SecurityWeek

RondoDox Botnet Exploiting React2Shell Vulnerability

December 2025, the RondoDox botnet operators have been targeting Next.js servers impacted by the React2Shell vulnerability.

New GlassWorm malware wave targets Macs with trojanized crypto wallets

A fourth wave of the "GlassWorm" campaign is targeting macOS developers with malicious VSCode/OpenVSX extensions that deliver ...
Cybernews

Researchers expose another malicious browser extension campaign affecting millions

Researchers from Koi Security claim to have identified a well-funded criminal organization responsible for several of the largest and most sophisticated campaigns they’ve ever uncovered.