Infosecurity-magazine.com

React2Shell Exploit Campaigns Tied to North Korean Cyber Intrusion Tactics

Security researchers at Sysdig have observed new campaigns exploiting React2Shell which appear to have the hallmarks of North Korean hackers. React2Shell is a remote code execution vulnerability in ...
Dark Reading

Exploitation Activity Ramps Up Against React2Shell

Less than a week after its public disclosure, a maximum severity vulnerability known as React2Shell has been increasingly exploited by opportunistic threat actors. CVE-2025-55182 is a critical remote ...
National Catholic Register

AI and Exploitation: Experts Warn Big Tech Fuels Global Human Trafficking

Technology platforms have become the primary vector through which predators and traffickers exploit victims, and the scope of the problem of child exploitation online is almost unfathomable. John ...
CBS News

Facebook, Instagram users say accounts were wrongfully suspended for "child exploitation"

A Pennsylvania small business owner says she's losing money after being locked out of her social media accounts. Monica Montone, who owns her own gym in Doylestown, Bucks County, said Meta suspended ...
The New York Times

In Matt Gaetz Scandal, Circumstances Left Teen Vulnerable to Exploitation

A 17-year-old with a homeless parent wanted money for braces and ended up having sex for money with powerful men. She wants the public to have a fuller understanding of how she was victimized. By ...
TWCN Tech News

How to disable Exploit Protection in Windows 11

Windows doesn’t offer a single switch to disable Exploit Protection completely. You can only disable individual mitigations system-wide or per app. We strongly recommend turning it off only for ...
TechCrunch

Apple alerts exploit developer that his iPhone was targeted with government spyware

Earlier this year, a developer was shocked by a message that appeared on his personal phone: “Apple detected a targeted mercenary spyware attack against your iPhone.” “I was panicking,” Jay Gibson, ...
CoinTelegraph

Failed NPM exploit highlights looming threat to crypto security: Exec

Ledger chief technology officer Charles Guillemet said that while the immediate danger had passed, the threat still exists. A recent Node Package Manager (NPM) attack stole just $50 worth of crypto, ...
GitHub

MySQL Service Exploitation on Metasploitable2

A comprehensive security assessment was conducted against the MySQL service running on Metasploitable2. The engagement successfully identified and exploited critical authentication bypass ...
CoinTelegraph

Bunni DEX paused following $2.4M exploit of liquidity function

Decentralized exchange Bunni fell victim to an exploit, losing about $2.4 million in stablecoins after attackers manipulated the platform’s liquidity calculations, according to onchain data by ...
WeLiveSecurity

Update WinRAR tools now: RomCom and others exploiting zero-day vulnerability

ESET Research discovered a zero-day vulnerability in WinRAR being exploited in the wild in the guise of job application documents; the weaponized archives exploited a path traversal flaw to compromise ...