Security 17 October 2025 - 26 February 2026

Google Pixel 10 modem gets quiet Rust security overhaul to curb baseband attacks

Google Pixel 10 modem gets quiet Rust security overhaul to curb baseband attacks

Mountain View, April 14, 2026, 06:10 PDT. Google has inserted a Rust-based Domain Name System, or DNS, parser into the modem firmware of its Pixel 10 phones, a quiet change that marks the first use of a memory-safe language inside a Pixel baseband. The move extends Google’s effort to replace risky pockets of legacy C and C++ code that can be prone to memory-safety bugs such as buffer overflows.
April 14, 2026
Android fingerprint unlock “downgrade” claim reignites the Face ID fight

Android fingerprint unlock “downgrade” claim reignites the Face ID fight

Victor Hristov, a smartphone reviewer at PhoneArena, criticized many Android phones for relying too heavily on fingerprint unlock, calling it a “downgrade” compared to years of Apple’s 3D face scanning. In a Jan. 31 editorial, he argued the issue isn’t just speed anymore, but what users consider “secure enough” on devices that handle banking and payments. Biometric checks have become central to how we handle money and identity daily. Apple’s Face ID, for example, authorizes payments and purchases using a TrueDepth camera that shoots thousands of invisible dots to create a detailed 3D map — a scan designed to be tougher to fake than a simple photo.
February 1, 2026
Should you restart your iPhone and Android every week? The NSA reboot advice resurfaces

Should you restart your iPhone and Android every week? The NSA reboot advice resurfaces

On Friday, a consumer-tech piece brought back the U.S. National Security Agency’s advice that iPhone and Android users reboot their phones regularly. It’s pitched as an easy move to help fend off certain types of hacking. The renewed focus is crucial since some spyware uses “zero-click” attacks—hacks that don’t require the victim to click a link or open a file. Phones now store banking info, work messages, and location data. Apple has flagged certain WebKit vulnerabilities as possibly exploited in “an extremely sophisticated attack” targeting specific individuals.
January 31, 2026
France Blocks Eutelsat’s €550m EQT Antenna Sale, Calling It a Security Risk

France Blocks Eutelsat’s €550m EQT Antenna Sale, Calling It a Security Risk

France blocked satellite operator Eutelsat from selling its ground antennas to Swedish private equity firm EQT, Finance Minister Roland Lescure said Friday, citing national security concerns. Following the announcement, Eutelsat shares dropped roughly 5% in early trading in Paris. https://www.reuters.com/business/media-telecom/france-prevented-eutelsat-selling-ground-antennas-finance-minister-says-2026-01-30/?utm_source=chatgpt.com The move highlights just how far Paris will go to maintain control over satellite infrastructure tied to defence and telecoms, especially as European governments push to reduce dependence on foreign networks for secure communications. The Financial Times also confirmed the government’s veto of the deal. https://www.ft.com/content/e8c5ee5d-602e-4ce0-8954-cc35c50cc2e4?utm_source=chatgpt.com
January 30, 2026
Clawdbot goes viral — but security warnings trail the AI assistant behind the Mac mini rush

Clawdbot goes viral — but security warnings trail the AI assistant behind the Mac mini rush

Cybersecurity company SOCRadar revealed that over 1,000 Clawdbot instances—an open-source AI assistant gaining traction—are exposed online. Their Shodan searches, which scan internet-connected devices, uncovered 1,009 Clawdbot gateways accessible directly from the public internet. The warning comes as Clawdbot escapes the developer niche and starts gaining wider attention, with explainer articles and demos popping up all over in the last 24 hours. Early users aren’t just seeing it as a chatbot—they’re calling it an “agent,” software that can actually perform tasks on a computer, not just respond to queries.
January 27, 2026
Turn Your iPhone Off And On Again? iOS 26.2 Security Warning Triggers Fresh Calls to Update

Turn Your iPhone Off And On Again? iOS 26.2 Security Warning Triggers Fresh Calls to Update

Security researchers and consumer tech sites are again urging iPhone users to update to iOS 26.2 and restart their devices, warning that Apple has already patched WebKit bugs used in targeted attacks. The renewed push comes as many users resist iOS 26’s “Liquid Glass” design, a slowdown that has left older software in wide use. Apple’s security notes for iOS 26.2 and iPadOS 26.2 said processing “maliciously crafted web content” could lead to arbitrary code execution or memory corruption. Apple said it was aware of reports the issues “may have been exploited in an extremely sophisticated attack against specific targeted individuals” running versions of iOS before iOS 26.
January 19, 2026
iOS 26.3 Could Finally Encrypt iPhone-to-Android Texts — What Apple’s Beta Reveals

iOS 26.3 Could Finally Encrypt iPhone-to-Android Texts — What Apple’s Beta Reveals

