frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

Open in hackernews

CitrixBleed‑2 (CVE‑2025‑5777)

3•oceanstack•7h ago
What’s happening: CISA warns that a critical out‑of‑bounds read flaw in Citrix NetScaler ADC and Gateway—dubbed CitrixBleed‑2 (CVE‑2025‑5777)—is actively exploited in the wild

Why it matters: Attackers can extract session tokens and credentials without any authentication, compromising VPN tunnels and remote access for countless organizations

Who’s affected: Primarily Citrix NetScaler ADC/Gateway setups across enterprises and service providers. Not just theoretical: scan activity is spiking

What to do now:

Apply Citrix’s July patch (CTX693420) immediately.

Enforce multi-factor authentication (MFA) on all VPNs.

Monitor logs—especially for POST requests at /doAuthentication—for signs of exploitation

Bottom line: CitrixBleed‑2 is a high-severity, currently exploited zero-day. Immediate patching and vigilant VPN security checks are mandatory.

If Coding Agents Were Rappers

https://install.md/blog/if-coding-agents-were-rappers
1•goroutines•1m ago•0 comments

UFOs once took control of Russian ICBMs, nearly caused WW3 – testimony

https://www.jpost.com/omg/article-753288
1•handfuloflight•2m ago•0 comments

Andrej Karpathy – The append-and-review note

https://karpathy.bearblog.dev/the-append-and-review-note/
1•superconduct123•3m ago•0 comments

Vibe Coding an SMTP Server, in Rust

https://mailpace.com/blog/musings/vibe-coding-an-smtp-server
2•albertgoeswoof•5m ago•0 comments

Build, Learn, Delete, Repeat

https://ymichael.com/2025/07/18/build-learn-delete-repeat.html
1•sawyerjhood•6m ago•0 comments

Veles, Google's open source secret scanner

https://opensource.googleblog.com/2025/07/stop-leaked-credentials-in-their-tracks-with-veles-our-new-open-source-secret-scanner.html
1•sharkbot•6m ago•0 comments

Show HN: Let ChatGPT Plus control any Python or JavaScript object in 3 lines

https://chatgpt.com/g/g-4ioOcgdvH-telekinesis
1•eneuman•8m ago•0 comments

Leak: Anthropic Says the Company Will Pursue Gulf State Investments After All

https://www.wired.com/story/anthropic-dario-amodei-gulf-state-leaked-memo/
2•alexcos•9m ago•1 comments

Thursday Is Durable Computing Day

2•jedberg•12m ago•1 comments

A Quick(ish) Introduction to Tuning Postgres

https://byteofdev.com/posts/tuning-postgres-intro/
2•AsyncBanana•12m ago•0 comments

Ask HN: Can we better use heat from data centers?

1•mclau157•12m ago•0 comments

Distribution Package vs. Import Package

https://packaging.python.org/en/latest/discussions/distribution-package-vs-import-package/
1•Bluestein•13m ago•0 comments

Burning Man Festival Is Burning Through Cash

https://www.bloomberg.com/news/features/2025-07-22/burning-man-festival-struggles-to-make-enough-money
2•petethomas•16m ago•0 comments

MCK: Open-Source MongoDB Operator

https://github.com/mongodb/mongodb-kubernetes
1•mmoogle•17m ago•0 comments

ΜFork: A pure actor-based concurrent machine architecture with memory-safety an

https://ufork.org/
1•fanf2•19m ago•0 comments

Study: How American Consumers Are Using AI

https://www.joeyoungblood.com/artificial-intelligence/study-how-american-consumers-are-using-ai/
1•bhartzer•21m ago•0 comments

Why "How many tennis balls fit in a bus?" is a good interview question

https://medium.com/@orzel.jarek/how-many-tennis-balls-fit-in-a-bus-why-weird-interview-questions-sometimes-make-sense-ec24f6aeec4e
5•saucetest•21m ago•1 comments

Amazon buys Bee AI wearable that listens to everything you say

https://www.theverge.com/news/711621/amazon-bee-ai-wearable-acquisition
2•swyx•24m ago•0 comments

Inheritance over Composition, Sometimes

https://death.andgravity.com/over-composition
1•BerislavLopac•27m ago•0 comments

Show HN: Featurevisor v2.0 – declarative feature flags management with Git

https://featurevisor.com/?v2
2•fahad19•27m ago•0 comments

Crowdfunding Success – Was it worth it?

https://atomic14.substack.com/p/crowdfunding-success-was-it-worth
1•iamflimflam1•29m ago•0 comments

Show HN: It's Like FIFA for Developers 1vs1 Code Battle

https://battlegpt.website
1•roozka10•31m ago•0 comments

Why everyone is probably wrong about AI

https://greyenlightenment.com/2025/07/08/dwarkesh-patel-on-agi-separating-ai-hype-from-reality/
2•paulpauper•32m ago•0 comments

Brave Browser Blocks Windows Recall

https://www.neowin.net/news/brave-browser-blocks-windows-feature-that-takes-screenshots-of-everything-you-do-on-your-pc/
1•bundie•33m ago•0 comments

Taiwan is creating an offshore wind industry to fuel its semiconductor factories

https://restofworld.org/2025/taiwan-offshore-wind-farms-chip-factory-jobs/
1•PaulHoule•34m ago•0 comments

Ask HN: How have you optimized your company/ work?

2•Xx_crazy420_xX•36m ago•0 comments

Show HN: Like Lusha/Apollo, but with 250M deliverable emails

https://hivepoint.io/
1•Simonekis•36m ago•0 comments

Lost in the Wilderness: Ansel Adams in the 1960s

https://ucrarts.ucr.edu/exhibitions/lost-in-the-wilderness-ansel-adams-in-the-1960s/
1•lapetitejort•36m ago•1 comments

Use AI to Create Professionally Bound Coloring Books

https://coloring.app
1•presson•37m ago•1 comments

Integrate Email Notifications with RustMailer: A Must-Have for Developers

https://www.indiehackers.com/post/integrate-email-notifications-with-rustmailer-a-must-have-for-developers-MVHtzOfA3nGgtyoBewao
2•rustmailer•38m ago•0 comments