Cyber Security Headlines FTC orders crypto to pay, New exploit of React2Shell, Ukraine fraud ring take down
7 snips
Dec 18, 2025 The FTC mandates a crypto firm to repay users after a major security breach. A new exploit in React2Shell allows rapid ransomware deployment, highlighting growing vulnerabilities. A Ukraine-based call center fraud ring is dismantled, saving millions for victims. Other issues discussed include a breach in the French Interior Ministry, the emergence of malicious Firefox extensions affecting thousands, and privacy concerns surrounding Meta's new advertising strategy. Tune in for insights on these pressing cybersecurity topics!
AI Snips
Chapters
Transcript
Episode notes
Enforce Restitution And Real Security Programs
- Require companies to make victims whole after security failures and misrepresented claims.
- Nomad must repay users, adopt a security program, and stop misrepresenting security.
Vulnerability Enables One-Minute Ransomware Attacks
- A critical React server-components flaw enabled rapid remote code execution and immediate ransomware deployment.
- Attackers disabled defenses, used Cobalt Strike, encrypted files, wiped shadows, and cleared logs without lateral moves.
Large Ukraine Call Center Fraud Ring
- Eurojust reported a Ukraine-based call center fraud ring scammed hundreds and stole over $11.7 million.
- The group posed as police and bank staff to pressure victims into transfers and remote access installs.