Security
Headlines

Headlines Latest CVEs

Headlines

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

1 day ago

The Hacker News

React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency Mitigation

1 day ago

The Hacker News

ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and 20 More Stories

2 days ago

The Hacker News

React2Shell Exploitation Delivers Crypto Miners and New Malware Across Multiple Sectors

3 days ago

The Hacker News

North Korean Hackers Deploy EtherRAT Malware in React2Shell Exploits

3 days ago

North Korea-linked Actors Exploit React2Shell to Deploy New EtherRAT Malware

4 days ago

The Hacker News

⚡ Weekly Recap: USB Malware, React2Shell, WhatsApp Worms, AI IDE Bugs & More

5 days ago

The Hacker News

Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation

7 days ago

The Hacker News

Chinese Hackers Have Started Exploiting the Newly Disclosed React2Shell Vulnerability

8 days ago

The Hacker News

GHSA-fv66-9v8q-g76r: React Server Components are Vulnerable to RCE

10 days ago

One newsletter to rule them all

One newsletter to rule them all

2 days ago

New BYOVD loader behind DeadLock ransomware attack

4 days ago

ThreatsDay Bulletin: CarPlay Exploit, BYOVD Tactics, SQL C2 Attacks, iCloud Backdoor Demand & More

2 months ago

The Hacker News

GHSA-5j59-xgg2-r9c4: Next has a Denial of Service with Server Components - Incomplete Fix Follow-Up

GHSA-5j59-xgg2-r9c4: Next has a Denial of Service with Server Components - Incomplete Fix Follow-Up

1 day ago

GHSA-7gmr-mq3h-m5h9: Denial of Service Vulnerability in React Server Components

1 day ago

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

1 day ago

The Hacker News

Another Chrome zero-day under attack: update now

Another Chrome zero-day under attack: update now

2 days ago

Chrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity Flaw

3 days ago

The Hacker News

⚡ Weekly Recap: Fortinet Exploit, Chrome 0-Day, BadIIS Malware, Record DDoS, SaaS Breach & More

19 days ago

The Hacker News

November Linux Patch Wednesday

22 days ago

Alexander V. Leonov

Chrome zero-day under active attack: visiting the wrong site could hijack your browser

25 days ago

CVE-2025-13224: Chromium: CVE-2025-13224 Type Confusion in V8

25 days ago

Microsoft Security Response Center

CVE-2025-13223: Chromium: CVE-2025-13223 Type Confusion in V8

25 days ago

Microsoft Security Response Center

Google Issues Security Fix for Actively Exploited Chrome V8 Zero-Day Vulnerability

26 days ago

The Hacker News

December Patch Tuesday fixes three zero-days, including one that hijacks Windows devices

December Patch Tuesday fixes three zero-days, including one that hijacks Windows devices

3 days ago

Microsoft Issues Security Fixes for 56 Flaws, Including Active Exploit and Two Zero-Days

3 days ago

The Hacker News

CVE-2025-64671: GitHub Copilot for Jetbrains Remote Code Execution Vulnerability

4 days ago

Microsoft Security Response Center

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

1 day ago

The Hacker News

React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency Mitigation

1 day ago

The Hacker News

ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and 20 More Stories

2 days ago

The Hacker News

React2Shell Exploitation Delivers Crypto Miners and New Malware Across Multiple Sectors

3 days ago

The Hacker News

North Korean Hackers Deploy EtherRAT Malware in React2Shell Exploits

3 days ago

North Korea-linked Actors Exploit React2Shell to Deploy New EtherRAT Malware

4 days ago

The Hacker News

⚡ Weekly Recap: USB Malware, React2Shell, WhatsApp Worms, AI IDE Bugs & More

5 days ago

The Hacker News

Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation

7 days ago

The Hacker News

Chinese Hackers Have Started Exploiting the Newly Disclosed React2Shell Vulnerability

8 days ago

The Hacker News

GHSA-fv66-9v8q-g76r: React Server Components are Vulnerable to RCE

10 days ago

ThreatsDay Bulletin: AI Malware, Voice Bot Flaws, Crypto Laundering, IoT Attacks — and 20 More Stories

