Lifeboat News: The Blog – Safeguarding Humanity

Get the latest international news and world events from around the world.

Dec 11
2025

Gravitational Lensing Reveals a Twist in the Universe’s Expansion

New measurements using gravitational lensing suggest the universe’s current expansion rate does not agree with signals from the early cosmos.

Dec 11
2025

Scientists Watch Black Hole Create Near Light Speed Winds in Hours

A sudden black hole flare unleashed stunning, near light speed winds that echo the Sun’s most powerful eruptions.

Dec 11
2025

New Ice XXI Emerges When Water Is Crushed to Extreme Pressures

A microsecond freeze under crushing pressure has revealed Ice XXI, an entirely new form of ice.

Dec 11
2025

Warning: WinRAR Vulnerability CVE-2025–6218 Under Active Attack by Multiple Threat Groups

CISA warns WinRAR CVE-2025–6218 is under active attack by multiple threat groups, requiring federal fixes by Dec. 30, 2025.

Dec 11
2025

WIRTE Leverages AshenLoader Sideloading to Install the AshTag Espionage Backdoor

WIRTE expands AshTag espionage operations, using phishing & DLL sideloading to target Middle East govts with persistent intelligence-gathering attacks

Dec 11
2025

Chrome Targeted by Active In-the-Wild Exploit Tied to Undisclosed High-Severity Flaw

Google issues a Chrome update to fix actively exploited issue 466192044 and other confirmed 2025 security flaws.

Dec 11
2025

Unpatched Gogs Zero-Day Exploited Across 700+ Instances Amid Active Attacks

Unpatched Gogs flaw CVE-2025–8110 enables file overwrite and code execution, driving over 700 confirmed compromises.

Dec 11
2025

Active Attacks Exploit Gladinet’s Hard-Coded Keys for Unauthorized Access and Code Execution

Huntress is warning of a new actively exploited vulnerability in Gladinet’s CentreStack and Triofox products stemming from the use of hard-coded cryptographic keys that have affected nine organizations so far.

“Threat actors can potentially abuse this as a way to access the web.config file, opening the door for deserialization and remote code execution,” security researcher Bryan Masters said.

The use of hard-coded cryptographic keys could allow threat actors to decrypt or forge access tickets, enabling them to access sensitive files like web.config that can be exploited to achieve ViewState deserialization and remote code execution, the cybersecurity company added.

Dec 11
2025

.NET SOAPwn Flaw Opens Door for File Writes and Remote Code Execution via Rogue WSDL

Research shows a. NET proxy design flaw enables file writes and RCE through attacker-supplied WSDL in multiple products.

Dec 11
2025

Three PCIe Encryption Weaknesses Expose PCIe 5.0+ Systems to Faulty Data Handling

Three PCIe IDE flaws in PCIe 5.0+ allow stale or incorrect data handling, fixed by updated PCIe 6.0 guidance.