Normal view

There are new articles available, click to refresh the page.

Before yesterdayMain stream

Trend Micro Research News
CVE-2025-55182: React2Shell Analysis, Proof-of-Concept Chaos, and In-the-Wild Exploitation 9 December 2025 at 19:00

CVE-2025-55182: React2Shell Analysis, Proof-of-Concept Chaos, and In-the-Wild Exploitation

By: Peter Girnus Deep Patel Jack Walsh Lucas Silva Ashish Verma

9 December 2025 at 19:00

CVE-2025-55182 is a CVSS 10.0 pre-authentication RCE affecting React Server Components. Amid the flood of fake proof-of-concept exploits, scanners, exploits, and widespread misconceptions, this technical analysis intends to cut through the noise.

Trend Micro Research News
SocGholish’s Intrusion Techniques Facilitate Distribution of RansomHub Ransomware 13 March 2025 at 20:00

SocGholish’s Intrusion Techniques Facilitate Distribution of RansomHub Ransomware

Trend Micro Research News

By: Adam O'Connor Ian Kenefick Jack Walsh Lucas Silva Laura Medina

13 March 2025 at 20:00

Trend Research analyzed SocGholish’s MaaS framework and its role in deploying RansomHub ransomware through compromised websites, using highly obfuscated JavaScript loaders to evade detection and execute various malicious tasks.

Trend Micro Research News
Black Basta and Cactus Ransomware Groups Add BackConnect Malware to Their Arsenal 2 March 2025 at 19:00

Black Basta and Cactus Ransomware Groups Add BackConnect Malware to Their Arsenal

Trend Micro Research News

By: Catherine Loveria Stephen Carbery Jovit Samaniego Adam O'Connor Ian Kenefick Gabriel Cardoso Lucas Silva Jack Walsh

2 March 2025 at 19:00

In this blog entry, we discuss how the Black Basta and Cactus ransomware groups utilized the BackConnect malware to maintain persistent control and exfiltrate sensitive data from compromised machines.