Critical React2Shell flaw exploited in ransomware attacks

A ransomware gang exploited the critical React2Shell vulnerability (CVE-2025-55182) to gain initial access to corporate ...
The Hacker News

.NET SOAPwn Flaw Opens Door for File Writes and Remote Code Execution via Rogue WSDL

Research shows a .NET proxy design flaw enables file writes and RCE through attacker-supplied WSDL in multiple products.
The Hacker News

Storm-0249 Escalates Ransomware Attacks with ClickFix, Fileless PowerShell, and DLL Sideloading

Storm-0249 now employs ClickFix, fileless PowerShell, and DLL sideloading to gain stealthy access that enables ransomware ...
WeLiveSecurity

MuddyWater: Snakes by the riverbank

ESET researchers have identified new MuddyWater activity primarily targeting organizations in Israel, with one confirmed target in Egypt. MuddyWater, also referred to as Mango Sandstorm or TA450, is ...
InfoWorld

AI-assisted software development with Amazon Q Developer

Amazon Q Developer is a useful AI-powered coding assistant with chat, CLI, Model Context Protocol and agent support, and AWS ...
DataBreachToday

Breach Roundup: DPRK-Linked EtherRAT Targets React2Shell

This week, likely North Korean hackers exploited React2Shell. The Dutch government defended its seizure of Nexperia. Prompt ...

Windows PowerShell now warns when running Invoke-WebRequest scripts

Microsoft says Windows PowerShell now warns when running scripts that use the Invoke-WebRequest cmdlet to download web ...

Leonardo DiCaprio movie torrent hides complex PowerShell scripts

Fake movie torrents deliver multi-stage malware without the user noticing execution stepsAgentTesla steals browser, email, ...
USA Today

Mike Lindell files paperwork to run for Minnesota governor

MyPillow founder Mike Lindell, a loyal supporter of President Donald Trump, is considering jumping into the race for governor of Minnesota. Lindell's campaign committee filed paperwork with the ...