Software supply chain attacks are evolving as open source and AI-generated code introduce new third-party risks. Learn how ...

Hacker interest is high in a days-old vulnerability in widely used web application framework React, with dozens of ...

In early December 2025, the React core team disclosed two new vulnerabilities affecting React Server Components (RSC). These issues – Denial-of-Service and Source Code Exposure were found by security ...

Warnings continue to mount over a critical vulnerability in the widely used web application framework React, with threat ...

Over the weekend, ​Google's threat intelligence team linked five more Chinese hacking groups to attacks exploiting the ...

North Korea-linked attackers exploit CVE-2025-55182 to deploy EtherRAT, a smart-contract-based RAT with multi-stage ...

How attackers exploit malicious, vulnerable software libraries to launch stealth attacksBy Andrzej Jarmolowicz, Operations Director at Cybershure, which is the distributor of CyberCyte.Issued by ...

A new variant of the BeaverTail malware linked to North Korean hackers has been identified targeting cryptocurrency traders ...

Cloudflare activates automatic WAF protection against a major React Server Components flaw as developers race to patch vulnerable systems worldwide.

Hackers exploit a critical React JavaScript vulnerability, CVE-2025-55182, to deploy crypto wallet drainers on legitimate websites ...

A fake NuGet package mimicking Tracer.Fody stayed online for years, stealing Stratis wallet files and passwords from Windows ...

A new campaign dubbed 'GhostPoster' is hiding JavaScript code in the image logo of malicious Firefox extensions counting more ...