RondoDox botnet exploits the React2Shell vulnerability in Next.js, with over 90,000 exposed systems used to deploy miners and ...

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js ...

Security firm CloudSEK has uncovered a botnet campaign that is exploiting the React2Shell vulnerability in the Meta-developed ...

RondoDox botnet exploited React2Shell to compromise IoT devices and Next.js servers over a nine-month global campaign.

A vulnerability in Totolink EX200 leads to the launch of an unauthenticated root-level Telnet service, allowing complete ...

The first ThreatsDay Bulletin of 2026 tracks GhostAd adware, macOS malware, proxy botnets, cloud exploits, and more emerging ...

The Kimwolf botnet has infected an estimated 2 million Android devices. Security experts warn that the malicious network ...

Kimwolf is the latest reminder that the most dangerous botnets now grow quietly inside everyday consumer electronics.

A sophisticated ClickFix campaign is targeting entities in the hospitality sector to infect them with the DCRat remote access ...

Some stories, though, were more impactful or popular with our readers than others. This article explores 15 of the biggest ...

A torrent of proof-of-concept (PoC) exploits for React2Shell has hit the internet following the vulnerability's disclosure last week, and while security researchers say most are fake, ineffective and ...

The explosive, easy-to-trigger vulnerability was exploited within hours of disclosure, exposing the risks of default ...