16 days ago

The Hacker News

Experts Reports Sharp Increase in Automated Botnet Attacks Targeting PHP Servers and IoT Devices

1 month ago

The Hacker News

RondoDox Botnet Exploits Flaws in TBK DVRs and Four-Faith Routers to Launch DDoS Attacks

5 months ago

The Hacker News

Unpatched Gogs Zero-Day Exploited Across 700+ Instances Amid Active Attacks

Unpatched Gogs Zero-Day Exploited Across 700+ Instances Amid Active Attacks

2 days ago

The Hacker News

GHSA-mq8m-42gh-wq7r: Gogs vulnerable to a bypass of CVE-2024-55947

3 days ago

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

1 day ago

The Hacker News

React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency Mitigation

1 day ago

The Hacker News

ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and 20 More Stories

2 days ago

The Hacker News

React2Shell Exploitation Delivers Crypto Miners and New Malware Across Multiple Sectors

3 days ago

The Hacker News

North Korean Hackers Deploy EtherRAT Malware in React2Shell Exploits

3 days ago

North Korea-linked Actors Exploit React2Shell to Deploy New EtherRAT Malware

4 days ago

The Hacker News

⚡ Weekly Recap: USB Malware, React2Shell, WhatsApp Worms, AI IDE Bugs & More

5 days ago

The Hacker News

Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation

7 days ago

The Hacker News

Chinese Hackers Have Started Exploiting the Newly Disclosed React2Shell Vulnerability

8 days ago

The Hacker News

GHSA-fv66-9v8q-g76r: React Server Components are Vulnerable to RCE

10 days ago

Apple Issues Security Updates After Two WebKit Flaws Found Exploited in the Wild

Apple Issues Security Updates After Two WebKit Flaws Found Exploited in the Wild

1 day ago

The Hacker News

CISA Warns of Active Spyware Campaigns Hijacking High-Value Signal and WhatsApp Users

19 days ago

The Hacker News

Samsung Zero-Click Flaw Exploited to Deploy LANDFALL Android Spyware via WhatsApp

1 month ago

The Hacker News

Apple Backports Fix for CVE-2025-43300 Exploited in Sophisticated Spyware Attack

2 months ago

The Hacker News

Apple Warns French Users of Fourth Spyware Campaign in 2025, CERT-FR Confirms

3 months ago

The Hacker News

Microsoft Patch Tuesday, September 2025 Edition

3 months ago

Krebs on Security

CISA Adds TP-Link Wi-Fi and WhatsApp Spyware Flaws to KEV List

3 months ago

CISA Adds TP-Link and WhatsApp Flaws to KEV Catalog Amid Active Exploitation

3 months ago

The Hacker News

WhatsApp fixes vulnerability used in zero-click attacks

3 months ago

⚡ Weekly Recap: WhatsApp 0-Day, Docker Bug, Salesforce Breach, Fake CAPTCHAs, Spyware App & More

3 months ago

The Hacker News

Senator Chides FBI for Weak Advice on Mobile Security

5 months ago

Krebs on Security

Apple Zero-Click Flaw in Messages Exploited to Spy on Journalists Using Paragon Spyware

6 months ago

The Hacker News

Apple patches security vulnerabilities in iOS and iPadOS. Update now!

8 months ago

Apple Patches Two Actively Exploited iOS Flaws Used in Sophisticated Targeted Attacks

8 months ago

The Hacker News

April Microsoft Patch Tuesday

8 months ago

Alexander V. Leonov

Apple Backports Critical Fixes for 3 Live Exploits Impacting iOS and macOS Legacy Devices

8 months ago

The Hacker News

March Linux Patch Wednesday

8 months ago

Alexander V. Leonov

Update your iPhone now: Apple patches vulnerability used in “extremely sophisticated attacks”

9 months ago

CVE-2025-24201: Chromium: CVE-2025-24201 Out of bounds write in GPU on Mac

9 months ago

Microsoft Security Response Center

Apple Releases Patch for WebKit Zero-Day Vulnerability Exploited in Targeted Attacks