Apple’s iOS 26.3 beta reveals a new carrier-specific setting hinting at end-to-end encryption for RCS messages — the updated SMS standard that many iPhone-to-Android texts rely on, according to a report analyzing the beta files. The code apparently enables this feature for just four French carriers, and it’s currently disabled. The timing is crucial since RCS now serves as the default messaging option for iPhone users texting Android devices without switching apps. Yet, these RCS conversations on iPhones still don’t offer end-to-end encryption, creating a vulnerability for anyone who equates “modern messaging” with privacy.
January 16, 2026
Update your Bluetooth headphones now: Google Fast Pair “WhisperPair” bug risks eavesdropping and tracking

Update your Bluetooth headphones now: Google Fast Pair “WhisperPair” bug risks eavesdropping and tracking

Researchers from Belgium’s KU Leuven have revealed a series of attacks dubbed “WhisperPair” targeting vulnerabilities in certain Bluetooth audio devices using Google’s Fast Pair feature. The flaws let attackers nearby connect without permission, hijack audio streams, and sometimes even convert the devices into location-tracking tools. Researchers revealed to WIRED that they uncovered security flaws in 17 Fast Pair audio devices across 10 brands, such as Sony, Jabra, JBL, Marshall, Xiaomi, Nothing, OnePlus, Soundcore, Logitech, and Google. KU Leuven’s Sayon Duttagupta claimed, “In less than 15 seconds, we can hijack your device.”
January 16, 2026
Apple iPhone Security Alert (Jan 14, 2026): Update to iOS 26.2 and Restart Now to Block WebKit Zero‑Day Attacks

Apple iPhone Security Alert (Jan 14, 2026): Update to iOS 26.2 and Restart Now to Block WebKit Zero‑Day Attacks

Apple is facing fresh scrutiny today, January 14, 2026, after multiple outlets and security researchers urged iPhone owners to update immediately and restart their devices—a simple two-step action that could reduce exposure to actively exploited WebKit “zero‑day” vulnerabilities linked to mercenary spyware. The underlying fixes aren’t new: Apple shipped them December 12, 2025, in iOS 26.2, and Apple’s security notes say the bugs were used in “extremely sophisticated” attacks against targeted individuals. The problem is that millions of eligible iPhones still haven’t moved to iOS 26, leaving a large portion of devices exposed—especially because WebKit is a core component used far beyond Safari.
January 14, 2026
Apple iOS 26.3 Could Make Switching to Android Easier — and a Surprise iPhone Update Signals a New Security Strategy (Jan. 10, 2026)

Apple iOS 26.3 Could Make Switching to Android Easier — and a Surprise iPhone Update Signals a New Security Strategy (Jan. 10, 2026)

Apple’s iOS 26.3 beta adds a new “Transfer to Android” tool and is testing “Background Security Improvements” — a quieter, faster way to patch iPhone security. Here’s what’s new and what it means. January 10, 2026 — If you’ve ever thought about jumping from iPhone to Android, the most annoying part usually isn’t learning new menus—it’s moving your digital life without losing photos, messages, passwords, and the little settings that make a phone feel like your phone.
January 10, 2026
iPhone 4 TikTok comeback sparks buying rush — and fresh warnings over security risks

iPhone 4 TikTok comeback sparks buying rush — and fresh warnings over security risks

A 15-year-old iPhone is back in fashion, with the iPhone 4 resurfacing on TikTok as a lo-fi camera and driving a sharp jump in shopping interest, TechRadar reported on Thursday. https://www.techradar.com/phones/iphone/the-iphone-4-is-the-classic-camera-phone-that-retro-lovers-cant-get-enough-of-but-dont-skip-these-essential-security-tips Why it matters now: the trend is pushing people toward a device that has not received software and security updates in years, at a time when phones sit at the center of banking, messaging and account logins.
January 9, 2026
Google starts January 2026 Android system updates with WebView v144 security fixesSan Francisco, January 8, 2026, 02:34 (PST)

Google starts January 2026 Android system updates with WebView v144 security fixesSan Francisco, January 8, 2026, 02:34 (PST)

Google on Wednesday updated its January 2026 Google System Services release notes, starting the month with an Android WebView update that it said improves security and privacy and includes bug fixes. The company also said WebView v144 adds new developer features, while warning some changes may be experimental. Google Help The entry matters because Google has spent years carving Android into pieces it can refresh outside big operating-system releases. Android 10 introduced “Mainline,” a modular update system designed to let Google and its partners ship fixes more broadly and faster than the traditional device-maker firmware cycle. Android Open Source Project
January 8, 2026
Android Security Checklist (Dec 29, 2025): 10 Quick Checks to Protect Your Phone From New Year APK Scams

Android Security Checklist (Dec 29, 2025): 10 Quick Checks to Protect Your Phone From New Year APK Scams

