RondoDox botnet exploits React2Shell flaw to breach Next.js servers

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js ...

Supply chains, AI, and the cloud: The biggest failures (and one success) of 2025

The backdooring of more than 500 e-commerce companies, including a $40 billion multinational company. The source of the ...

New ErrTraffic service enables ClickFix attacks via fake browser glitches

A new cybercrime tool called ErrTraffic allows threat actors to automate ClickFix attacks by generating 'fake glitches' on ...