The Hacker News

CISA Flags Actively Exploited Digiever NVR Vulnerability Allowing Remote Code Execution

CISA adds an actively exploited Digiever DS-2105 Pro NVR vulnerability to KEV, warning of botnet attacks and urging ...

WebRAT malware spread via fake vulnerability exploits on GitHub

The WebRAT malware is now being distributed through GitHub repositories that claim to host proof-of-concept exploits for ...

Intel plans to release chips that have built-in Meltdown and Spectre protections later this year

Intel has new chips in the works that will include built-in protections against Spectre and Meltdown, CEO Brian Krzanich said on the company's earnings call.

Home Depot exposed access to internal systems for a year, says researcher

A security researcher tried to alert Home Depot to the security lapse exposing its back-end GitHub source code repos and ...
Bleeping Computer

Google fixes eighth Chrome zero-day exploited in attacks in 2025

Update December 12, 18:43 EST: This vulnerability is now tracked as CVE-2025-14174 and has also been patched by Apple in iOS, iPadOS, macOS, tvOS, watchOS, and visionOS. Google has released emergency ...
CSO Online

Apache Tika hit by critical vulnerability thought to be patched months ago

CVE-2025-54988 is a weakness in the tika-parser-pdf-module used to process PDFs in Apache Tika from version 1.13 to and ...
CNN

Unclassified report on Hegseth’s use of Signal details risk to troops, lack of cooperation with investigation

Defense Secretary Pete Hegseth risked compromising sensitive military information that could have endangered US troops through his use of Signal to discuss attack plans, a Pentagon watchdog said in an ...
CNN

Classified Pentagon watchdog report on Hegseth’s use of Signal sent to lawmakers

A classified final version of the Pentagon inspector general’s report into Secretary of Defense Pete Hegseth’s use of Signal to discuss sensitive military operations has been delivered to the House ...
InfoWorld

Developers urged to immediately upgrade React, Next.js

Critical vulnerability in React library should be treated by IT as they did Log4j - as an emergency, warns one expert. Developers using the React 19 library for building application interfaces are ...
Daily Texan

Former McCombs student Olivia Guzman and the power of vulnerability in sports reporting

In an industry dominated by men, stats and swagger, alumna Olivia Guzman discovered that her greatest reporting tool was something far more than human: the courage to be vulnerable. As a 2022 graduate ...