Hackers exploit critical React Native Metro bug to breach dev systems

Hackers are targeting developers by exploiting the critical vulnerability CVE-2025-11953 in the Metro server for React Native ...
Metro Weekly

Mamdani’s “Heated Rivalry” Pick Boosts Downloads by 529%

Electronic downloads of Heated Rivalry, the second novel in author Rachel Reid’s six-book Game Changer romance series, surged after New York City Mayor Zohran Mamdani name-dropped the book while ...
The Express Tribune

After Mamdani's recommendation, downloads of Heated Rivalry at NY's public library jump by 529%

New York City is experiencing an unexpected cultural surge as library card applications and e-book downloads spiked following a suggestion from Mayor Zohran Mamdani to read Heated Rivalry during a ...
LGBTQ Nation

“Heated Rivalry” downloads surge by 529% after NYC Mayor Mamdani told people to read it

Zohran Mamdani told New Yorkers to go to the cottage — and it seems they listened. Actually, at a Saturday press conference, the New York City mayor advised folks in the Big Apple to stay home during ...
The New York Times

After Mamdani Nods to ‘Heated Rivalry,’ Library E-Book Downloads Surge

As a snowstorm arrived, Mayor Zohran Mamdani reminded New Yorkers that they could access the romance series that inspired the TV show through their public library. By Liam Stack Liam Stack has watched ...
Bleeping Computer

GhostPoster attacks hide malicious JavaScript in Firefox addon logos

A new campaign dubbed 'GhostPoster' is hiding JavaScript code in the image logo of malicious Firefox extensions with more than 50,000 downloads, to monitor browser activity and plant a backdoor. The ...
cryptonews

Major JavaScript Library Breach Puts All Crypto Websites at Risk

Critical React Server Components flaw enables remote code execution, prompting urgent crypto industry warnings as attackers exploit CVE-2025-55182 to drain wallets and deploy malware across vulnerable ...
financefeeds

Hackers Exploit JavaScript Library to Deploy Crypto Wallet Drainers

Hackers have exploited a flaw in the React JavaScript library to inject code that drains crypto wallets onto websites, primarily on cryptocurrency platforms. The React team released a patch on ...
Microsoft

Defending against the CVE-2025-55182 (React2Shell) vulnerability in React Server Components

CVE-2025-55182 (also referred to as React2Shell and includes CVE-2025-66478, which was merged into it) is a critical pre-authentication remote code execution (RCE) vulnerability affecting React Server ...
Computer Weekly

Cyber teams on alert as React2Shell exploitation spreads

A remote code execution (RCE) vulnerability in the React JavaScript library, which earlier today caused disruption across the internet as Cloudflare pushed mitigations live on its network, is now ...
Dark Reading

React2Shell Vulnerability Under Attack From China-Nexus Groups

A critical vulnerability affecting the popular open source JavaScript library React is under attack — by none other by Chinese nation-state threat actors. CVE-2025-55182, which was disclosed Wednesday ...