9 months ago

The Hacker News

Apple Confirms ‘Extremely Sophisticated’ Exploit Threatening iOS Security

10 months ago

Microsoft Patch Tuesday, February 2025 Edition

10 months ago

Krebs on Security

Apple Releases Urgent Patch for USB Vulnerability

10 months ago

Apple fixes zero-day vulnerability used in “extremely sophisticated attack”

10 months ago

Apple Patches Actively Exploited iOS Zero-Day CVE-2025-24200 in Emergency Update

10 months ago

The Hacker News

Apple users: Update your devices now to patch zero-day vulnerability

10 months ago

Apple Patches Actively Exploited Zero-Day Affecting iPhones, Macs, and More

10 months ago

The Hacker News

Apple Patches Actively Exploited Zero-Day Vulnerability

10 months ago

CISA Adds Actively Exploited Sierra Wireless Router Flaw Enabling RCE Attacks

CISA Adds Actively Exploited Sierra Wireless Router Flaw Enabling RCE Attacks

19 hours ago

The Hacker News

RondoDox Botnet Exploits Flaws in TBK DVRs and Four-Faith Routers to Launch DDoS Attacks

5 months ago

The Hacker News

March episode “In the Trend of VM” (#13): vulnerabilities of Microsoft, PAN-OS, СommuniGate and who should patch hosts with deployed application

7 months ago

Alexander V. Leonov

Russian Host Proton66 Tied to SuperBlack and WeaXor Ransomware

7 months ago

About Authentication Bypass – PAN-OS (CVE-2025-0108) vulnerability

9 months ago

Alexander V. Leonov

Patch Now: CISA Warns of Palo Alto Flaw Exploited in the Wild

9 months ago

CISA Adds Palo Alto Networks and SonicWall Flaws to Exploited Vulnerabilities List

9 months ago

The Hacker News

Chinese APT 'Emperor Dragonfly' Moonlights With Ransomware

10 months ago

Palo Alto Networks Patches Authentication Bypass Exploit in PAN-OS Software

10 months ago

The Hacker News

Critical Vulnerabilities in Moxa Routers Allow Root Privilege Escalation

11 months ago

New episode “In The Trend of VM” (#10): 8 trending vulnerabilities of November, zero budget VM and who should look for patches

11 months ago

Alexander V. Leonov

Critical Flaw Exposes Four-Faith Routers to Remote Exploitation

11 months ago

15,000+ Four-Faith Routers Exposed to New Exploit Due to Default Credentials

11 months ago

The Hacker News

Siemens RUGGEDCOM APE1808

12 months ago

About Elevation of Privilege – PAN-OS (CVE-2024-9474) vulnerability

12 months ago

Alexander V. Leonov

About Authentication Bypass – PAN-OS (CVE-2024-0012) vulnerability

12 months ago

Alexander V. Leonov

Operation Lunar Peek: More Than 2,000 Palo Alto Network Firewalls Hacked

12 months ago

Palo Alto PAN-OS Authentication Bypass / Remote Command Execution

12 months ago

Palo Alto Networks Patches Critical Zero-Day Firewall Bug

1 year ago

The many vulnerabilities Talos discovered in SOHO and industrial wireless routers post-VPNFilter

2 years ago

.NET SOAPwn Flaw Opens Door for File Writes and Remote Code Execution via Rogue WSDL

.NET SOAPwn Flaw Opens Door for File Writes and Remote Code Execution via Rogue WSDL

3 days ago

The Hacker News

Fortinet, Ivanti, and SAP Issue Urgent Patches for Authentication and Code Execution Flaws

4 days ago

The Hacker News

CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog

CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog

2 days ago

The Hacker News

GHSA-fjf5-xgmq-5525: GeoServer is vulnerable to Unauthenticated XML External Entities (XXE) attack via WMS GetMap feature

18 days ago

Threatsday Bulletin: Rootkit Patch, Federal Breach, OnePlus SMS Leak, TikTok Scandal & More

2 months ago

The Hacker News

CISA: Attackers Breach Federal Agency via Critical GeoServer Flaw

2 months ago

GeoServer Exploits, PolarEdge, and Gayfemboy Push Cybercrime Beyond Traditional Botnets

