Security Boulevard

Top CVEs of December 2025

December 2025 was a brutal reality check for security teams. While most were winding down for the holidays, threat actors weaponized a tectonic shift in the landscape, headlined by the... The post Top ...
InfoWorld

React2Shell: Anatomy of a max-severity flaw that sent shockwaves through the web

The explosive, easy-to-trigger vulnerability was exploited within hours of disclosure, exposing the risks of default ...
Infosecurity-magazine.com

React2Shell Exploit Campaigns Tied to North Korean Cyber Intrusion Tactics

Security researchers at Sysdig have observed new campaigns exploiting React2Shell which appear to have the hallmarks of North Korean hackers. React2Shell is a remote code execution vulnerability in ...
CoinDesk

The divergence emerged when newer nodes accepted a malformed transaction that older nodes rejected.

A malformed transaction pushed Cardano into a brief chain split in late U.S. hours on Friday, as older and newer node versions validated transaction data submitted to the network differently. The ...
Local 12 WKRC Cincinnati

Unlicensed group homes on West Side exploit individuals in Cincinnati's opioid crisis

'It brings a smile to everybody': Decades-old Christmas tradition in NKY to come to an end After 48 years, the Peluso family decided the lights on their yearly Christmas display will shut off for good ...
CSOonline

Zero-day exploits hit Cisco ISE and Citrix systems in an advanced campaign

According to the Amazon Threat Intelligence team, attackers exploited bugs in Cisco and Citrix appliances before they were made public, deploying custom in-memory tooling against core identity ...
TWCN Tech News

How to disable Exploit Protection in Windows 11

Windows doesn’t offer a single switch to disable Exploit Protection completely. You can only disable individual mitigations system-wide or per app. We strongly recommend turning it off only for ...
TechCrunch

How an ex-L3Harris Trenchant boss stole and sold cyber exploits to Russia

Peter Williams, the former general manager of Trenchant, a division of defense contractor L3Harris that develops surveillance and hacking tools for Western governments, pleaded guilty last week to ...
CoinTelegraph

Balancer exploit swells to $116M in outflows as team offers 20% bounty

Update Nov. 3, 10:42 am UTC: This article has been updated to include a section on Berachain’s emergency hard fork. Update Nov. 3, 9:47 am UTC: This article has been updated to add the latest figures, ...
Forbes

Ongoing Ransomware Attacks Exploit Linux Vulnerability, CISA Warns

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Admit it: the first thing you think of when ransomware is ...
Infosecurity-magazine.com

Defense Contractor Boss Pleads Guilty to Selling Zero-Day Exploits to Russia

The former boss of a US defense contractor has pleaded guilty to selling zero-day exploits to a Russian cyber broker whose clients include the Kremlin. Australian national Peter Williams, 39, was ...
ExtremeTech

Microsoft Rolls Out Emergency Windows Server Update Following WSUS Exploits

Microsoft has released an emergency out-of-band security update for Windows Server to address a probable remote code execution vulnerability tracked as CVE-2025-59287. The issue affects the Windows ...