Author Archives: mzeeshanzafar28@gmail.com

Everest Ransomware Hits Chrysler on Christmas: 1TB Data Heist Shocks Auto Giant Right in the middle of Christmas celebrations, the Everest ransomware crew dropped a bombshell on their dark web site, claiming they breached Chrysler and swiped over 1TB of … Read More

Critical React Server Flaw Sparks Rampant Exploits – Your Code’s Nightmare Just Went Live Hey devs, a brutal vulnerability in React Server Components, dubbed React2Shell, dropped on December 3, 2025, and it’s already being hammered by attackers worldwide. This beast … Read More

LangGrinch Strikes: Critical LangChain Flaw Lets Hackers Steal Your Secrets Developers using LangChain just got hit with a nightmare vulnerability dubbed LangGrinch, a serialization injection bug that exposes sensitive secrets like API keys and database creds. Tracked as CVE-2025-68664, it … Read More

Old Fortinet VPN Bug Is Back From The Dead — And Actively Getting Exploited Fortinet has warned that a five-year-old FortiOS SSL VPN vulnerability, CVE-2020-12812, is being actively abused in the wild again under specific configurations. Attackers can quietly bypass … Read More

When Your AI Investment Influencer Is Actually an SEC Exhibit The U.S. Securities and Exchange Commission has charged a group of operators who ran a fake AI-powered crypto investment scheme that siphoned roughly $14 million from retail investors. They hyped … Read More

“`html The npm Supply Chain Just Got Messier: 56,000 Devs Downloaded Fake WhatsApp Malware A malicious npm package called “lotusbail” masqueraded as a legitimate WhatsApp API and got downloaded over 56,000 times before being caught. The package contained malware designed … Read More

GRU’s BlueDelta Crew Goes Phishing Wild on Ukrainian Email Users – Holiday Hack Alert! Russian GRU-linked hackers in the BlueDelta group just unleashed a sneaky credential harvesting blitz on UKR.NET users, the big Ukrainian email service. They’re slinging fake login … Read More

React2Shell RCE Bug in React & Next.js Exploited by Hackers Hours After Patch Drop China-linked threat actors pounced on a critical React Server Components vulnerability dubbed React2Shell within hours of its disclosure, deploying crypto miners and backdoors across cloud environments. … Read More

Fortinet’s FortiGate SSO Flaw Is Being Actively Exploited — Here’s What Devs Need to Know Security researchers have revealed that more than 25,000 Fortinet devices with FortiCloud Single Sign-On (SSO) enabled are exposed to remote attacks, and attackers are already … Read More

Cisco’s New CVSS 10.0 Email Zero‑Day: What Devs and Sec Teams Need to Do Now Cisco has disclosed a max‑severity, actively exploited zero‑day in its AsyncOS software that powers Cisco Secure Email Gateway and Secure Email and Web Manager appliances. … Read More