Hackers hit deportation airline GlobalX, leak flight manifests, and leave an unsubtle message for “Donnie” Trump

May 9, 2025

GlobalX Airlines, a charter airline being used by the US government for deportation flights, has been attacked by hacktivists who have made off with what they claim are detailed flight records and passenger manifests.

Read more in my article for the Hot for Security blog.

Source: Read More

Previous ArticleCVSS 10.0 Vulnerability Found in Ubiquity UniFi Protect Cameras

Next Article Google Rolls Out On-Device AI Protections to Detect Scams in Chrome and Android

Highlights

CVE-2025-48946 – Liboqs HQC Algorithmic Design Flaw Vulnerability

May 30, 2025

CVE ID : CVE-2025-48946

Published : May 30, 2025, 8:15 p.m. | 1 hour, 25 minutes ago

Description : liboqs is a C-language cryptographic library that provides implementations of post-quantum cryptography algorithms. liboqs prior to version 0.13.0 supports the HQC algorithm, an algorithm with a theoretical design flaw which leads to large numbers of malformed ciphertexts sharing the same implicit rejection value. Currently, no concrete attack on the algorithm is known. However, prospective users of HQC must take extra care when using the algorithm in protocols involving key derivation. In particular, HQC does not provide the same security guarantees as Kyber or ML-KEM. There is currently no patch for the HQC flaw available in liboqs, so HQC is disabled by default in liboqs starting from version 0.13.0. OQS will update its implementation after the HQC team releases an updated algorithm specification.

Severity: 3.7 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

GitHub’s CEO Thomas Dohmke steps down, triggering tighter integration of company within Microsoft

bitHuman launches SDK for creating AI avatars

Designing With AI, Not Around It: Practical Advanced Techniques For Product Design Use Cases

Why Companies Are Investing in AI-Powered React.js Development Services in 2025

CSS-Questions

Why we open sourced our MCP server, and what it means for you

Building a Blended Material Shader in WebGL with Solid.js

CodeSOD: Round Strips

How I Built Local-First Apps with React Native + RxDB (and Why Your App Probably Needs This Too)

How I Built Local-First Apps with React Native + RxDB (and Why Your App Probably Needs This Too)

Pompelmi – File-upload malware scanning for Node.js

Laravel’s UsePolicy Attribute: Explicit Authorization Control

OneNote Adds ‘Paste Text Only’ Across Windows, Mac, and Web

OneNote Adds ‘Paste Text Only’ Across Windows, Mac, and Web

StageHQ Review: Transform Rooms with AI Virtual Staging

Microsoft brings new pen tools and Draw tab customization to Word, Excel, and PowerPoint

Hackers hit deportation airline GlobalX, leak flight manifests, and leave an unsubtle message for “Donnie” Trump

Update WinRAR tools now: RomCom and others exploiting zero-day vulnerability

WinRAR zero-day exploited in espionage attacks against high-value targets

CVE-2025-6703 – Mozilla neqo Unvalidated Input Crash

CVE-2025-20278 – “Cisco Unified Communications Command Injection Vulnerability”

Interactive Text Destruction with Three.js, WebGPU, and TSL

IBM AI Releases Granite 4.0 Tiny Preview: A Compact Open-Language Model Optimized for Long-Context and Instruction Tasks

CVE-2025-48946 – Liboqs HQC Algorithmic Design Flaw Vulnerability

Impactful tips to enhance your website’s accessibility

This rugged Android phone has something I’ve never seen on competing models

Martech is Exploding – Where Does Sitecore Fit In?

Hackers hit deportation airline GlobalX, leak flight manifests, and leave an unsubtle message for “Donnie” Trump

Related Posts