MUST READ

Hackers abused React Native CLI flaw to deploy Rust malware before public disclosure

 | 

APT28 exploits Microsoft Office flaw in Operation Neusploit

 | 

Notepad++ infrastructure hack likely tied to China-nexus APT Lotus Blossom

 | 

MoltBot Skills exploited to distribute 400+ malware packages in days

 | 

Panera Bread breach affected 5.1 Million accounts, HIBP Confirms

 | 

Hackers exploit unsecured MongoDB instances to wipe data and demand ransom

 | 

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 82

 | 

Nation-state hack exploited hosting infrastructure to hijack Notepad++ updates

 | 

Security Affairs newsletter Round 561 by Pierluigi Paganini – INTERNATIONAL EDITION

 | 

DOJ releases details alleged talented hacker working for Jeffrey Epstein

 | 

Cyberattacks Disrupt Communications at Wind, Solar, and Heat Facilities in Poland

 | 

SmarterTools patches critical SmarterMail flaw allowing code execution

 | 

U.S. CISA adds a flaw in Ivanti EPMM to its Known Exploited Vulnerabilities catalog

 | 

Empire Market co-founder faces 10 years to life after guilty plea

 | 

SolarWinds addressed four critical Web Help Desk flaws

 | 

Google targets IPIDEA in crackdown on global residential proxy networks

 | 

Nation-state and criminal actors leverage WinRAR flaw in attacks

 | 

OpenSSL issued security updates to fix 12 flaws, including Remote Code Execution

 | 

U.S. CISA adds a flaw in multiple Fortinet products to its Known Exploited Vulnerabilities catalog

 | 

Fortinet patches actively exploited FortiOS SSO auth bypass (CVE-2026-24858)

 | 

Metro4Shell

Pierluigi Paganini February 03, 2026
Hackers abused React Native CLI flaw to deploy Rust malware before public disclosure

Hackers exploit a critical React Native CLI flaw (CVE-2025-11953) to run remote commands and drop stealthy Rust malware, weeks before public disclosure. Attackers are actively exploiting a critical flaw in the React Native CLI Metro server, tracked as CVE-2025-11953. The React Native CLI’s Metro dev server binds to external interfaces by default and exposes a […]

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Hackers abused React Native CLI flaw to deploy Rust malware before public disclosure

Hacking / February 03, 2026

APT28 exploits Microsoft Office flaw in Operation Neusploit

APT / February 03, 2026

Notepad++ infrastructure hack likely tied to China-nexus APT Lotus Blossom

APT / February 03, 2026

MoltBot Skills exploited to distribute 400+ malware packages in days

Malware / February 02, 2026

Panera Bread breach affected 5.1 Million accounts, HIBP Confirms

Data Breach / February 02, 2026