Security Boulevard

Fuzzing to Zero-Day: Pwning V8CTF With TurboFan Type Confusion, CVE-2025-2135

The bug was assigned CVE-2025-2135, and we successfully used it to pwn Google’s V8CTF as a zero-day. The root cause lies in TurboFan’s InferMapsUnsafe() function, which fails to handle aliasing when ...
Fleet World

Skoda Peaq breaks cover as premium seven-seat SUV with over 370-mile range

Peaq, a near-5m electric SUV designed to spearhead the brand’s move into the premium EV space. Debuted in camouflage ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...
U.S. News & World Report

Chicago Neighborhoods

Chicago's eastern boundary is formed by Lake Michigan, and the city is divided by the Chicago River into three geographic sections: the North Side, the South Side and the West Side. These sections ...
WinBuzzer

Anthropic Leaks Claude Code Source via Npm Source Map

Anthropic has accidentally exposed Claude Code's full 512,000-line TypeScript source via an npm source map, revealing ...