GovInfoSecurity

RondoDox Botnet Exploiting Devices With React2Shell Flaw

Security firm CloudSEK has uncovered a botnet campaign that is exploiting the React2Shell vulnerability in the Meta-developed ...
Security Boulevard

Top CVEs of December 2025

December 2025 was a brutal reality check for security teams. While most were winding down for the holidays, threat actors weaponized a tectonic shift in the landscape, headlined by the... The post Top ...
The Hacker News

RondoDox Botnet Exploits Critical React2Shell Flaw to Hijack IoT Devices and Web Servers

RondoDox botnet exploits the React2Shell vulnerability in Next.js, with over 90,000 exposed systems used to deploy miners and ...
InfoWorld

React2Shell: Anatomy of a max-severity flaw that sent shockwaves through the web

The explosive, easy-to-trigger vulnerability was exploited within hours of disclosure, exposing the risks of default ...

Cough Syrup Racket Busted: 5 Arrested, Rs 40 Crore Hawala Network Unearthed

Police in Varanasi arrested five individuals linked to an illegal cough syrup racket, allegedly orchestrated by Shubham ...

Screaming Wi-Fi, internet dresses and unhinged AI chatbots - 20 of the wackiest tech stories we saw in 2025

Built by Sensia Technology, it was thin enough to hang like a tapestry or slip under bedding. Volume was modest, audio ...
domain-b.com

South Korea indicts 10 in multi-trillion won chip espionage linked to China’s CXMT

South Korea indicts 10 for stealing Samsung’s 10nm DRAM secrets for China’s CXMT. A “handwritten notebook” heist caused an ...
Scientific Research Publishing

Financial Intelligence: A Crucial Pillar of National Security ()

Chow, K. (2025) Financial Intelligence: A Crucial Pillar of National Security. Modern Economy, 16, 2032-2043. doi: 10.4236/me.2025.1612094 .

Late billionaire tax cheat Robert Brockman’s heirs agree to pay $750M to IRS in epic fraud case

Late software mogul’s estate has agreed to shell out $750 million to settle what prosecutors said was largest individual ...
InfoWorld

React2Shell is the Log4j moment for front end development

Attackers are exploiting a Flight protocol validation failure that allows them to execute arbitrary code without ...

Criminal IP Reveals Global React2Shell RCE Exposure Across React Server Components

React2Shell (CVE-2025-55182) is a critical vulnerability affecting the most widely used React-based services across the web ecosystem. With low exploitation complexity and publicly available PoCs, ...
GitHub

A Chrome extension for detecting React2Shell vulnerabilities (CVE-2025-55182 & CVE-2025-66478) in web applications.

React2Shell Detector is a browser extension that helps security researchers and web developers identify potential React2Shell vulnerabilities in web applications. The extension sends safe detection ...