RondoDox botnet exploits React2Shell flaw to breach Next.js servers

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js ...
Cybernews

As MongoBleed exploitation escalates, 95% of systems remain unpatched

Hackers are actively exploiting the MongoBleed vulnerability to dump memory, while an estimated 95% of exposed MongoDB ...

Exploited MongoBleed flaw leaks MongoDB secrets, 87K servers exposed

A severe vulnerability affecting multiple MongoDB versions, dubbed MongoBleed (CVE-2025-14847), is being actively exploited ...

China exploits US-funded research on nuclear technology, a congressional report says

A congressional report says China is exploiting partnerships with U.S. researchers to provide the Chinese military with access to sensitive nuclear technology and other innovations with economic ...
PC World

Google issues urgent Chrome update to fix a mysterious 0-day exploit

Google released urgent Chrome updates (versions 143.0.7499.109/101) to fix three vulnerabilities, including one actively exploited 0-day exploit classified as high risk. PCWorld reports that users ...
Variety

Disney Accuses Google of Using AI to Engage in Copyright Infringement on ‘Massive Scale’

As Disney has gone into business with OpenAI, the Mouse House is accusing Google of copyright infringement on a “massive scale” using AI models and services to “commercially exploit and distribute” ...
Forbes

‘Zero‑Click Google Drive Wiper’ Exploit Mass‑Deletes Files

A polite email asking an AI browser to “organize your Drive” can silently wipe your files. No phishing link or suspicious attachment required. Just a friendly request that turns an automated assistant ...
PC Gamer

Google's toying with nonsense AI-made headlines on articles like ours in the Discover feed, so please don't blame me for clickbait like 'BG3 players exploit children'

RPG Baldur's Gate 3 developer Larian defends itself as fans react to generative AI use: 'I'm not entirely sure we are the ideal target for the level of scorn' AI Swen Vincke promises an AMA to clear ...
Lifehacker

Google's December Security Update Fixes Two Zero-Day Exploits (and 105 Others)

In its Android Security Bulletin for December, Google is pushing an especially large number of updates to address vulnerabilities across different components—and two of the flaws may have been ...
winbuzzer.com

Google Issues Emergency Chrome Update to Patch Active Zero-Day Exploit

With active attacks already underway, Google has issued an emergency security update for Chrome to patch a critical zero-day vulnerability in its V8 JavaScript engine. The high-severity flaw, tracked ...
Hosted on MSN

Scammers exploit Google to send fake official emails

A phishing campaign abused Google’s own notification system, making scam emails appear to come directly from [email protected]. The messages mimicked legal notices and tricked users into ...
CSOonline

North Korean hackers exploit Google’s safety tools for remote wipe

The campaign hijacked Google accounts to abuse Android’s Find Hub feature, remotely wiping victims’ phones while spreading malware through trusted KakaoTalk contacts. North Korea-linked threat actors ...