New Year scams and delayed update channels are putting Android users at risk. Here’s a 10-step Android security checklist—updates, permissions, Find Hub, backups, and more—to lock down your phone today. December 29 is one of the worst days of the year to be careless with your phone. You’ve got year-end travel, new devices being set up, family group chats buzzing—and scammers know it.
December 29, 2025
iOS 26.2 Is Out: Critical WebKit Security Fixes, AirDrop Codes, and 14 iPhone Shortcuts to Try Today (Dec 14, 2025)

iOS 26.2 Is Out: Critical WebKit Security Fixes, AirDrop Codes, and 14 iPhone Shortcuts to Try Today (Dec 14, 2025)

Apple’s latest iPhone update — iOS 26.2 — is now rolling out with a mix of practical new features and an urgent reason to install it: WebKit zero-day vulnerabilities that Apple says may have been exploited in targeted attacks. Apple Support+2Apple Support+2 At the same time, one of the most useful “power user” parts of iOS — the Shortcuts app — continues to evolve in iOS 26 with more actions and deeper Apple Intelligence integration. If you’ve ever wanted your iPhone to do the repetitive stuff for you, today is a great day to revisit Shortcuts and add a few that genuinely save time. Apple Support+1
December 14, 2025
iOS 26.2 Update: Apple Urges iPhone Users to Install Critical Security Fixes, Adds Liquid Glass Lock Screen Controls, AirDrop Codes, and More

iOS 26.2 Update: Apple Urges iPhone Users to Install Critical Security Fixes, Adds Liquid Glass Lock Screen Controls, AirDrop Codes, and More

Apple’s latest iPhone software update, iOS 26.2, is now the center of today’s tech headlines for two big reasons: security and usability. On the security side, Apple’s official notes confirm fixes for WebKit bugs that may have been exploited in “extremely sophisticated” targeted attacks, alongside a long list of additional vulnerabilities. On the usability side, iOS 26.2 continues Apple’s pivot on the controversial Liquid Glass design by letting you dial back transparency on the Lock Screen clock, responding to ongoing readability complaints. Apple Support+3Apple Support+3TechCrunch+3 Below is a detailed, publication-ready roundup of everything that matters today: what’s fixed, what’s new, why the update is being framed as “install now,” and what iPhone owners in Australia should know about an emergency-calling
December 13, 2025
Android Face Unlock Is Finally Getting Serious: Polar ID, Galaxy S27 Ultra Leaks, and the Race to Beat Face ID

Android Face Unlock Is Finally Getting Serious: Polar ID, Galaxy S27 Ultra Leaks, and the Race to Beat Face ID

A new wave of leaks and a fresh Metalenz–UMC production deal suggest Android phones — including Samsung’s rumored Galaxy S27 Ultra — are about to get Face ID‑class secure facial recognition. In the space of just ten days, a niche optics startup, a big semiconductor foundry, and a flurry of Samsung leaks have turned Android facial recognition from a long‑running disappointment into one of the hottest stories in mobile.
November 17, 2025
Your Phone’s Default Apps Are Spying on You — Here’s How to Reclaim Your Privacy

Your Phone’s Default Apps Are Spying on You — Here’s How to Reclaim Your Privacy

Smartphone users often assume that the apps pre-installed on Android or iPhone respect their privacy. In reality, built-in apps from Google and Apple collect vast amounts of data by design. Cybersecurity researchers and privacy advocates have repeatedly warned that default phone tools spy on you. For example, a 2025 study by Trinity College Dublin found that Google’s Play Store and Play Services quietly drop advertising “cookies” and device identifiers on Android phones without user consent tcd.ie. On iPhones, Aalto University’s Janne Lindqvist reports that apps like Safari, Siri and even FaceTime keep gathering information in the background – “because these apps are glued to the platform, getting rid of them is virtually impossible” nasdaq.com. In short, default apps often leak
October 19, 2025
PayPal and Venmo Crash Leaves Millions Locked Out – Are Your Funds Safe?

PayPal and Venmo Crash Leaves Millions Locked Out – Are Your Funds Safe?

On Thursday morning, millions of people worldwide discovered they couldn’t access PayPal or Venmo, two of the most widely used online payment platforms. Users began reporting issues around mid-morning U.S. time – roughly 11 a.m. Eastern – when both services suddenly stopped functioning properly foxbusiness.com. According to Downdetector, which monitors crowdsourced outage reports, the surge in error reports was immediate and massive techradar.com. By noon ET, nearly 10,000 users had reported PayPal problems and over 8,000 did so for Venmo, indicating a widespread failure across both apps techradar.com. People affected by the outage couldn’t log into their accounts, check their balances, view recent transactions, or send and receive payments – essentially, the core functions of the apps were unavailable techradar.com.
October 17, 2025