The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js ...
Security firm CloudSEK has uncovered a botnet campaign that is exploiting the React2Shell vulnerability in the Meta-developed ...
The explosive, easy-to-trigger vulnerability was exploited within hours of disclosure, exposing the risks of default ...
Business-grade email server software SmarterMail just patched a maximum-severity vulnerability that allowed threat actors to ...
December 2025 was a brutal reality check for security teams. While most were winding down for the holidays, threat actors weaponized a tectonic shift in the landscape, headlined by the... The post Top ...
December 2025, the RondoDox botnet operators have been targeting Next.js servers impacted by the React2Shell vulnerability.
Losses Surge to €4.2 Billion. Europe’s latest payment fraud figures are stark. According to the joint 2025 EBA-ECB report, ...
The zero-day exploitations of Ivanti's MDM platform meant unprecedented pwning of 1000s of orgs by a Chinese APT — and ...
A high-severity flaw in MongoDB instances could allow unauthenticated remote bad actors to leak sensitive data from MongoDB servers. Dubbed "MongoBleed," the security flaw is being exploited in the ...
Hackers are exploiting CVE-2025-14847, aka MongoBleed, a MongoDB vulnerability, to leak sensitive information from server ...
Infosecurity has selected five of the most significant vulnerability exploitation campaigns of 2025 that led to major ...
Some stories, though, were more impactful or popular with our readers than others. This article explores 15 of the biggest ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results
Feedback