SecurityWeek

Exploit for VMware Zero-Day Flaws Likely Built a Year Before Public Disclosure

Analysis of a recent attack targeting VMware ESXi vulnerabilities from March 2025 revealed an exploit developed a year before ...

Truebit exploit exposes smart contract flaw behind $26M token mint

A $26 million exploit of the offline computation protocol Truebit stemmed from a smart-contract flaw that allowed an attacker ...

RondoDox botnet exploits React2Shell flaw to breach Next.js servers

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js ...
Coingape

Security Alert: Mystery Exploit Hits EVM Chains With Hundreds of Wallets Drained in Massive Attack

An unexplained wallet-draining attack hits Ethereum and other EVM chains, with over $107,000 stolen from investors and no ...
Fox Business

Apple releases urgent iOS update due to security exploits

Tech giant Apple has released another update for iOS, just weeks after dropping the landmark 17.1.1. iOS 17.1.2 was made available to the public on Nov. 30 and aims to patch two possible security ...
CoinTelegraph

DeFi vulnerability leading to $6.7M exploit ‘not detected’ by auditors

Decentralized U.S. dollar stablecoin protocol Raft claims that despite multiple security audits, the firm still suffered a security exploit leading to the loss of $6.7 million last week. According to ...
SiliconANGLE

New research highlights difficulty of preventing Outlook security exploits

Haifei Li, a principal vulnerability researcher at Check Point Software Technologies Ltd., examines the universe of Microsoft Outlook exploits in a new blog post this week that has lessons for users ...