Cybersecurity researchers at Barracuda uncovered GhostFrame, a slick phishing-as-a-service (PhaaS) kit, back in September 2025. By early December, it powered…
Hackers have found a way to secretly track users on popular messaging apps like WhatsApp and Signal using delivery receipts.…
CISA has added CVE-2025-55182, dubbed React2Shell, to its Known Exploited Vulnerabilities (KEV) catalog due to confirmed active exploitation. This critical…
Cal.com, a popular open-source scheduling platform, faces a critical authentication flaw that allows attackers to bypass password checks by using…
Security researchers at JFrog uncovered three critical zero-day flaws in PickleScan, a key tool for detecting malware in Python pickle-based…
Security researchers have released React Server Components Surface Exposure Scanner, a free tool to detect exposed endpoints vulnerable to CVE-2025-55182.…
Freedom Mobile, a primary Canadian wireless provider, disclosed a data breach on December 3, 2025, affecting a limited number of…
A significant data breach at Marquis Software Solutions has exposed sensitive customer information from dozens of U.S. banks and credit…
Security researcher Lucas Laise from Quarkslab discovered a serious privilege escalation vulnerability in K7 Ultimate Security, an antivirus software from…
A critical remote code execution flaw, tracked as CVE-2025-55182 and dubbed React2Shell, affects React Server Components in the React 19…