Kohler’s toilet cameras may not be as private as you think. Despite their claims, security researcher Simon Fondrie-Teitler found these devices lack true end-to-end encryption. So, while your rear end might be secure, Kohler’s backend isn’t so discreet. Talk about a bathroom break-in!

React2Shell is causing a ruckus! This pesky vulnerability lets unauthenticated attackers run wild with remote code execution. CISA has added it to their KEV catalog, and it’s already been exploited by opportunistic cybercriminals. So, if you’re using React, it’s time to update and beat those digital baddies at their own game!

Multifactor authentication (MFA) is like a security buffet, offering various options for your digital safety diet. But not all are equally filling—those one-time passwords sent to your phone are more like Swiss cheese. For true protection, aim for phishing-resistant MFA, like passkeys, which are as secure as trying to hack into Fort Knox.

Apache Tika users, brace yourselves! A maximum-severity XXE vulnerability, CVE-2025-66516, has been found lurking in Tika’s core, PDF, and parser modules. With a perfect CVSS score of 10.0, this flaw lets attackers sneak in XML External Entity attacks. So, unless you fancy unwanted visitors, updating to the latest versions is highly recommended!

The FBI warns that criminals are using altered social media images for “virtual kidnapping” extortion scams. These fraudsters claim to have kidnapped loved ones, sending doctored “proof of life” photos. To dodge these shady shenanigans, the FBI suggests using a code word with loved ones and reporting scams to their Internet Crime Complaint Center.

React2Shell is creating chaos in the tech world. Cloudflare took its entire network down to patch the flaw, causing a global blackout. Meanwhile, hackers are using the exploit faster than you can say “insecure deserialization.” It’s like Game of Thrones but with code, and everyone is hustling to avoid the Red Wedding.

Lyra Rebane’s SVG clickjacking attack is like a mischievous magician, using SVG and CSS to pull data tricks from hidden hats. Her method exploits SVG filters to breach the same-origin policy, turning web security into a comedy of errors. Google Docs wasn’t laughing, but Rebane earned $3133.70 for her efforts.

Clop ransomware actors have stolen invoices from Barts Health NHS Trust, exposing names and addresses of patients and ex-employees. While the stolen data is lurking on the dark web, Barts assures its core IT is safe. Avoid any shady messages—unless it’s from a long-lost prince wanting to share his fortune!

Donald Trump’s national security strategy aims to untangle the U.S. economy from foreign adversaries like a cat freeing itself from yarn. U.S. intelligence agencies will now monitor global supply chains to safeguard American security and prosperity, making sure our economy doesn’t get caught in an international game of economic tug-of-war.

The Comet browser is at the center of a zero-click Google Drive wiper attack that exploits its agentic behavior. With a polite email, attackers can make the browser mistakenly delete files, thinking it’s a routine task. Remember, sometimes “please” and “thank you” can be downright dangerous!

Keeper Security appoints Tim Strickland as Chief Revenue Officer to lead its global revenue organization. Strickland, the former CRO at ZoomInfo, will drive Keeper’s go-to-market strategy and customer growth. His expertise in scaling SaaS companies will aid Keeper’s expansion in the privileged access management and identity security solutions market.

React2Shell, the latest critical vulnerability in the React JavaScript library, has been targeted by Chinese state actors. With a severity score of 10, it’s serious business. But don’t panic—patches are available. Act fast, or risk joining the digital hall of shame!

The FBI warns about a new twist on virtual kidnapping scams involving altered images from social media. Criminals send manipulated “proof of life” photos to pressure victims into paying ransoms, even though no actual kidnapping occurs. Be cautious, verify claims, and establish a family code word to combat these scams effectively.

Beware the XML external entity attack lurking in Apache Tika! CVE-2025-66516 is a heavyweight contender with a perfect 10.0 CVSS score. Like a ninja, it sneaks in through crafted XFA files in PDFs. To all Tika users, update now or face the wrath of this digital mischief-maker.

In 2025, manufacturers remained a top target for ransomware, with half paying ransoms averaging $1 million. Lacking security expertise and facing costly downtimes, they’re prime prey. As AI adoption grows, so do risks, as attackers exploit vulnerabilities in increasingly automated environments. Manufacturers, brace yourselves: ransomware isn’t going anywhere soon!

SecurityWeek’s cybersecurity news roundup is your weekly digest of digital drama. From Claude Skills executing ransomware like a boss to North Korea’s crypto heist capers, it’s packed with stories that didn’t make the front page but should have. Dive in for your dose of data debacles!

React2Shell, a critical remote code execution vulnerability in React.js, is making waves with its CVSS rating of 10.0, and it’s not just for bragging rights. This flaw could let attackers take control of servers faster than you can say “JavaScript.” Exploitation is easy, so upgrading React.js immediately is a must!

Cloudflare’s attempt to patch the React2Shell vulnerability resulted in a Friday fiasco, causing brief chaos across major internet services. While the fix was swift, the unintended outage left Zoom, LinkedIn, and others in a temporary lurch. This marks Cloudflare’s second hiccup in under a month, proving even the cloud has cloudy days.

Quantum-ready software is already making waves, sneaking into mission-critical environments like a ninja with a calculator. SecOps teams need to step up their game, because quantum isn’t just coming—it’s already in the building. So, if your cybersecurity playbook doesn’t account for quantum software, you’re not just late to the party; you’re missing it entirely.

Two China-linked hacking groups, Earth Lamia and Jackpot Panda, have been caught weaponizing the CVE-2025-55182 flaw in React Server Components. This vulnerability, a hacker’s dream with a CVSS score of 10.0, enables unauthenticated remote code execution. The groups are racing to exploit this flaw faster than you can say “React2Shell.”