The US government has announced a $10 million reward for information on the Iranian hacking group Shahid Shushtari, linked to Iran’s IRGC-CEC. The group has conducted cyberattacks against critical infrastructure and influence operations globally, including targeting the 2024 Olympics and US elections. #ShahidShushtari #IRGC-CEC…
Tag: CRITICAL INFRASTRUCTURE
A critical insecure-deserialization vulnerability (CVE-2025-55182, aka React2Shell) in React Server Components enables unauthenticated remote code execution against React 19 and Next.js deployments and has been rapidly weaponized in the wild. Observed activity includes mass scanning and exploitation by China-nexus groups and opportunistic botnets, and mitigations include upgrading to patched versions and applying runtime protections such as those offered by Aqua. #CVE-2025-55182 #React2Shell
This article discusses the discovery of critical vulnerabilities in Microsoft’s SharePoint software exploited by multiple Chinese hacking groups, leading to widespread cyberattacks. It highlights the importance of patching and the suspicious cooperation between state-linked groups and cybercriminals, raising concerns about escalation and motives behind these operations. #ToolShell #SharePointVulnerabilities…
React2Shell (CVE-2025-55182) is a critical unauthenticated remote code execution vulnerability in React Server Components that allows attackers to deliver malicious Flight payloads and achieve code execution on servers running React 19.x with Server Components. It was rapidly weaponized with public PoCs, Metasploit modules, large-scale scanning, confirmed compromises, and nation-state exploitation—forcing KEV listing and causing operational impacts reported by providers like Cloudflare. #React2Shell #CVE-2025-55182
The Wipro State of Cybersecurity Report 2025 provides an extensive analysis of the current cybersecurity landscape, highlighting key trends such as the rise of AI-driven attacks, nation-state cyber warfare, and evolving cyber capabilities within organizations. It emphasizes strategic investment priorities like Zero Trust frameworks and AI-based threat detection while underscoring challenges including AI implementation and budget constraints. #NationStateCyberWarfare #EmailPhishing #ZeroTrust #ArtificialIntelligence
The Trump administration’s new national security strategy emphasizes collaboration between U.S. government, industry, and regional partners to safeguard critical infrastructure and networks from cyber threats. It highlights efforts to enhance real-time cyber defense capabilities, promote deregulation, and focus on regional partnerships, especially in the Western Hemisphere. #NationalSecurityStrategy #CyberDefense #WesternHemisphere #U.S.Infrastructure…
![Cybersecurity News | Daily Recap [04 Dec 2025]](https://www.hendryadrian.com/tweet/image/DailyRecap.png "Cybersecurity News | Daily Recap [04 Dec 2025]")
Daily Recap, regulatory moves span India withdrawing the Sanchar Saathi mandate and the UK’s cookie-enforcement push, with broader state activity highlighting Russia’s connected-car vulnerabilities and sanctions related to cyber espionage. The week also features critical RSC bugs in React/Next.js, LNK flaws, Elementor/King Addons WordPress exploits, a record AISURU DDoS with up to 4 million bots, Predator spyware activity, and data breaches at Freedom Mobile and Marquis alongside Rhysida ransomware pressure on local governments. #SancharSaathi #PredatorSpyware #AISURU #Rhysida #KingAddons #LNK #FreedomMobile #Marquis
Chinese state-sponsored hackers are deploying the sophisticated BRICKSTORM malware to infiltrate government and IT sectors worldwide, maintaining long-term access for espionage and data theft. Cybersecurity agencies and firms have issued warnings and indicators of compromise, emphasizing the threat’s persistence and stealthy nature. #BRICKSTORM #PRCcyberactors…
The Aisuru botnet has launched over 1,300 DDoS attacks within three months, including record-breaking peaks at 29.7 terabits per second. These attacks have targeted multiple sectors worldwide, demonstrating the increasing severity of hyper-volumetric DDoS threats. #Aisuru #Cloudflare #DDoSAttacks #HyperVolumetric…
Chinese hackers have been targeting VMware vSphere servers with the Brickstorm malware, aiming to steal credentials and maintain long-term access. The joint advisory from CISA, NSA, and Cyber Security Centre highlights detection and prevention strategies for organizations. #Brickstorm #WarpPanda
NATO’s largest cyberdefense exercise, Cyber Coalition, involved over 1,300 participants from 29 allies and 7 partner nations, focusing on defending against complex cyber threats to critical infrastructure. The exercise emphasizes international cooperation, information sharing, and adapting to evolving cyber threats, including space-based scenarios and hybrid attacks. #NATO #CyberCoalition #CriticalInfrastructure #HybridThreats #SpaceCybersecurity…
Recent cybersecurity incidents highlight the evolving tactics of hackers targeting DeFi protocols, malware, phishing campaigns, and critical infrastructure. Staying aware of these threats is essential to protect sensitive data, financial assets, and online trust. #YearnFinance #BPFDoor…
Several countries’ cybersecurity agencies have released joint guidelines for the secure integration of AI in operational technology (OT) environments within critical infrastructure. The document emphasizes understanding AI risks, proper governance, use case evaluation, and oversight practices to enhance safety and security. #OperationalTechnology #CriticalInfrastructure #AIIntegration #CybersecurityGuidelines…
Daily Recap, this edition highlights regulatory actions shaping cybersecurity—from Temu being sued for customer data misuse and the EU’s online marketplace data-processing ruling to the FTC’s Illuminate order and India’s SIM-mandate as a cyber-safety push. Incidents and threats include an Oracle breach disclosure, the Shai-Hulud 2.0 NPM campaign exposing up to 400,000 developer secrets, persistent browser extensions backdoors, and Iran-linked phishing against critical infrastructure, alongside AI safety initiatives and major security funding.
#Temu #Illuminate #ShaiHulud #Oracle #Iran #Israel #Egypt #SIMMandate #EUSingaporePact #AustraliaAIInstitute #IPCamera
Ransomware and supply chain attacks reached record levels in November, with ransomware groups increasingly leveraging supply chain vulnerabilities. The U.S. experienced the highest number of attacks, targeting critical sectors and exfiltrating sensitive data, emphasizing the need for enhanced cybersecurity measures. #Qilin #ACIRA #CL0P #SupplyChainVulnerabilities…