InfoWorld

React2Shell is the Log4j moment for front end development

Attackers are exploiting a Flight protocol validation failure that allows them to execute arbitrary code without ...
Developer Tech

Log4j downloads shows supply chain wake-up call ignored

Ongoing vulnerable Log4j downloads suggest the supply chain crisis wasn't the wake-up call it should have been.

Solving The Clarity Problem For Vulnerability Management

As disclosure-to-exploitation timelines compress, organizations are rethinking how they validate exploitability and ...

Porn Hack—Has Your Pornhub Search And View History Leaked?

There’s something particularly frightening about porn and similar data breaches — it’s an internet nightmare come true. No ...
SecurityWeek

Chinese Hackers Exploiting React2Shell Vulnerability

Threat actors have apparently started exploiting the newly disclosed React vulnerability tracked as React2Shell and CVE-2025-55182.
Bleeping Computer

Grafana warns of max severity admin spoofing vulnerability

Grafana Labs is warning of a maximum severity vulnerability (CVE-2025-41115) in its Enterprise product that can be exploited to treat new users as administrators or for privilege escalation. The issue ...
Sky

Bigger than COVID? The graph that explains why AI is going to be so huge

Artificial intelligence is getting very good, very fast. Whether it's music, text, code or imagery, the time when it was reliably possible to tell the difference between AI and human outputs is ...
Cloud Security Alliance

Microsoft Entra ID Vulnerability: The Discovery That Shook Identity Security

An in-depth examination of the Microsoft Entra ID vulnerability exposing tenant isolation weaknesses, MFA gaps, and ...