Infosecurity News
React2Shell Exploit Campaigns Tied to North Korean Cyber Intrusion Tactics
Sysdig has found sophisticated malicious campaigns exploiting React2Shell that delivered EtherRAT and suggested North Korean hackers’ involvement
Malicious VS Code Extensions Deploy Advanced Infostealer
Two malicious Visual Studio Code extensions, Bitcoin Black and Codo AI, have been observed harvesting sensitive user data
DeadLock Ransomware Uses BYOVD to Evade Security Measures
Cisco Talos has detected new tactics from a financially motivated actor using DeadLock ransomware
UK NCSC Raises Alarms Over Prompt Injection Attacks
The UK’s National Cyber Security Centre has warned of the dangers of comparing prompt injection to SQL injection
Gartner Calls For Pause on AI Browser Use
Gartner has called for organizations to block today’s AI browsers on security concerns
ClayRat Android Spyware Expands Capabilities
A new version of ClayRat Android spyware features enhanced surveillance and device-control features
Marquis Software Breach Affects Over 780,000 Nationwide
A data breach at Marquis Software Solutions due to a firewall flaw has affected over 780,000 people across the US
Portugal Revises Cybercrime Law to Protect Security Researchers
Security researchers will now be protected from prosecution in Portugal as long as they meet certain conditions
React2Shell Under Active Exploitation by China-Nexus Hackers
React2Shell (CVE-2025-55182) is under active exploitation by Earth Lamia and Jackpot Panda, risking over two million instances worldwide
UK ICO Demands “Urgent Clarity” on Facial Recognition Bias Claims
A Home Office report has revealed racial bias in facial recognition technology used by police
Barts Health Seeks High Court Ban After Oracle EBS Breach
Barts Health NHS Trust has revealed itself to be the latest victim of Cl0p’s Oracle EBS campaign
React.js Hit by Maximum-Severity 'React2Shell' Vulnerability
A critical RCE flaw in React.js, dubbed React2Shell (CVE-2025-55182), has been disclosed with a maximum CVSS score of 10.0, posing severe risks for server-side implementations
China-Linked Warp Panda Targets North American Firms in Espionage Campaign
CrowdStrike warned that Warp Panda, a China-linked cyber-espionage group, is targeting US organizations to steal sensitive data and support Beijing’s strategic interests
Louvre to Bolster Its Security, Issues €57m Public Tender
The French museum is planning to revamp its safety and security systems following a high-profile burglary in October
Predator Spyware Maker Intellexa Evades Sanctions, New Victims Identified
Data leaks have shed a new light on Intellexa’s flagship spyware infrastructure and attack vectors
CISA and International Partners Issue Guidance for Secure AI in Infrastructure
Cybersecurity agencies have issued guidance for securely integrating AI into OT systems
Cyber Agencies Push for Digital Trust Amid AI Era with New Provenance Report
UK’s NCSC and Canada’s CCCS release a joint report on content provenance, urging organizations to strengthen digital trust and combat AI-driven misinformation
New GhostFrame Phishing Framework Hits Over One Million Attacks
The GhostFrame phishing framework, using stealthy iframes, was linked to over 1 million attacks
Skills Shortages Trump Headcount as Critical Cyber Challenge
ISC2 report reveals 59% of global organizations have critical or significant skills shortages
Post Office Escapes £1m Fine After Postmaster Data Breach
The Information Commissioner’s Office has chosen only to reprimand the Post Office after a 2024 breach
