Author: user
Security researchers have revealed a major flaw in Next.JS React Framework. This allows middleware-based access control to be bypassed. I found it last Friday. After an unfortunate developer pushed into production (Friday, all days). Next.js is the most widely used JavaScript framework on the web. “Next.JS uses the internal header X-Middleware-SubRequest to prevent recursive requests from triggering infinite loops,” Next.JS said in its advisory. The world’s most popular JavaScript framework hit with a critical 9.1 security flaw Vulnerability—CVE-2025-29927 – removes CVSS scores of 9.1 out of 10. An attacker can change the request header to skip important approval checks. The…
Developer tools are changing rapidly with AI. Therefore, companies that make AI easier in their workflows are attracting attention. After a startup called N8N (pronounced “Enay-Ten”) pivoted its workflow automation platform in 2022 to become AI-friendly, he said its revenue has increased five times, doubling its over the past two months alone. Now, TechCrunch confirms that behind its growth, N8N has raised 55 million euros ($60 million) of valuation sources that are close to us as it is in the region of 250 million euros ($270 million). Berlin-based N8N said the book currently has over 3,000 enterprise customers and roughly…
Arcade, a generic AI market for designing jewelry, is expanding its offering to include household items starting with rugs. The company also introduced a new feature called “Match My Room” on Monday. This allows the design to complement existing colors and styles so that users can upload photos of their rooms. In addition to this expansion, Arcade announced a $25 million Series A funding round, increasing its total amount to $42 million. Like Arcade’s jewelry design generator, the rug creation tool utilizes mid-journey and stable spread. The user selects the rug material and enters a text prompt to explain the…
March 24, 2025Ravi LakshmananVulnerability/Cloud Security Kubernetes’ Ingress Nginx Controllers disclose a set of sets to Kubernetes’ Ingress Nginx Controllers, which can immediately put more than 6,500 clusters at risk by exposing components to the public Internet. Vulnerabilities (CVE-2025-24513, CVE-2025-24514, CVE-2025-1097, CVE-2025-1098, and CVE-2025-1098) assigned a CVSS score of 9.8. It is worth noting that the drawbacks do not affect the Nginx Ingress controller. This is another Ingress controller implementation for Nginx and Nginx Plus. “The exploitation of these vulnerabilities could lead to unauthorized access to all secrets stored in all namespaces of the Kubernetes cluster by attackers, leading to cluster…
US President Donald Trump announced that countries buying oil or gas from Venezuela will face 25% tariffs on trade with the US starting April 2. The latest tariff threat came on Monday morning at the Social Post of Truth. There, Trump attacked Venezuela for promoting migration to the US. He also criticized the government led by President Nicolas Maduro. “Venezuela was very hostile to the United States and the freedoms we support,” Trump wrote. “Therefore, countries that buy oil and gas from Venezuela will be forced to pay the US a 25% tariff on trade with our country.” The tariff…
Despite the crackdown, opposition activists promise to “not retreat” and urge more people to take them on the streets.Turkish police have detained 1,113 people across the country over five days of five protests as President Receptacle Tayyip Erdogan denounces the major opposition parties of the unrest caused by the detention of his major political rival. Home Minister Ali Yarikaya confirmed the total number of arrests on Monday, after the fifth day of the largest anti-government protest the country has seen for more than a decade. They began after Istanbul mayor Ekrem Imamoguru was arrested on Wednesday and charged with corruption,…
Cary, North Carolina, March 24, 2025, Cybernake Wire INE Security, a global provider of cybersecurity training and certification, today announced an initiative to highlight the rise in cyber threats targeted at healthcare institutions. With national doctors recognized in 2025, the company is focusing on new industry data showing a sharp rise in cyberattacks in hospitals and clinics. Recent reports show that healthcare is withstanding a record wave of cyber violations. According to the Hippa Journal, in 2023 alone, 725 hack-related breaches were reported in U.S. healthcare, publishing more than 124 million patient records. Medical cybersecurity threats and violations are currently…
US President Donald Trump has put almost all US foreign aid on hold.If the US frozen funds are not recovered or exchanged, there could be a 10-fold increase in millions and perhaps millions of people coming in the future, with 2,000 new HIV infections per day worldwide, with associated deaths. US President Donald Trump took almost all foreign aid to the US on January 20th. A few days later, the US State Department said life-saving HIV work will continue under the President’s Emergency Plan for AIDS Relief (PEPFAR). But disruptions on health funding and wider impacts on services have had…
Following the success of previous models, Deepseek has literally returned with a major update. On Monday, the Chinese AI startup rolled out Deepseek-V3-0324, a 700GB open source model that is turning its head in the AI community. Released under the MIT license, the update shows a strong move towards transparency and open collaboration. Without an official announcement about X, Deepseek quietly released Deepseek-V3-0324 on Face. Wild deepseek is displayed: //t.co/9jfi9dqmfz – Tenium (e/λ) (@teknium1) March 24, 2025 DeepSeek releases V3-0324 update Currently hugging Face and OpenRouter, DeepSeek-V3-0324 makes it easy for developers and researchers to put them into tests. The…
StubHub, a ticketing platform startup known for helping fans resell event tickets, has officially filed its name to be made public on the New York Stock Exchange under the ticker “Stub.” In the IPO’s prospectus, the San Francisco-based company reported revenue of $1.77 billion in 2024 with a net loss of $2.8 million. This contrasts with 2023, when it recorded a profit of $405 million on revenue of $1.37 billion. Adjusted revenue (EBITDA) for 2024 reached $299 million from last year, a significant improvement from the $57 million loss in 2022. “StubHub’s revenue was $2.8 million in revenue last year,…