Dark Reading

Attackers Use New Tool to Scan for React2Shell Exposure

Researchers say threat actors used the sophisticated — and unfortunately named — toolkit to target high-value networks for ...
HotHardware

Millions At Risk As Attackers Exploit This Alarming WinRAR Security Flaw

Remember the WinRAR path handling exploit we reported on back in August? According to Google, that same flaw, officially dubbed CVE-2025-8088, is still being actively exploited, even though versions ...
Kotaku

Steam Game Devs Call Exploit Allegations ‘Clickbait Exaggeration’ And ‘Malicious ...

The developers behind a popular “open source MMO RTS sandbox game for programming enthusiasts” on Steam, named Screeps: World, have been forced to update their game “in order to protect both players” ...
CSOonline

Vulnerability prioritization beyond the CVSS number

CVSS gives you the number, but context gives you the danger: It’s how vulnerabilities spread through trusted systems that really matters. The common vulnerability scoring system (CVSS) has long served ...
CoinTelegraph

Saga pauses chainlet after $7M exploit that depegged its stablecoin

Saga’s US dollar-pegged stablecoin has dropped to $0.75, while the protocol's total value locked has fallen by around 55% over the past 24 hours. Layer-1 blockchain protocol Saga has paused its ...
The Hacker News

Search results for java Vulnerability — Latest News, Reports & Analysis | The Hacker News

Do you still have Java installed? There is a bad news for you ! FireEye has detected yet another Java zero-day vulnerability being exploited in attacks in the wild. The vulnerability targets browsers ...
decrypt

Ethereum DeFi Platform Makina Hit by Flash Loan Exploit, Loses $4M in ETH

Add Decrypt as your preferred source to see more of our stories on Google. Ethereum-based DeFi platform Makina Finance has lost over $4 million in ETH following a flash loan exploit. Most of the funds ...
HotHardware

This Copilot Exploit Bypasses Safeguards, Steals Data, Even After Chat Is Closed

As AI gets more heavily integrated into Windows, enhanced cybersecurity is required to prevent it from being used against us. Take Reprompt, for example. Reprompt is a Copilot exploit, that can use ...
Bleeping Computer

Exploit code public for critical FortiSIEM command injection flaw

Technical details and a public exploit have been published for a critical vulnerability affecting Fortinet's Security Information and Event Management (SIEM) solution that could be leveraged by a ...
Game Rant

ARC Raiders Players Have Found a New Exploit That Gives PC Player an Unfair Advantage

Pam's Colecovision was her babysitter, from the age of 4 or 5, but the family only had one game. Over and over, hour after hour, she'd climb and jump through the three levels of Donkey Kong. But the ...
dlnews

Truebit hit by $26m exploit as attackers increasingly target older DeFi protocols

Truebit suffers a $26 million exploit. It comes as attacks targeting older DeFi protocols increase. Truebit, an Ethereum-based verification protocol, has been left reeling after a hacker stole $26 ...
SecurityWeek

Exploit for VMware Zero-Day Flaws Likely Built a Year Before Public Disclosure

Fresh attacks targeted three VMware ESXi vulnerabilities that were disclosed in March 2025 as zero-days. A Chinese threat actor built an exploit for three VMware ESXi vulnerabilities that were patched ...