React2Shell Exploit Leads to Major Breaches and Losses — The Hacker News

A large-scale credential harvesting operation has been observed exploiting the React2Shell vulnerability (CVE-2025-55182) to breach 766 Next.js hosts, resulting in significant credential theft. Concurrently, the Drift Protocol has suffered a $280 million loss after attackers seized its Security Council powers. These incidents highlight the critical need for immediate patching of vulnerable systems and heightened monitoring of financial protocols to prevent unauthorized access and financial losses.

• Cisco Patches 9.8 CVSS IMC and SSM Flaws Allowing Remote System Compromise [The Hacker News]
• Geopolitics, AI, and Cybersecurity: Insights From RSAC 2026 [Dark Reading]
• Security Bosses Are All-In on AI. Here's Why [Dark Reading]