3 months ago

The Hacker News

AndroxGh0st Malware Integrates Mozi Botnet to Target IoT and Cloud Services

1 year ago

The Hacker News

Androxgh0st Botnet Integrates Mozi, Expands Attacks on IoT Vulnerabilities

1 year ago

Chinese Hackers Exploit GeoServer Flaw to Target APAC Nations with EAGLEDOOR Malware

1 year ago

The Hacker News

China's 'Earth Baxia' Spies Exploit Geoserver to Target APAC Orgs

1 year ago

GeoServer Remote Code Execution

1 year ago

GeoServer Vulnerability Targeted by Hackers to Deliver Backdoors and Botnet Malware

1 year ago

The Hacker News

.NET SOAPwn Flaw Opens Door for File Writes and Remote Code Execution via Rogue WSDL

.NET SOAPwn Flaw Opens Door for File Writes and Remote Code Execution via Rogue WSDL

3 days ago

The Hacker News

Fortinet, Ivanti, and SAP Issue Urgent Patches for Authentication and Code Execution Flaws

4 days ago

The Hacker News

⚡ Weekly Recap: Lazarus Hits Web3, Intel/AMD TEEs Cracked, Dark Web Leak Tool & More

1 month ago

The Hacker News

GHSA-vfww-5hm6-hx2j: Apache Tomcat Vulnerable to Improper Neutralization of Escape, Meta, or Control Sequences

1 month ago

December Patch Tuesday fixes three zero-days, including one that hijacks Windows devices

December Patch Tuesday fixes three zero-days, including one that hijacks Windows devices

3 days ago

Microsoft Issues Security Fixes for 56 Flaws, Including Active Exploit and Two Zero-Days

3 days ago

The Hacker News

Microsoft Patch Tuesday for December 2025 — Snort rules and prominent vulnerabilities

4 days ago

CVE-2025-62458: Win32k Elevation of Privilege Vulnerability

4 days ago

Microsoft Security Response Center

CVE-2025-62557: Microsoft Office Remote Code Execution Vulnerability

4 days ago

Microsoft Security Response Center

CVE-2025-62456: Windows Resilient File System (ReFS) Remote Code Execution Vulnerability

4 days ago

Microsoft Security Response Center

CVE-2025-62549: Windows Routing and Remote Access Service (RRAS) Remote Code Execution Vulnerability

4 days ago

Microsoft Security Response Center

CVE-2025-62454: Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

4 days ago

Microsoft Security Response Center

CVE-2025-62556: Microsoft Excel Remote Code Execution Vulnerability

4 days ago

Microsoft Security Response Center

CVE-2025-62470: Windows Common Log File System Driver Elevation of Privilege Vulnerability

4 days ago

Microsoft Security Response Center

CVE-2025-62472: Windows Remote Access Connection Manager Elevation of Privilege Vulnerability

4 days ago

Microsoft Security Response Center

CVE-2025-59516: Windows Storage VSP Driver Elevation of Privilege Vulnerability

4 days ago

Microsoft Security Response Center

CVE-2025-59517: Windows Storage VSP Driver Elevation of Privilege Vulnerability

4 days ago

Microsoft Security Response Center

CVE-2025-62554: Microsoft Office Remote Code Execution Vulnerability

4 days ago

Microsoft Security Response Center

CVE-2025-62553: Microsoft Excel Remote Code Execution Vulnerability

4 days ago

Microsoft Security Response Center

CVE-2025-62221: Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

4 days ago

Microsoft Security Response Center

GHSA-5j59-xgg2-r9c4: Next has a Denial of Service with Server Components - Incomplete Fix Follow-Up

GHSA-5j59-xgg2-r9c4: Next has a Denial of Service with Server Components - Incomplete Fix Follow-Up

1 day ago

GHSA-7gmr-mq3h-m5h9: Denial of Service Vulnerability in React Server Components

1 day ago

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

1 day ago

The Hacker News

React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency Mitigation

1 day ago

The Hacker News

GHSA-w37m-7fhw-fmv9: Next Server Actions Source Code Exposure

2 days ago

GHSA-mwv6-3258-q52c: Next Vulnerable to Denial of Service with Server Components

2 days ago

GHSA-2m3v-v2m8-q956: Denial of Service Vulnerability in React Server Components

2 days ago

GHSA-925w-6v3x-g4j4: Source Code Exposure Vulnerability in React Server Components

