IBM warns of critical API Connect auth bypass vulnerability

Published on December 31, 2025

IBM urged customers to patch a critical authentication bypass vulnerability in its API Connect enterprise platform that could allow attackers to access apps remotely. [...]

Continue reading on website
Other news

Disney will pay $10 million to settle children's data privacy lawsuit

December 31, 2025
Disney has agreed to pay a $10 million civil penalty to settle claims that it violated the Children's Online Privacy Protection Act by mislabeling videos and allowing data collection for targeted advertising. [...]

Researchers Spot Modified Shai-Hulud Worm Testing Payload on npm Registry

December 31, 2025
Cybersecurity researchers have disclosed details of what appears to be a new strain of Shai Hulud on the npm registry with slight modifications from the previous wave observed last month.The npm package that embeds the novel Shai Hulud strain is "@vietmoney/react-big-calendar," which was uploaded to npm back in March 2021 by a user named "hoquocdat." It was updated for the first time on