securityaffairs1d ago
#RondoDox botnet expands arsenal targeting 174 flaws, and hits 15,000 daily exploit attempts
https://securityaffairs.com/189569/malware/rondodox-botnet-expands-arsenal-targeting-174-flaws-and-hits-15000-daily-exploit-attempts.html
#securityaffairs #hacking #malware
RondoDox botnet expands arsenal targeting 174 flaws, and hits 15,000 daily exploit attempts

RondoDox botnet targets 174 flaws, reaching 15,000 daily exploit attempts in a more focused and strategic campaign.

Security Affairs
The Threat CodexFeb 26
The Industrialization of Botnets Automation and Scale as a New Threat Infrastructure
#RondoDox #RedTail #Androxgh0stBotnet
https://www.trendmicro.com/vinfo/us/security/news/threat-landscape/the-industrialization-of-botnets-automation-and-scale-as-a-new-threat-infrastructure
The Industrialization of Botnets: Automation and Scale as a New Threat Infrastructure | Trend Micro (US)

Today’s botnet operations, enabled by automation and shared resources, are outpacing traditional response and patching models. This highlights the growing importance of security capabilities that can match the speed and scale of these attacks.

The Threat CodexJan 18
Analyzing React2Shell Threat Actors
#CVE_2025_55182 #RondoDox
https://www.f5.com/labs/articles/analyzing-react2shell-threat-actors
Analyzing React2Shell Threat Actors

Sensor Intel Series: December CVE-2025-55182 Trends

Teddy / Domingo (🇨🇵/🇬🇧)Jan 6
#React2Shell : la #faille exploitée par un #botnet pour prendre le contrôle de serveurs #web.
Une #vulnérabilité critique capable de donner le contrôle d’un serveur à distance attire forcément les attaques automatisées. En décembre, le botnet #RondoDox a commencé à exploiter React2Shell pour compromettre des serveurs web exposés et y déployer ses charges.
https://www.clubic.com/actualite-593872-react2shell-la-faille-exploitee-par-un-botnet-pour-prendre-le-controle-de-serveurs-web.html
React2Shell : la faille exploitée par un botnet pour prendre le contrôle de serveurs web

Une vulnérabilité critique capable de donner le contrôle d’un serveur à distance attire forcément les attaques automatisées. En décembre, le botnet RondoDox a commencé à exploiter React2Shell pour compromettre des serveurs web exposés et y déployer ses charges.

clubic.com
Nizar Kerkeni 🇹🇳 نزار القرقنيJan 5

Botnet RondoDoX : 90 000 serveurs Next.js sous le feu de React2Shell

https://goodtech.info/botnet-rondodox-exploit-react2shell-nextjs-securite/

#NextJS #RondoDoX #CyberSécurité

🚨 90 000 serveurs Next.js en danger : L'exploit React2Shell est là.

Le botnet RondoDoX frappe fort avec une faille notée 10/10. Votre infrastructure Next.js est-elle à jour ? Découvrez comment contrer l'attaque.

Goodtech
Hackread.comJan 3

Hackers are using RondoDox botnet to exploit the React2Shell vulnerability in #Next.js to hijack unpatched devices worldwide - home routers, smart tech, and small sites are at risk.

Read: https://hackread.com/rondodox-botnet-react2shell-hijack-unpatched-devices/

#CyberSecurity #RondoDox #Botnet #React2Shell #Nextjs

RondoDox Botnet is Using React2Shell to Hijack Thousands of Unpatched Devices

Follow us on Bluesky, Twitter (X), Mastodon and Facebook at @Hackread

The New OilJan 2

#RondoDox #botnet exploits #React2Shell flaw to breach #NextJS servers

https://www.bleepingcomputer.com/news/security/rondodox-botnet-exploits-react2shell-flaw-to-breach-nextjs-servers/

#cybersecurity

RondoDox botnet exploits React2Shell flaw to breach Next.js servers

The RondoDox botnet has been observed exploiting the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js servers with malware and cryptominers.

BleepingComputer
The Threat CodexJan 1
RondoDoX Botnet Weaponizes React2Shell
#RondoDox #CVE_2025_55182
https://www.cloudsek.com/blog/rondodox-botnet-weaponizes-react2shell
RondoDoX Botnet Weaponizes React2Shell | CloudSEK

CloudSEK’s report details a persistent nine-month RondoDoX botnet campaign targeting IoT devices and web applications. Recently, the threat actors have shifted to weaponizing a critical Next.js vulnerability, deploying malicious payloads like "React2Shell" and cryptominers. This analysis offers crucial insights into their evolving infrastructure and provides defensive recommendations to mitigate these sophisticated attacks.

securityaffairsJan 1
#React2Shell under attack: #RondoDox #Botnet spreads miners and #malware
https://securityaffairs.com/186386/uncategorized/react2shell-under-attack-rondodox-botnet-spreads-miners-and-malware.html
#securityaffairs #hacking
React2Shell under attack: RondoDox Botnet spreads miners and malware

RondoDox botnet exploits the critical React2Shell flaw (CVE-2025-55182) to infect vulnerable Next.js servers with malware and cryptominers.

Security Affairs
maniabelNov 27

Angriff: ShadowV2- & RondoDox gegen IoT‑Geräte
Die hinter dem Mirai‑basierten ShadowV2‑Botnet stehenden Bedrohungsakteure wurden durch FortiGuard Lab-Forschende dabei beobachtet, IoT‑Geräte in verschiedenen Branchen und Kontinenten zu infizieren. Die Kampagne war offenbar nur während des Ausfalls von Amazon Web Services (AWS) Ende Oktober 2025 aktiv. Fortinet stuft die Aktivität als „ein Testlauf im Vorfeld zukünftiger Angriffe“ ein.

Mehr: https://maniabel.work/archiv/586

#Botnetz, #Malware, #Mirai, #RondoDox, #ShadowV2
#infosec #infosecnews

Angriff: ShadowV2- & RondoDox gegen IoT‑Geräte – maniabel.work

Entdecken Sie, was Sie für die Sicherheit und den Schutz Ihrer Daten selbst tun können. <meta charset=