The explosive, easy-to-trigger vulnerability was exploited within hours of disclosure, exposing the risks of default ...

Security firm CloudSEK has uncovered a botnet campaign that is exploiting the React2Shell vulnerability in the Meta-developed ...

Business-grade email server software SmarterMail just patched a maximum-severity vulnerability that allowed threat actors to ...

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js ...

The zero-day exploitations of Ivanti's MDM platform meant unprecedented pwning of 1000s of orgs by a Chinese APT — and ...

Federal investigators are deepening their scrutiny of a sprawling Minnesota fraud scandal that has become a flashpoint in the ...

Chairman Xi Jinping continues to invest heavily in the People's Liberation Army (PLA), as China's military approaches his 2027 "centennial military building goal". To realize the goal, which Xi ...

RondoDox botnet exploited React2Shell to compromise IoT devices and Next.js servers over a nine-month global campaign.

December 2025 was a brutal reality check for security teams. While most were winding down for the holidays, threat actors weaponized a tectonic shift in the landscape, headlined by the... The post Top ...

December 2025, the RondoDox botnet operators have been targeting Next.js servers impacted by the React2Shell vulnerability.

Some stories, though, were more impactful or popular with our readers than others. This article explores 15 of the biggest ...

UK's FTSE 100 drifts to record high in thin year-end trade London's FTSE 100 index hit a record high in quiet trading on Tuesday, the penultimate session of 2025, supported by gains in banks and ...