Hackaday

This Week In Security: The Supply Chain Has Problems

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...
Rick Kupchella's-Bring MeTheNews

VIDEO: Border agents descend on Richfield Target store, arrest drive-up workers

Federal agents descended on a Twin Cities Target store on Thursday, arresting two men who appeared to be drive-up workers for the corporate retailer. Video obtained by Bring Me The News shows a large ...
Security Boulevard

Fuzzing to Zero-Day: Pwning V8CTF With TurboFan Type Confusion, CVE-2025-2135

The bug was assigned CVE-2025-2135, and we successfully used it to pwn Google’s V8CTF as a zero-day. The root cause lies in TurboFan’s InferMapsUnsafe() function, which fails to handle aliasing when ...