2 days ago

ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and 20 More Stories

2 days ago

The Hacker News

React2Shell Exploitation Delivers Crypto Miners and New Malware Across Multiple Sectors

3 days ago

The Hacker News

North Korean Hackers Deploy EtherRAT Malware in React2Shell Exploits

3 days ago

North Korea-linked Actors Exploit React2Shell to Deploy New EtherRAT Malware

4 days ago

The Hacker News

⚡ Weekly Recap: USB Malware, React2Shell, WhatsApp Worms, AI IDE Bugs & More

5 days ago

The Hacker News

Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation

7 days ago

The Hacker News

Chinese Hackers Have Started Exploiting the Newly Disclosed React2Shell Vulnerability

8 days ago

The Hacker News

GHSA-fv66-9v8q-g76r: React Server Components are Vulnerable to RCE

10 days ago

December Patch Tuesday fixes three zero-days, including one that hijacks Windows devices

December Patch Tuesday fixes three zero-days, including one that hijacks Windows devices

3 days ago

Microsoft Issues Security Fixes for 56 Flaws, Including Active Exploit and Two Zero-Days

3 days ago

The Hacker News

Microsoft Patch Tuesday for December 2025 — Snort rules and prominent vulnerabilities

4 days ago

CVE-2025-62221: Windows Cloud Files Mini Filter Driver Elevation of Privilege Vulnerability

4 days ago

Microsoft Security Response Center

CVE-2025-54100: PowerShell Remote Code Execution Vulnerability

4 days ago

Microsoft Security Response Center

CVE-2025-64671: GitHub Copilot for Jetbrains Remote Code Execution Vulnerability

4 days ago

Microsoft Security Response Center

CVE-2025-62223: Microsoft Edge (Chromium-based) for Mac Spoofing Vulnerability

9 days ago

Microsoft Security Response Center

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

1 day ago

The Hacker News

React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency Mitigation

1 day ago

The Hacker News

ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and 20 More Stories

2 days ago

The Hacker News

React2Shell Exploitation Delivers Crypto Miners and New Malware Across Multiple Sectors

3 days ago

The Hacker News

North Korean Hackers Deploy EtherRAT Malware in React2Shell Exploits

3 days ago

North Korea-linked Actors Exploit React2Shell to Deploy New EtherRAT Malware

4 days ago

The Hacker News

⚡ Weekly Recap: USB Malware, React2Shell, WhatsApp Worms, AI IDE Bugs & More

5 days ago

The Hacker News

Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation

7 days ago

The Hacker News

Chinese Hackers Have Started Exploiting the Newly Disclosed React2Shell Vulnerability

8 days ago

The Hacker News

GHSA-fv66-9v8q-g76r: React Server Components are Vulnerable to RCE

10 days ago

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

1 day ago

The Hacker News

React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency Mitigation

1 day ago

The Hacker News

ThreatsDay Bulletin: Spyware Alerts, Mirai Strikes, Docker Leaks, ValleyRAT Rootkit — and 20 More Stories

2 days ago

The Hacker News

React2Shell Exploitation Delivers Crypto Miners and New Malware Across Multiple Sectors

3 days ago

The Hacker News

North Korean Hackers Deploy EtherRAT Malware in React2Shell Exploits

3 days ago

North Korea-linked Actors Exploit React2Shell to Deploy New EtherRAT Malware

4 days ago

The Hacker News

⚡ Weekly Recap: USB Malware, React2Shell, WhatsApp Worms, AI IDE Bugs & More

5 days ago

The Hacker News

Critical React2Shell Flaw Added to CISA KEV After Confirmed Active Exploitation

7 days ago

The Hacker News

Chinese Hackers Have Started Exploiting the Newly Disclosed React2Shell Vulnerability

