TechCrunch

A suite of government hacking tools targeting iPhones is now being used by cybercriminals

Security researchers have identified a suite of powerful hacking tools capable of compromising iPhones running older software that they say has passed from a government customer into the hands of ...
Wired

A $10K Bounty Awaits Anyone Who Can Hack Ring Cameras to Stop Sharing Data With Amazon

The Fulu Foundation, a nonprofit that pays out bounties for removing user-hostile features, is hunting for a way to keep Ring cameras from sending data to Amazon—without breaking the hardware. The ad ...
PCGamesN

After major Arc Raiders exploit ruins games, Embark knows players want "fast action" but is taking its time to stay fair

Arc Raiders seems to be facing its first major hurdle. It cleared the first potential hazard, as players didn't seem to care that it had used generative AI for NPC voices, despite the fact it made ...
CSOonline

Exploit available for new Chrome zero-day vulnerability, says Google

Threat actors now have the ability to exploit a new zero-day vulnerability in the Chrome browser, Google has advised IT administrators. The warning comes after Google released a patch for Chrome to ...
BGR

Apple's iOS 26.3 Security Update Addresses A Huge iPhone Exploit

Apple recently released iOS 26.3, along with iPadOS 26.3, macOS Tahoe 26.3, and the respective versions for watchOS, tvOS, and visionOS. Alongside new features, the company fixed over 30 security ...
Infosecurity-magazine.com

Time to Exploit Plummets as N-Day Flaws Dominate

The time between vulnerability disclosure and exploitation has plunged 94% over the past five years as threat actors weaponize so-called “n-days,” according to a new Flashpoint study. The threat ...
IGN

Arc Raiders Players Stunned After Exploit Hotfix Results in Widespread Reports of a New Inventory Glitch

Arc Raiders players have gathered to applaud Embark Studios after it took just one day to tackle new duplication and infinite ammo exploits – even though reports of a new inventory glitch have already ...
CoinTelegraph

Truebit exploit exposes smart-contract flaw behind $26M token mint

Truebit lost $26 million after a smart-contract overflow bug let an attacker mint tokens at near-zero cost, sending the TRU price down 99%. A $26 million exploit of the offline computation protocol ...
CSOonline

React2Shell is the Log4j moment for front end development

Attackers have upped the ante in their exploits of a recently-disclosed maximum severity vulnerability in React Server Components (RSC), Next.js, and related frameworks. Attackers initially exploited ...
InfoWorld

Developers urged to immediately upgrade React, Next.js

Critical vulnerability in React library should be treated by IT as they did Log4j - as an emergency, warns one expert. Developers using the React 19 library for building application interfaces are ...
ZDNet

Use AI browsers? Be careful. This exploit turns trusted sites into weapons - here's how

Researchers disclosed a HashJack attack that manipulates AI browsers. Cato CTRL examined Comet, Copilot for Edge, and Gemini for Chrome. Could lead to data theft, phishing, and malware downloads.
CoinTelegraph

Balancer releases preliminary post-mortem report after $116M hack

The hack was one of the “most sophisticated” attacks so far in 2025, according to Deddy Lavid, CEO of blockchain security company Cyvers. The team behind decentralized finance (DeFi) protocol Balancer ...