Security Boulevard

Fuzzing to Zero-Day: Pwning V8CTF With TurboFan Type Confusion, CVE-2025-2135

The bug was assigned CVE-2025-2135, and we successfully used it to pwn Google’s V8CTF as a zero-day. The root cause lies in TurboFan’s InferMapsUnsafe() function, which fails to handle aliasing when ...

Bubble AI app builder abused to steal Microsoft account credentials

Threat actors are evading phishing detection in campaigns targeting Microsoft accounts by abusing the no-code app-building ...
The Hacker News

Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website

Claude extension flaw enabled silent prompt injection via XSS and weak allowlist, risking data theft and impersonation until ...
Macworld

Apple urges iPhone users to update as new DarkSword hacking tool lands online

Generally, iOS can be updated in the Settings app by tapping General > Software Update. However, Apple has a separate method ...
Cryptopolitan on MSN

Axios supply chain attack raises risk to crypto wallets

Up to four npm packages on Axios were replaced with malicious versions, in one of the most sophisticated supply chain attacks ...

This popular app builder has been hijacked to steal Microsoft account details - here's what we know

Bubble.io's good name is being tarnished by advanced and convincing phishing lures.
Cyber Daily

First draft of Children's Online Privacy Code made public

The first draft of the Children’s Online Privacy Code has been published, marking a significant step forward in prioritising ...
Cyber Daily

Aussie telco consumer code to be replaced in favour of ‘stronger protections’

The ACMA will be determining a tougher replacement for the old industry-developed Telecommunications Consumer Protections ...
WFMD-AM

DarkSword leak puts millions of iPhone users at risk

A leaked hacking tool called DarkSword could expose older iPhones and iPads to attacks through malicious links and ...
TechAnnouncer

Mastering Your ‘test API online’ Needs with These Top Tools

Trying to test API online can be a bit of a headache, especially with so many tools out there. I’ve found myself lost in the options more than once. Whether you’re just starting out or you’ve been ...