Critical jsPDF flaw lets hackers steal secrets via generated PDFs

The jsPDF library for generating PDF documents in JavaScript applications is vulnerable to a critical vulnerability that ...
Fox News

Epstein file release features photos of Mick Jagger, Michael Jackson, Diana Ross and more stars

The Department of Justice released a trove of files after The Epstein Files Transparency Act, signed by President Trump on Nov. 19, 2025, required Attorney General Pam Bondi to release all ...
Forbes

Epstein Files: Political Roadblocks And Financial Cover Ups: The Fight For Full Disclosure

Forbes contributors publish independent expert analyses and insights. Steve Weisman writes about white-collar crime. During the 2024 presidential election, then candidate Donald Trump responded to ...
aha.org

H-ISAC TLP White Vulnerability Bulletin: Microsoft Windows Cloud Files Minifilter Privilege Escalation Vulnerability

In March 2024, Exodus Intelligence discovered a vulnerability in Microsoft Windows Cloud Files Minifilter driver. The patch for this flaw was recently released, included in Microsoft's October 2025 ...
winbuzzer.com

Microsoft Disables File Explorer Preview for Internet Files to Patch NTLM Vulnerability

Following the October 2025 Patch Tuesday updates, many Windows users began reporting a frustrating issue: the File Explorer preview pane suddenly stopped working for many common file types. In a move ...
CSOonline

Gladinet file sharing zero-day brings patched flaw back from the dead

Criminals have been spotted exploiting a new zero-day vulnerability in Gladinet CentreStack and Triofox file sharing servers that could allow them to re-create the conditions of an earlier flaw ...
Bleeping Computer

Hackers exploiting zero-day in Gladinet file sharing software

Threat actors are exploiting a zero-day vulnerability (CVE-2025-11371) in Gladinet CentreStack and Triofox products, which allows a local attacker to access system files without authentication. At ...
Microsoft

Investigating active exploitation of CVE-2025-10035 GoAnywhere Managed File Transfer vulnerability

On September 18, 2025, Fortra published a security advisory regarding a critical deserialization vulnerability in GoAnywhere MFT’s License Servlet, which is tracked as CVE-2025-10035 and has a CVSS ...
CNN

3 California student athletes file federal lawsuit over transgender athlete’s participation in women’s sports

Three female student athletes sued their Southern California school district and state Department of Education, claiming they suffered sex discrimination under Title IX and civil rights violations ...
SecurityWeek

Organizations Warned of Exploited Git Vulnerability

CISA urges federal agencies to immediately patch an exploited arbitrary file write vulnerability in Git that leads to remote code execution. The US cybersecurity agency CISA on Monday warned that a ...
Searchenginejournal.com

Vulnerability In 3 WordPress File Plugins Affects 1.3 Million Sites

An advisory was issued for three WordPress file management plugins that are affected by a vulnerability that allows unauthenticated attackers delete arbitrary files. The three plugins are installed in ...