Risky Bulletin Risky Bulletin: APTs go after the React2Shell vulnerability within hours
11 snips
Dec 7, 2025 Chinese APTs wasted no time exploiting the recently disclosed React2Shell vulnerability. The US response to telco hacking by China remains stalled, prioritizing trade over security. The hunt for a CISA director continues as the NSA faces significant staff reductions. Meanwhile, India has scrapped its mandatory cybersecurity app after backlash. In other news, unauthorized transactions linked to Gmarket and a significant data leak from Nonsec raise alarms, while a teen's hacking exploits using AI showcase the evolving threat landscape.
AI Snips
Chapters
Transcript
Episode notes
Immediate Exploitation Of React2Shell
- Chinese APTs exploited a React server components vulnerability within hours of disclosure.
- Amazon linked the campaign to Earth and JackpotPanda using an unauthenticated deserialization flaw.
CISA Leadership And Retention In Turmoil
- Sean Plancky's CISA nomination stalled after procedural challenges and a Senate exclusion.
- The administration also ended a retention pay program covering nearly half of CISA staff.
NSA Workforce Shrinks Significantly
- The NSA's workforce dropped by around 2,000 people this year through exits and enforced reductions.
- The cuts followed earlier pressure from the administration to shrink the agency.