GhostPoster attacks hide malicious JavaScript in Firefox addon logos

A new campaign dubbed 'GhostPoster' is hiding JavaScript code in the image logo of malicious Firefox extensions counting more ...

Hackers are exploiting a JavaScript library to plant crypto drainers

Hackers are exploiting a vulnerability in React to inject wallet-draining malware into cryptocurrency websites.

North Korean hackers exploit React2Shell flaw in EtherRAT malware attacks

A new malware implant called EtherRAT, deployed in a recent React2Shell attack, runs five separate Linux persistence ...
FinanceFeeds

Hackers Exploit JavaScript Library to Deploy Crypto Wallet Drainers

Hackers exploit a critical React JavaScript vulnerability, CVE-2025-55182, to deploy crypto wallet drainers on legitimate websites ...

Shai Hulud malware turns developers into unwitting distributors in NPM supply chain attacks

Shai Hulud is a malware campaign first observed in September targeting the JavaScript ecosystem that focuses on supply chain ...
The Hacker News

North Korea-linked Actors Exploit React2Shell to Deploy New EtherRAT Malware

North Korea-linked attackers exploit CVE-2025-55182 to deploy EtherRAT, a smart-contract-based RAT with multi-stage ...

Malicious Firefox Extensions Hid Malware Inside Their Own Logos, Researchers Warn

Security researchers have uncovered a troubling new malware campaign that has been hiding malicious code inside the logo ...

Darktrace researchers discover devilishly deadly new BeaverTail malware variant linked to Lazarus Group

Darktrace threat researchers have identified and analyzed a new variant of BeaverTail, a malware family associated with North Korea’s Lazarus Group activity. BeaverTail is a JavaScript-based ...
Dark Reading

React2Shell Exploits Flood the Internet as Attacks Continue

As exploitation activity against CVE-2025-55182, researchers are finding some exploits contain bypasses for Web application firewall (WAF) rules.
Cybernews

React vulnerability hits crypto websites with drainers

As reported by Cybernews, the React vulnerability, which enables external attackers to run privileged, arbitrary code on ...
Cyber Daily

Whether you’re naughty or nice, SantaStealer malware could be coming for you

Russian hackers are circulating a new malware-as-a-service infostealer with potential anti-virus bypass capabilities.
hodlfm

Hackers Exploit React Flaw to Quietly Drain Crypto Wallets

The issue, tracked as CVE-2025-55182, was disclosed on December 3 by the React team after being identified by white-hat ...