Bleeping Computer

Google fixes eighth Chrome zero-day exploited in attacks in 2025

Update December 12, 18:43 EST: This vulnerability is now tracked as CVE-2025-14174 and has also been patched by Apple in iOS, iPadOS, macOS, tvOS, watchOS, and visionOS. Google has released emergency ...
Bleeping Computer

React2Shell flaw exploited to breach 30 orgs, 77k IP addresses vulnerable

Over 77,000 Internet-exposed IP addresses are vulnerable to the critical React2Shell remote code execution flaw (CVE-2025-55182), with researchers now confirming that attackers have already ...
Infosecurity-magazine.com

React2Shell Exploit Campaigns Tied to North Korean Cyber Intrusion Tactics

Security researchers at Sysdig have observed new campaigns exploiting React2Shell which appear to have the hallmarks of North Korean hackers. React2Shell is a remote code execution vulnerability in ...
9NEWS

A man admitted to sexually exploiting a teen in Douglas County. A judge ruled he would not go to prison

DOUGLAS COUNTY, Colo. — A man who pleaded guilty to sexually exploiting a 15-year-old girl avoided prison in Douglas County Court this week. Prosecutors say a “legal loophole” in Colorado law allowed ...
CSOonline

Gladinet servers file-sharing servers allow remote code execution

Enterprises relying on Gladinet’s file-sharing services are faced with another round of zero-day patching, this time to block attackers from abusing cryptographic keys directly baked into its ...