showed evidence of memory corruption. Such bugs could allow a remote attacker to read or write code beyond the usual regions of memory. “We presume that with enough effort some of these could have been exploited to run arbitrary code,” Google added. With these critical security flaws in mind, you’ll want to update the browsers ASAP. More

sarayut Thaneerat/Getty Images Have you ever been sent a link that doesn’t look quite right, but you click on it anyway, only to discover it was malicious? If you did click on that link, you might find yourself on a site that looks legit enough to persuade you to enter sensitive information (such as logins, […] More

ZDNETIf a proposal by the Federal Communications Commission goes through, it will soon be much easier for you to know which smart home products are secure.It’s called the ‘US Cyber Trust Mark’In an announcement today, the FCC revealed plans to create a voluntary program for smart device manufacturers. If companies meet certain cybersecurity standards, the product packaging will feature a special “US Cyber Trust Mark” logo.Not only will this help consumers make informed decisions and differentiate trustworthy products, the FCC says, but it should also encourage manufacturers to meet higher security standards.Also: The best smart speakersA White House briefing from 2023 about the same program said it would apply to smart refrigerators, smart microwaves, smart televisions, smart climate control systems, smart fitness trackers, and more. Several companies have voiced support for the program, the briefing says, including Amazon, Best Buy, Google, LG Electronics USA., Logitech, and Samsung Electronics. More

Ricardo Mendoza Garbayo/Getty Images Some people view browser extensions as a necessary piece of the puzzle, while others see them as a danger. So, how could something so small present such a problem for users?  Consider a recent report by Vulnerable U about data loss prevention service Cyberhaven, which discovered a Chrome extension used by […] More

Screenshot by Lance Whitney/ZDNETWant to learn more about a landmark, painting, animal, plant, food, or other object that you’ve snapped with your iPhone’s camera? Now you can, with an iOS 18.1 photo look-up feature called Enhanced Visual Search.By scanning and analyzing photos, this tool can categorize and even identify certain items via a web search. Enhanced Visual Search is also available on an iPad with iPadOS 18.1 and a Mac with MacOS Sequoia 15.1.Also: iOS 18.2 was killing my iPhone’s battery until I turned off this featureSounds great, right? Well, that depends. A similar feature called Visual Look Up first debuted with iOS 16, so this type of capability has been around for a couple of years. But Enhanced Visual Search is more advanced, as it shares your photos with Apple to help dig up the right details on the object. That difference has triggered privacy concerns among many people, especially since the sharing is enabled by default.How Enhanced Visual Search worksOpen a photo on your iPhone (or iPad or Mac) that contains an identifiable object. I chose a photo of the Statue of Liberty.If the item is supported by Enhanced Visual Search, the info icon at the bottom will display a small star in the upper left area. Tap the info icon, and the search will categorize the object as a landmark, artwork, animal, plant, or something else. Tap the Look Up option under the photo, and a web search will name the item and let you select any of the search results to learn more about it.Also: Looking to buy a new Apple device? You might want to hold off. Here’s whyBut here’s the rub. To run that search, Apple needs to analyze the photo. Since there are potentially millions and millions of landmarks, animals, and other common items that could be a match, the analysis can’t be done on your device. That’s why the photos need to be shared with Apple and analyzed on its servers.With privacy in mind, Apple has anticipated concerns over photo sharing. On a web page entitled Photos & Privacy, the company explained how Enhanced Visual Search works: More