Researchers warn that attackers could exploit a recently discovered critical vulnerability in the open-source JavaScript framework Next.js to bypass authorization in middleware and gain access to targeted systems. Vercel, the San Francisco-based company that created and maintains Next.js, released a patch for CVE-2025-29927 in Next.js 15.2.3 on March 18 and published a security advisory on…
Category: open source software
Exclusive, Global IT News, Global Security News, National Security Agency, open source software, Startups, TC, threat management
Hunted Labs lands $3M to find suspicious open source contributors
Former NSA deputy director George Barnes has made his first investment as a venture capitalist for his new job at the VC incubation studio Red Cell Partners. It’s a $3 million seed deal in an open source cybersecurity startup called Hunted Labs, he told TechCrunch exclusively. Barnes spent his entire 35-year career at the spy agency,…