Google links more Chinese hacking groups to React2Shell attacks

Over the weekend, ​Google's threat intelligence team linked five more Chinese hacking groups to attacks exploiting the ...

7 CISA security rules every Android user should know

Following a reported surge in espionage activity, the agency in charge of countering cyber threats in the U.S. has updated ...

North Korean hackers exploit React2Shell flaw in EtherRAT malware attacks

A new malware implant called EtherRAT, deployed in a recent React2Shell attack, runs five separate Linux persistence ...

China, Iran are having a field day with React2Shell, Google warns

At least five more Chinese spy crews, Iran-linked goons, and financially motivated criminals are now attacking the ...
The Hacker News

React2Shell Exploitation Escalates into Large-Scale Global Attacks, Forcing Emergency ...

CISA warns that attackers are actively exploiting the React2Shell CVE-2025-55182 flaw, urging fast patching across vulnerable ...
Cyber Daily

CISA warns of active exploitation of Sierra router and Google Chrome Mac vulnerabilities

CVE-2018-4063 is an old vulnerability impacting an even older device, the Sierra Wireless AirLink ES450 wireless gateway, ...
The Hacker News

New React RSC Vulnerabilities Enable DoS and Source Code Exposure

The React team has released fixes for two new types of flaws in React Server Components (RSC) that, if successfully exploited, could result in denial-of-service (DoS) or source code exposure.

警惕!你的手机正在"裸奔":揭秘移动端隐私泄露黑色产业链

全球隐私政策与企业追踪技术的博弈正陷入"猫鼠游戏"困局。欧盟《数字综合法案》虽实现用户"单次点击"拒绝所有Cookie的权利,要求网站至少六个月内遵守用户选择,但国内很多企业通过设备指纹技术(如手机MEID脱敏、传感器数据分析)构建替代追踪方案,在苹果ATT政策下仍保持60%以上定向效果。苹果ATT框架使IDFA授权率骤降至20%,迫使广告行业转向第一方数据与实体解析技术,谷歌通过wbraid参数 ...