TechSecInfo

The tech + cyber briefing: what happened, why it matters, and where it came from.

Cyber Security

RondoDox Botnet Exploits Critical React2Shell Flaw to Hijack IoT Devices and Web Servers

By rooter

Cybersecurity researchers have disclosed details of a persistent nine-month-long campaign that has targeted Internet of Things (IoT) devices and web applications to enroll them into a botnet known as RondoDox.
As of December 2025, the activity has been observed leveraging the recently disclosed React2Shell (CVE-2025-55182, CVSS score: 10.0) flaw as an initial access vector, CloudSEK said in an

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

By rooter

Related Post

Cyber Security

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

rooter
Cyber Security

Cyber Risk Management as the Backbone of Enterprise Security

rooter
Cyber Security

Zscaler-SquareX Deal Boosts Zero Trust, Secure Browsing Capabilities

rooter

Leave a Reply

You Missed

News

Space Station returns to a full crew complement after a month

News

OpenClaw founder Peter Steinberger is joining OpenAI

News

Sony Dials In For Another ‘Charlie’s Angels’ Movie

News

Ancient Mars was warm and wet, not cold and icy