RIT Information Security

A newly revealed flaw in WhatsApp and Signal allows attackers to silently track users in real time and even drain their phone batteries and data. Security researchers warn that by exploiting delivery receipts and measuring round‑trip times, adversaries can monitor over 3 billion users worldwide simply by knowing their phone number, uncovering details such as when someone is home, asleep, or actively online—all without triggering notifications. The vulnerability, dubbed Silent Whisper, highlights a fundamental weakness in the messaging protocols and raises urgent concerns about privacy and resilience against stealth surveillance.
Read more here;

Over 3 billion WhatsApp and Signal users can be tracked in real time by anyone A publicly released tool can exploit a vulnerability in WhatsApp and Signal’s delivery receipts to secretly track the real-time activity of over three billion users, while also draining battery and data.

Cybernews just released the most common passwords of 2025, and the results are rough. “123456” was found over 7.6 million times in leaked data. Other top offenders include “admin,” “password,” and “1234567890.”
These weak passwords make it easy for attackers to break into accounts. If you’re using anything on that list, it’s time to upgrade.
Security tip: Try a passphrase instead of a password. Four random words are easier to remember and harder to crack due to the length. For example:
PurpleT0astersDancingQuietly
or
47M00nwalkingCactuses!
Even better, use a password manager to generate and store strong one's for you.
Read more:

These are the most common passwords of 2025 According to the latest research, users still often opt for weak passwords like ‘123456’, ‘admin’, and ‘password’.

On October 31, an R1 research university in the Northeast United States was targeted in a major cyberattack. A compromised employee account was used to send mass emails to more than 700,000 people, criticizing the university's security and threatening to leak personal data.

The breach exposed sensitive information for over 1.2 million individuals, including donation history, estimated net worth, and demographic details. The university is working with the FBI to investigate.

Security tip: If an email seems off, confirm with the sender before clicking.