SecurityWeek

NPM Package With 56,000 Downloads Steals WhatsApp Credentials, Data

A malicious NPM package that functions as a WhatsApp Web API library has been caught stealing users’ credentials and data, Koi Security warns. The package, ‘Lotusbail’, a fork of the ‘Baileys’ library ...
CBS News

Dozens of Native Americans report being questioned or detained by ICE

As President Donald Trump's immigration crackdown continues, one community says they've felt unfairly targeted. This year, the Navajo Nation said dozens of Native Americans have been questioned or ...
Microsoft

Defending against the CVE-2025-55182 (React2Shell) vulnerability in React Server Components

CVE-2025-55182 (also referred to as React2Shell and includes CVE-2025-66478, which was merged into it) is a critical pre-authentication remote code execution (RCE) vulnerability affecting React Server ...
earth

Officials are installing a pioneering artificial reef with native oysters

Spain installed its first reef of native flat oysters in the Mar Menor, with about 55,000 larvae, young oysters in their earliest free-swimming stage before attaching to a surface, fixed to ...
CNET

Be Sure to Back Up Your iPhone the Right Way Before Installing iOS 26

If you're upgrading to a new iPhone 17 or installing the latest operating system, you'll save yourself a lot of trouble by making a good backup first. Here's how to do it. Jeff Carlson writes about ...
SecurityWeek

Critical Flaw in Popular React Native NPM Package Exposes Developers to Attacks

Software supply chain security firm JFrog has disclosed the details of a critical vulnerability affecting a popular React Native NPM package. React Native is an open source framework designed for ...
Beebom

How to Install the Windows 11 24H2 Update Right Now

Microsoft is finally rolling out the Windows 11 24H2 update to all eligible users. However, it's a phased rollout. You can get the 24H2 update via Windows Update or ...