Fake Next.js job interview tests backdoor developer's devices

The Microsoft Defender team has discovered a coordinated campaign targeting software developers through malicious repositories posing as legitimate Next.js projects and technical assessment materials, ...

Zyxel warns of critical RCE flaw affecting over a dozen routers

Taiwan networking provider Zyxel has released security updates to address a critical vulnerability affecting over a dozen router models that can allow unauthenticated attackers to gain remote command ...
GitHub

Automatic folder-based routing with colocation for React Router v7+.

Built on convention-over-configuration principles—your file structure defines your routes automatically, with smart defaults that just work, and scale well. Colocation is a first-class feature: "Place ...
PC Magazine

US Reportedly Shelves Plan To Ban TP-Link Routers for Now

In addition, US router sales are handled by TP-Link Systems in Irvine, California, which was spun off from its Chinese counterpart in 2022. "As a US company, no foreign country or government—including ...
TechSpot

CISA is ordering US federal agencies to remove outdated routers and firewalls

TL;DR: When attackers probe government systems, they often begin not with stolen credentials or phishing emails but with aging routers and firewalls left running long past their expiration dates.