CSOonline

Security lapse lets researchers view React2Shell hackers’ dashboard

The campaign is stealing credentials from unpatched servers at scale, due to “neglect and efficiency,” says analyst, and the damage 'could be absolute.' An apparent security lapse has allowed ...
Dark Reading

Automated Credential Harvesting Campaign Exploits React2Shell Flaw

A global cross-industry credential theft campaign is exploiting public-facing Web applications vulnerable to React2Shell and then deploying an automated collection tool to steal credentials and other ...
The New York Times

Climate and Environment

Prosecutors say Amit Forlit ran a global hacking operation on behalf of a Washington lobbying group that aimed to thwart environmental lawsuits against oil companies. By Karen Zraick Scientists say ...