React2Shell flaw (CVE-2025-55182) exploited for remote code execution
The availability of exploit code will likely lead to more widespread opportunistic attacks
Similar Posts
Swedish IT Company Data Breach Exposes Personal Details of 1.5 Million Users
Bys sDivya reports: Swedish authorities have launched formal investigations into a significant data breach affecting Miljödata, a prominent IT company whose security lapse exposed the personal information of over 1.5 million individuals. The Swedish Data Protection Authority (IMY) initiated the probe following the August attack, which resulted in sensitive data being published on the Darknet and affecting multiple……
Computers containing thousands of patients’ records stolen from Belfast hospital
Bys sDeborah McAleese reports: Twenty-eight computers containing the records of thousands of patients have been stolen from a Belfast Hospital, UTV can reveal. The computers were being used to train staff on the new encompass system, a digital healthcare record that is being rolled out across all health trusts. Belfast Health Trust said the missing appliances…
GOLD BLADE Remote DLL Sideloading Attack Deploys RedLoader
Bys sAttacks surged in July 2025 after the threat group updated its process to combine malicious LNK files and a recycled WebDAV technique
Security Researcher Comments on HIPAA Security Rule
Bys sAs long-time readers know, DataBreaches has occasionally run into difficulties when trying to helpfully notify entities of their data leaks or breaches. In other cases, independent researchers have also reported frustration with trying to get entities to respond to responsible disclosures. More often than not, initial attempts at disclosure are ignored or go to spam…
Sompo Japan Insurance submits improvement plan after info leakage
Bys sInsurance Asia reports: Sompo Japan Insurance has submitted a business improvement plan to the local Financial Services Agency (FSA). The FSA had earlier ordered the insurer to submit the plan on 24 March 2025, in relation to the leakage of customer information. In a statement, Sompo Japan Insurance apologized for “any inconvenience and concern caused to…
Microsoft Links Ongoing SharePoint Exploits to Three Chinese Hacker Groups
Bys sMicrosoft has formally tied the exploitation of security flaws in internet-facing SharePoint Server instances to two Chinese hacking groups called Linen Typhoon and Violet Typhoon as early as July 7, 2025, corroborating earlier reports. The tech giant said it also observed a third China-based threat actor, which it tracks as Storm-2603, weaponizing the flaws as…