North Korean Hackers Deploy EtherRAT Malware in React2Shell Exploits

3 minute read

North Korean Hackers Deploy EtherRAT Malware in React2Shell Exploits

Sysdig discovered North Korea-linked EtherRAT, a stealthy new backdoor using Ethereum smart contracts for C2 after exploiting the critical React2Shell vulnerability (CVE-2025-55182).

byDeeba Ahmed

December 10, 2025

Critical ‘React2Shell’ Vulnerability (CVE-2025-55182) is Being Actively Exploited

3 minute read

News

Critical ‘React2Shell’ Vulnerability (CVE-2025-55182) is Being Actively Exploited

React2Shell, a critical, max-severity flaw (CVE-2025-55182) allows unauthenticated RCE in React and Next.js. Security researchers confirm active exploitation. Update immediately!

byDeeba Ahmed

December 6, 2025

Why You Should Use Geolocation in Your React App's Authentication Process

4 minute read

Technology

Why You Should Use Geolocation in Your React App’s Authentication Process

Improve security in your React app with geolocation-based authentication, adding a strong layer beyond passwords to prevent unauthorised access.

byOwais Sultan

July 21, 2025

Next.js Middleware Flaw Lets Attackers Bypass Authorization

2 minute read

Security

Next.js Middleware Flaw Lets Attackers Bypass Authorization

Researchers have uncovered a critical vulnerability (CVE-2025-29927) in Next.js middleware, allowing authorization bypass. Learn about the exploit and fixes.

byDeeba Ahmed

March 26, 2025

The Latest

Lone Hacker Used Infostealers to Access Data at 50 Global Companies

Why Legitimate Bot Traffic Is a Growing Security Blind Spot

Major Data Breach Hits Company Operating 150 Gas Stations in the US

Millions of Android Powered TVs and Streaming Devices Infected by Kimwolf Botnet

React

North Korean Hackers Deploy EtherRAT Malware in React2Shell Exploits

Critical ‘React2Shell’ Vulnerability (CVE-2025-55182) is Being Actively Exploited

Why You Should Use Geolocation in Your React App’s Authentication Process

Next.js Middleware Flaw Lets Attackers Bypass Authorization

Connex IT Partners with AccuKnox for Zero Trust CNAPP Security in Southeast Asia

Criminal IP and Palo Alto Networks Cortex XSOAR integrate to bring AI-driven exposure intelligence to automated incident response

INE Security Expands Across Middle East and Asia to Accelerate Cybersecurity Upskilling

Link11 Identifies Five Cybersecurity Trends Set to Shape European Defense Strategies in 2026

Critical React2Shell Vulnerability (CVE-2025-55182) Analysis: Surge in Attacks Targeting RSC-Enabled Services Worldwide