Over 644,000 Domains Exposed to Critical React Server Components Vulnerability
10
Dec
2025

Over 644,000 Domains Exposed to Critical React Server Components Vulnerability

The Shadowserver Foundation has released alarming new data regarding the exposure of web applications to CVE-2025-55182, a critical vulnerability affecting…

2 Men Linked to China’s Salt Typhoon Hacker Group Likely Trained in a Cisco ‘Academy’
10
Dec
2025

2 Men Linked to China’s Salt Typhoon Hacker Group Likely Trained in a Cisco ‘Academy’

To try to determine the probability of those name repetitions being a coincidence, Cary checked two databases of Chinese names…

Microsoft Releases New Guidance to Combat the Shai-Hulud 2.0 Supply Chain Threat
10
Dec
2025

Microsoft Releases New Guidance to Combat the Shai-Hulud 2.0 Supply Chain Threat

Microsoft has published comprehensive guidance addressing the Shai-Hulud 2.0 supply chain attack, one of the most significant cloud-native ecosystem compromises…

North Korean Hackers Deploy EtherRAT Malware in React2Shell Exploits
10
Dec
2025

North Korean Hackers Deploy EtherRAT Malware in React2Shell Exploits – Hackread – Cybersecurity News, Data Breaches, AI, and More

A team of cybersecurity researchers at Sysdig, a firm specialising in protecting cloud and container-based apps, has found a new…

Microsoft logo
10
Dec
2025

December Patch Tuesday fixes three zero-days, including one that hijacks Windows devices

These updates from Microsoft fix serious security issues, including three that attackers are already exploiting to take control of Windows…

React Server Components crisis escalates as security teams respond to compromises
10
Dec
2025

React Server Components crisis escalates as security teams respond to compromises

Security teams on Tuesday said they are responding to a rising number of potential compromises linked to a critical vulnerability…

New Spiderman Phishing Kit Lets Attackers Create Malicious Bank Login Pages in Few Clicks
10
Dec
2025

New Spiderman Phishing Kit Lets Attackers Create Malicious Bank Login Pages in Few Clicks

A sophisticated new phishing framework dubbed “Spiderman” has emerged in the cybercrime underground, dramatically lowering the barrier to entry for…

Gemini Zero-Click Flaw Let Attackers Access Gmail, Calendar, and Google Docs
10
Dec
2025

Gemini Zero-Click Flaw Let Attackers Access Gmail, Calendar, and Google Docs

A critical vulnerability in Google Gemini Enterprise and Vertex AI Search, dubbed GeminiJack, that allows attackers to exfiltrate sensitive corporate data…

How digital twins are helping people with motor neurone disease speak
10
Dec
2025

How digital twins are helping people with motor neurone disease speak

An initiative by a UK-based charity, supported by technology companies and universities, has developed an artificial intelligence (AI)-powered digital twin…

North Korean threat actors use JSON sites to deliver malware via trojanized code
10
Dec
2025

New EtherRAT backdoor surfaces in React2Shell attacks tied to North Korea

New EtherRAT backdoor surfaces in React2Shell attacks tied to North Korea Pierluigi Paganini December 10, 2025 NK-linked hackers are likely…

Pro-Russia hacktivists launching attacks that could damage OT
10
Dec
2025

Pro-Russia hacktivists launching attacks that could damage OT

Listen to the article 6 min This audio is auto-generated. Please let us know if you have feedback. Hacktivist groups…

Phil Muncaster
10
Dec
2025

How whaling attacks target top executives

Is your organization’s senior leadership vulnerable to a cyber-harpooning? Learn how to keep them safe. 09 Dec 2025  •  ,…