The Hacker News

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

The React team has released fixes for two new types of flaws in React Server Components (RSC) that, if successfully exploited ...

New PayPal Email Warning—Beware This Paused Payment Attack

This email comes from PayPal, but it is an attack — what you need to know and do to be safe from these hackers.
InfoQ

React Advanced 2025: Type Safe URL State Management Takes Center Stage with Nuqs

Nuqs, a cutting-edge open-source URL state manager for React, revolutionizes application development with its type-safe ...

Google links more Chinese hacking groups to React2Shell attacks

Over the weekend, ​Google's threat intelligence team linked five more Chinese hacking groups to attacks exploiting the ...

Critical React2Shell flaw exploited in ransomware attacks

A ransomware gang exploited the critical React2Shell vulnerability (CVE-2025-55182) to gain initial access to corporate ...
NextBigFuture

Critical React2Shell Vulnerability (CVE-2025-55182) Analysis: Surge in Attacks Targeting RSC-Enabled Services Worldwide

React2Shell (CVE-2025-55182) is a critical vulnerability affecting the most widely used React-based services across the web ecosystem. With low exploitation complexity and publicly available PoCs, ...

Porn Sites Must Block VPNs To Comply With Indiana's Age-Verification Law, State Suggests in New Lawsuit

Indiana Attorney General Todd Rokita says porn sites must block VPNs to satisfy the state’s age-verification requirements.
The Register-Herald

Scammers target holiday shoppers with fake survey texts

As holiday shopping ramps up, scammers are exploiting shoppers’ excitement by sending fake text messages and customer surveys ...