Broad Exploit Activity Targets React2Shell Flaw
The vulnerability was disclosed publicly on Dec. 3 and researchers and threat intelligence teams immediately began seeing opportunistic and targeted exploitation attempts.
All topics
Articles
77 Posts
Government, Private Sector Officials Mull Telecom Security Woes
A year after Salt Typhoon's telecom hack, private and public sector officials discussed next steps.
Critical Flaw CVE-2025-55182 Affects React Server Components
All developers using React Server Components are urged to upgrade immediately, and some apps that don’t include React Server Function endpoints could be vulnerable, as well.
New MuddyWater Campaign Hits Israeli Targets
The victims in Israel span multiple industries, including technology, engineering, manufacturing, local government, and education.
New Shai Hulud NPM Worm Emerges
Researchers from Wiz are currently tracking more than 25,000 affected repositories across approximately 350 unique users.
DoJ Sanctions Bulletproof Hosting Provider Used By Ransomware Groups
The provider, Media Land LLC, has been used by ransomware actors like Lockbit, BlackSuit, and Play, and its infrastructure has been leveraged across several distributed denial-of-service (DDoS) attacks against US companies and critical infrastructure.