December 2025, the RondoDox botnet operators have been targeting Next.js servers impacted by the React2Shell vulnerability.

RondoDox botnet exploits the React2Shell vulnerability in Next.js, with over 90,000 exposed systems used to deploy miners and ...

Business-grade email server software SmarterMail just patched a maximum-severity vulnerability that allowed threat actors to ...

Part two of our series, where we take a look back at some of the biggest SBC stories covered on our podcast over the last 12 months.

The explosive, easy-to-trigger vulnerability was exploited within hours of disclosure, exposing the risks of default ...

Executive Overview Over the past week, global threat activity has highlighted a critical reality: modern cyber attacks are faster, more coordinated, and increasingly industrialized. From mass ...

Discover the top seven penetration testing tools essential for enterprises in 2025 to enhance security, reduce risks, and ensure compliance in an evolving cyber landscape. Learn about their core ...

HPE has patched a maximum-severity vulnerability in its OneView platform which could cause quite several problems to enterprises.

Discover how AI and automation strengthen defenses, streamline operations, and deliver measurable business impact. Hear from ...

Google made another change to the JavaScript SEO documentation help document to explain and clarify JavaScript execution on non-200 HTTP status codes. The change. Google wrote, “All pages with a 200 ...

Chinese threat group UAT-9686 has been exploiting the zero-day CVE-2025-20393 to hack Cisco security appliances.

In early December 2025, the React core team disclosed two new vulnerabilities affecting React Server Components (RSC). These issues – Denial-of-Service and Source Code Exposure were found by security ...