December 2025, the RondoDox botnet operators have been targeting Next.js servers impacted by the React2Shell vulnerability.

The React team published a fix on Dec. 3 and advises anyone using the react-server-dom-webpack, react-server-dom-parcel, and react-server-dom-turbopack, to upgrade immediately. There has been a recent ...

A critical vulnerability affecting the popular open source JavaScript library React is under attack — by none other by Chinese nation-state threat actors. CVE-2025-55182, which was disclosed Wednesday ...

December 2025 was a brutal reality check for security teams. While most were winding down for the holidays, threat actors weaponized a tectonic shift in the landscape, headlined by the... The post Top ...

The IT service provider, which claims to support 20pc of the web, blamed its latest disruption on a change it made to its Web Application Firewall. Cloudflare experienced the second major outage in ...

This article contains 10 of what we believe to be the biggest stories we covered throughout the year on SD Times.

Infosecurity has selected five of the most significant vulnerability exploitation campaigns of 2025 that led to major ...

Overview: Mobile application frameworks assist in faster development in a team using common code.Today, cross-platform tools support more than 40% of existing m ...

Developers Now Have Access to 50+ Enterprise-Grade Open Source Components Across Angular, Blazor, React and Web Components ...

In early December, the React team published a security advisory detailing a pre-authentication bug in multiple versions of multiple packs, affecting RCS. The bug, now dubbed “React2Shell”, is tracked ...