8 days ago

The Hacker News

GHSA-fv66-9v8q-g76r: React Server Components are Vulnerable to RCE

10 days ago

Warning: WinRAR Vulnerability CVE-2025-6218 Under Active Attack by Multiple Threat Groups

Warning: WinRAR Vulnerability CVE-2025-6218 Under Active Attack by Multiple Threat Groups

3 days ago

The Hacker News

APT24 Deploys BADAUDIO in Years-Long Espionage Hitting Taiwan and 1,000+ Domains

22 days ago

The Hacker News

From Log4j to IIS, China’s Hackers Turn Legacy Bugs into Global Espionage Tools

1 month ago

The Hacker News

Trojanized ESET Installers Drop Kalambur Backdoor in Phishing Attacks on Ukraine

1 month ago

The Hacker News

Russian Hackers Target Ukrainian Organizations Using Stealthy Living-Off-the-Land Tactics

1 month ago

The Hacker News

APT36 Targets Indian Government with Golang-Based DeskRAT Malware Campaign

1 month ago

The Hacker News

About Remote Code Execution – WinRAR (CVE-2025-6218, CVE-2025-8088) vulnerabilities

3 months ago

Alexander V. Leonov

WinRAR vulnerability exploited by two different groups

4 months ago

WinRAR Zero-Day Under Active Exploitation – Update to Latest Version Immediately

4 months ago

The Hacker News

WinRAR Zero-Day CVE-2025-8088 Exploited to Spread RomCom Malware

4 months ago

Unpatched Gogs Zero-Day Exploited Across 700+ Instances Amid Active Attacks

Unpatched Gogs Zero-Day Exploited Across 700+ Instances Amid Active Attacks

2 days ago

The Hacker News

GHSA-mq8m-42gh-wq7r: Gogs vulnerable to a bypass of CVE-2024-55947

3 days ago

GHSA-qf5v-rp47-55gg: Path Traversal in file update API in gogs

11 months ago

GHSA-5j59-xgg2-r9c4: Next has a Denial of Service with Server Components - Incomplete Fix Follow-Up

GHSA-5j59-xgg2-r9c4: Next has a Denial of Service with Server Components - Incomplete Fix Follow-Up

1 day ago

GHSA-7gmr-mq3h-m5h9: Denial of Service Vulnerability in React Server Components

1 day ago

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

1 day ago

The Hacker News

GHSA-mwv6-3258-q52c: Next Vulnerable to Denial of Service with Server Components

2 days ago

GHSA-2m3v-v2m8-q956: Denial of Service Vulnerability in React Server Components

2 days ago

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

1 day ago

The Hacker News

GHSA-w37m-7fhw-fmv9: Next Server Actions Source Code Exposure

2 days ago

GHSA-925w-6v3x-g4j4: Source Code Exposure Vulnerability in React Server Components

2 days ago

Active Attacks Exploit Gladinet's Hard-Coded Keys for Unauthorized Access and Code Execution

Active Attacks Exploit Gladinet's Hard-Coded Keys for Unauthorized Access and Code Execution

3 days ago

The Hacker News

Hackers Exploiting Triofox Flaw to Install Remote Access Tools via Antivirus Feature

1 month ago

The Hacker News

CISA Adds Gladinet and CWP Flaws to KEV Catalog Amid Active Exploitation Evidence

1 month ago

The Hacker News

⚡ Weekly Recap: WhatsApp Worm, Critical CVEs, Oracle 0-Day, Ransomware Cartel & More

2 months ago

The Hacker News

From LFI to RCE: Active Exploitation Detected in Gladinet and TrioFox Vulnerability

2 months ago

The Hacker News

CVE-2025-14373: Chromium: CVE-2025-14373 Inappropriate implementation in Toolbar

CVE-2025-14373: Chromium: CVE-2025-14373 Inappropriate implementation in Toolbar

2 days ago

Microsoft Security Response Center

CVE-2025-14372: Chromium: CVE-2025-14372 Use after free in Password Manager

2 days ago

Microsoft Security Response Center

Another Chrome zero-day under attack: update now

2 days ago

Chrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity Flaw

3 days ago

The Hacker News

Intellexa Leaks Reveal Zero-Days and Ads-Based Vector for Predator Spyware Delivery

