Dec 05, 2025Ravie LakshmananVulnerability / Software Security Two hacking groups with ties to China have been observed weaponizing the newly disclosed security flaw in React Server Components (RSC) within hours of it becoming public knowledge. The vulnerability in question is CVE-2025-55182 (CVSS score: 10.0), aka React2Shell, which allows unauthenticated remote code execution. It has been…
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday released details of a backdoor named BRICKSTORM that has been put to use by state-sponsored threat actors from the People’s Republic of China (PRC) to maintain long-term persistence on compromised systems. “BRICKSTORM is a sophisticated backdoor for VMware vSphere and Windows environments,” the agency said….
A critical vulnerability in Google Messages for Wear OS has exposed millions of smartwatch users to a silent SMS hijacking attack. CVE-2025-12080, discovered by security researcher Gabriele Digregorio in March 2025 and awarded a bounty by Google’s Mobile Vulnerability Reward Program, allows any installed application to send text messages on behalf of the user without…
A recent investigation by Varonis Threat Labs uncovered a critical loophole that allowed attackers to create malicious Azure applications using reserved Microsoft names. By bypassing safeguards, hackers could register deceptive app names like “Azure Portal,” tricking users into granting dangerous permissions. This flaw enabled cybercriminals to gain initial access, maintain persistence, and escalate privileges within…