Hundreds of thousands of ‘Epstein files’ have been released — and there’s a lot more to come

Congress passed a law last month — with near-unanimous support — requiring the Justice Department to release all of its files about Jeffrey Epstein, the disgraced financier and convicted sex offender ...
InfoQ

Cloudflare Open Sources tokio‑quiche, Promising Easier QUIC and HTTP/3 in Rust

Cloudflare has open-sourced tokio-quiche, an asynchronous QUIC and HTTP/3 Rust library that wraps its battle-tested quiche ...
InfoWorld

React2Shell is the Log4j moment for front end development

Attackers are exploiting a Flight protocol validation failure that allows them to execute arbitrary code without ...
theregister

China, Iran are having a field day with React2Shell, Google warns

At least five more Chinese spy crews, Iran-linked goons, and financially motivated criminals are now attacking the React2Shell, a maximum-severity flaw in the widely used React JavaScript library, ...
InfoQ

Google Unveils New Tools and Libraries for Building AI Glasses Apps

With the release of the Android XR SDK Developer Preview 3, Google has introduced two new libraries to help developers create AI Glasses experiences, Jetpack Projected and Jetpack Compose Glimmer.

Google links more Chinese hacking groups to React2Shell attacks

Over the weekend, ​Google's threat intelligence team linked five more Chinese hacking groups to attacks exploiting the maximum-severity "React2Shell" remote code execution vulnerability.
financefeeds

Hackers Exploit JavaScript Library to Deploy Crypto Wallet Drainers

Hackers have exploited a flaw in the React JavaScript library to inject code that drains crypto wallets onto websites, primarily on cryptocurrency platforms. The React team released a patch on ...
Game Rant

You Might Want to Check Your Steam Library For a Free Game

Eric Law is a Game Rant contributor from Pennsylvania, USA. An MMORPG-focused video game writer for Game Rant for two years and counting, Eric cut his teeth on gaming since he was a wee lad watching ...
Computer Weekly

Cyber teams on alert as React2Shell exploitation spreads

A remote code execution (RCE) vulnerability in the React JavaScript library, which earlier today caused disruption across the internet as Cloudflare pushed mitigations live on its network, is now ...
Dark Reading

React2Shell Vulnerability Under Attack From China-Nexus Groups

A critical vulnerability affecting the popular open source JavaScript library React is under attack — by none other by Chinese nation-state threat actors. CVE-2025-55182, which was disclosed Wednesday ...
Bleeping Computer

Critical React, Next.js flaw lets hackers execute code on servers

A maximum severity vulnerability, dubbed 'React2Shell', in the React Server Components (RSC) 'Flight' protocol allows remote code execution without authentication in React and Next.js applications.
Security Boulevard

Dangerous RCE Flaw in React, Next.js Threatens Cloud Environments, Apps

Security and developer teams are running to keep ahead of a maximum-severity security flaw in popular open source React frameworks that threat actors can exploit to run remote code execution (RCE) ...