SecurityWeek

Exploit for VMware Zero-Day Flaws Likely Built a Year Before Public Disclosure

Analysis of a recent attack targeting VMware ESXi vulnerabilities from March 2025 revealed an exploit developed a year before ...

RondoDox botnet exploits React2Shell flaw to breach Next.js servers

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js ...

Cisco warns of Identity Service Engine flaw with exploit code

Cisco has patched an ISE vulnerability with public proof-of-concept exploit code that can be abused by attackers with admin ...
Fox Business

Apple releases urgent iOS update due to security exploits

Tech giant Apple has released another update for iOS, just weeks after dropping the landmark 17.1.1. iOS 17.1.2 was made available to the public on Nov. 30 and aims to patch two possible security ...
CRN

Hackers Develop Automated Exploits

Researchers at U.C. Berkeley, the University of Pittsburgh and Carnegie Mellon University created automatically generated exploits for five Microsoft programs based on patches provided with the ...
SiliconANGLE

New research highlights difficulty of preventing Outlook security exploits

Haifei Li, a principal vulnerability researcher at Check Point Software Technologies Ltd., examines the universe of Microsoft Outlook exploits in a new blog post this week that has lessons for users ...
CoinTelegraph

DeFi vulnerability leading to $6.7M exploit ‘not detected’ by auditors

Decentralized U.S. dollar stablecoin protocol Raft claims that despite multiple security audits, the firm still suffered a security exploit leading to the loss of $6.7 million last week. According to ...
Live Bitcoin News

Crypto Exploit Losses Drop 60% to $76M in December

Crypto exploit losses fell sharply in December 2025 as PeckShield data showed reduced damage despite persistent attacks.