Security Boulevard

Fuzzing to Zero-Day: Pwning V8CTF With TurboFan Type Confusion, CVE-2025-2135

The bug was assigned CVE-2025-2135, and we successfully used it to pwn Google’s V8CTF as a zero-day. The root cause lies in TurboFan’s InferMapsUnsafe() function, which fails to handle aliasing when ...
BBC

'Howard Webb, where are you?' - How we can stop VAR ruining football

Set-plays have been in the headlines again this week, especially at corners with masses of players from both sides surrounding the six-yard box and the goalkeeper. I watched and rewatched many of ...
Football365

Arsenal ‘handed’ Premier League title by Everton ‘fraud’ after Gunners avoid VAR ‘travesty’

The Mailbox reckons the Premier League title ‘race is over’ after an Everton ‘fraud’ gifted the crown to Arsenal on Saturday evening. Also, VAR, referees and the Premier League product are criticised ...