SDxCentral

ASUS router bug can bring down whole networks

According to Black Duck’s Cybersecurity Research Center, attackers are able to disrupt the 5 GHz Wi-Fi network via an ...
Security Boulevard

NDSS 2025 – Exploiting the Complexity Of Modern CSS For Email And Browser Fingerprinting

Leon Trampert (CISPA Helmholtz Center for Information Security), Daniel Weber (CISPA Helmholtz Center for Information Security), Lukas Gerlach (CISPA Helmholtz Center for Information Security), ...
Security Boulevard

Key learnings from the latest CyRC Wi-Fi vulnerabilities

Critical Broadcom chipset flaw lets attackers crash Wi-Fi networks without authentication. Learn if your router is affected and how to patch it.The post Key learnings from the latest CyRC Wi-Fi ...
Bleeping Computer

WebRAT malware spread via fake vulnerability exploits on GitHub

The WebRAT malware is now being distributed through GitHub repositories that claim to host proof-of-concept exploits for recently disclosed vulnerabilities. Previously spread through pirated software ...
MarketWatch

BitsLab's MoveBit Releases Research: Belobog, a Move Fuzzing Framework Oriented Toward Real ...

SAN FRANCISCO, Dec. 17, 2025 /PRNewswire/ -- BitsLab's audit and security research brand MoveBit has released a new research work, 'Belobog: Move Language Fuzzing ...
Bitdefender

Linux Kernel Bugs Can Hide for 20 Years

Linux security developer Jenny Guanni Qu has discovered that bugs in the Linux kernel can remain hidden for more than two ...
Dark Reading

Threat Actors Exploit Zero-Day in WatchGuard Firebox Devices

A zero-day vulnerability in WatchGuard Firebox firewalls is under active exploitation, marking the latest attacks against edge devices this month. WatchGuard disclosed the vulnerability, tracked as ...
Bleeping Computer

RondoDox botnet exploits React2Shell flaw to breach Next.js servers

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js servers with malware and cryptominers. First documented by Fortinet in July ...
The Conversation

The #iwasfifteen hashtag and ongoing Epstein coverage show how traffickers exploit the ...

Anne P. DePrince has received funding from the Department of Justice, National Institutes of Health, State of Colorado, and University of Denver. She has received honoraria for giving presentations ...
CSOonline

Hackers exploit Microsoft OAuth device codes to hijack enterprise accounts

Cybercriminals and state-sponsored hackers are increasingly exploiting Microsoft’s legitimate OAuth 2.0 device authorization process to hijack enterprise accounts, bypassing multifactor authentication ...
Network World

WatchGuard fixes ‘critical’ zero-day allowing firewall takeover

WatchGuard has issued an urgent patch alert for its Firebox firewall appliances after discovering a critical-rated vulnerability that is under exploit by threat actors. Tracked as CVE-2025-14733, with ...
CSOonline

Human-in-the-loop isn’t enough: New attack turns AI safeguards into exploits

Human-in-the-loop (HITL) safeguards that AI agents rely on can be subverted, allowing attackers to weaponize them to run malicious code, new research from CheckMarx shows. HITL dialogs are a safety ...