SecurityWeek

RondoDox Botnet Exploiting React2Shell Vulnerability

December 2025, the RondoDox botnet operators have been targeting Next.js servers impacted by the React2Shell vulnerability.
Ripple

Crypto News Today: Balancer Hack Update as StakeWise Retrieves Stolen $19.3 Million

StakeWise recovers $19.3M in stolen osETH, reducing Balancer hack losses from $117M to $98M after major DeFi exploit. StakeWise has retrieved $19.3 million in stolen funds connected to the recent ...
The Hacker News

20 Popular npm Packages With 2 Billion Weekly Downloads Compromised in Supply Chain Attack

Multiple npm packages have been compromised as part of a software supply chain attack after a maintainer's account was compromised in a phishing attack. The attack targeted Josh Junon (aka Qix), who ...