8 days ago

The Hacker News

⚡ Weekly Recap: Fortinet Exploit, Chrome 0-Day, BadIIS Malware, Record DDoS, SaaS Breach & More

19 days ago

The Hacker News

November Linux Patch Wednesday

22 days ago

Alexander V. Leonov

Chrome zero-day under active attack: visiting the wrong site could hijack your browser

25 days ago

CVE-2025-13224: Chromium: CVE-2025-13224 Type Confusion in V8

25 days ago

Microsoft Security Response Center

CVE-2025-13223: Chromium: CVE-2025-13223 Type Confusion in V8

25 days ago

Microsoft Security Response Center

Google Issues Security Fix for Actively Exploited Chrome V8 Zero-Day Vulnerability

26 days ago

The Hacker News

New Dante Spyware Linked to Rebranded Hacking Team, Now Memento Labs

1 month ago

Chrome Zero-Day Exploited to Deliver Italian Memento Labs' LeetAgent Spyware

1 month ago

The Hacker News

Siemens HyperLynx and Industrial Edge App Publisher

1 month ago

⚡ Weekly Recap: Chrome 0-Day, AI Hacking Tools, DDR5 Bit-Flips, npm Worm & More

2 months ago

The Hacker News

CVE-2025-10585: Chromium: CVE-2025-10585 Type Confusion in V8

2 months ago

Microsoft Security Response Center

Update your Chrome today: Google patches 4 vulnerabilities including one zero-day

2 months ago

Google Patches Chrome Zero-Day CVE-2025-10585 as Active V8 Exploit Threatens Millions

2 months ago

The Hacker News

August Linux Patch Wednesday

3 months ago

Alexander V. Leonov

August Microsoft Patch Tuesday

4 months ago

Alexander V. Leonov

July Linux Patch Wednesday

4 months ago

Alexander V. Leonov

Apple Patches Safari Vulnerability Also Exploited as Zero-Day in Google Chrome

4 months ago

The Hacker News

Chrome fixes 6 security vulnerabilities. Get the update now!

4 months ago

July Microsoft Patch Tuesday

5 months ago

Alexander V. Leonov

CVE-2025-6558: Chromium: CVE-2025-6558 Incorrect validation of untrusted input in ANGLE and GPU

5 months ago

Microsoft Security Response Center

Urgent: Google Releases Critical Chrome Update for CVE-2025-6558 Exploit Active in the Wild

5 months ago

The Hacker News

CVE-2025-6554: Chromium: CVE-2025-6554 Type Confusion in V8

5 months ago

Microsoft Security Response Center

Update your Chrome to fix new actively exploited zero-day vulnerability

5 months ago

June Linux Patch Wednesday

5 months ago

Alexander V. Leonov

Google Patches Critical Zero-Day Flaw in Chrome’s V8 Engine After Active Exploitation

5 months ago

The Hacker News

Google Chrome Zero-Day CVE-2025-2783 Exploited by TaxOff to Deploy Trinper Backdoor

5 months ago

The Hacker News

Patch Tuesday, June 2025 Edition

6 months ago

Krebs on Security

June Microsoft Patch Tuesday

6 months ago

Alexander V. Leonov

Everyone's on the cyber target list

6 months ago

Google fixes another actively exploited vulnerability in Chrome, so update now!

6 months ago

CVE-2025-5419: Chromium: CVE-2025-5419 Out of bounds read and write in V8

6 months ago

Microsoft Security Response Center

6 months ago

Alexander V. Leonov

Chrome 0-Day CVE-2025-4664 Exposes Windows, Linux Browser Activity

6 months ago

CVE-2025-4664: Chromium: CVE-2025-4664 Insufficient policy enforcement in Loader

7 months ago

Microsoft Security Response Center

New Chrome Vulnerability Enables Cross-Origin Data Leak via Loader Referrer Policy

7 months ago

The Hacker News

GHSA-f87w-3j5w-v58p: CefSharp affected by incorrect handle provided in unspecified circumstances in Mojo on Windows

8 months ago

April Microsoft Patch Tuesday

8 months ago

Alexander V. Leonov