Category: corporate risks

React’s Server Components RCE Bullshit: CVE-2025-55182 Exposes How Hype Fucks Over Real Security

React’s Server Components RCE Bullshit: CVE-2025-55182 Exposes How Hype Fucks Over Real Security
~ larshilse ~ Leave a comment

Jesus Christ, React's latest "innovation" just handed remote code execution to every basement hacker with a keyboard. CVE-2025-55182 turns Server Components into an RCE playground—unauthenticated, CVSS 10.0, and exploiting deserialization like it's 2010 all over again. If your Next.js app's humming on React 19 without patches, you're one POST away from disaster; uncover the full rant and fixes before your server's not yours anymore.

Fortinet SSL VPN Gets Hammered—780 Unique IPs Join the Brute-Force Pileup

Fortinet SSL VPN Gets Hammered—780 Unique IPs Join the Brute-Force Pileup
~ larshilse ~ Leave a comment

Fortinet SSL VPN devices just got hammered by a coordinated brute-force assault involving 780 unique IP addresses. This wasn't random scanning—it was focused, deliberate, and strategic. Attackers are specifically targeting VPN endpoints because they know that's the easiest path into internal networks. If you're running Fortinet SSL VPN with weak passwords and no multi-factor authentication, assume you're already compromised.

Booking.com Gets Phished (Again)—Because Hotel Managers Still Click Malicious Links

Booking.com Gets Phished (Again)—Because Hotel Managers Still Click Malicious Links
~ larshilse ~ Leave a comment

A phishing campaign targeting Booking.com partners has been running since April 2025, and it's so profitable that attackers are selling access to compromised accounts on Russian forums. They've stolen guest payment data, orchestrated elaborate social engineering schemes, and—get this—some victims paid twice: once to the hotel, once to the crooks. The hospitality industry is now a target-rich environment for cybercriminals.

Clop’s Oracle EBS Rampage—Another Day, Another Zero-Day, Another Round of Corporate Humiliation

Clop’s Oracle EBS Rampage—Another Day, Another Zero-Day, Another Round of Corporate Humiliation
~ larshilse ~ Leave a comment

Clop's been quietly exploiting an Oracle E-Business Suite zero-day since August—before the vendor even knew about it. Canon, Broadcom, Dartmouth College, and dozens of others got hit. But here's the thing: Clop's not encrypting anymore. They're just stealing data, then sending extortion emails with proof. Two-month window of unrestricted access, and companies are still discovering compromises. This is the new ransomware playbook.

OnSolve CodeRED Gets Ransomed—Emergency Alert Systems Held Hostage by INC Ransom

OnSolve CodeRED Gets Ransomed—Emergency Alert Systems Held Hostage by INC Ransom
~ larshilse ~ Leave a comment

OnSolve's CodeRED emergency alert system just got ransomed. Emergency agencies across the US suddenly couldn't contact residents during emergencies. The INC Ransom gang breached the system, stole customer data including plain-text passwords, and when they didn't get paid, leaked everything online. Crisis24's response? Rebuild from an eight-month-old backup. This is what happens when critical infrastructure treats security as optional.

The Shai Hulud 2.0 Nightmare—When Your Supply Chain Becomes a Credential Harvesting Farm

The Shai Hulud 2.0 Nightmare—When Your Supply Chain Becomes a Credential Harvesting Farm
~ larshilse ~ Leave a comment

Shai Hulud 2.0 just turned the npm ecosystem into a credential harvesting farm. Nearly 1,200 organizations got compromised—and many don't even know it yet. The attack wasn't just stealing data; it was extracting full runtime environments containing live GitHub tokens, AWS keys, and blockchain production credentials. Three days after disclosure, some of those stolen credentials were still valid. This is what modern supply chain warfare looks like.

So, What the Hell is a Man-in-the-Middle Attack in an Industrial Setting?

So, What the Hell is a Man-in-the-Middle Attack in an Industrial Setting?
~ larshilse ~ Leave a comment

Man-in-the-Middle attacks pose significant threats to Industrial Control Systems (ICS), allowing attackers to intercept, manipulate, and impersonate devices within crucial infrastructures like power grids and factories. Vulnerabilities arise from outdated protocols and blind trust among devices. Effective security measures include encryption, network segmentation, and certificate pinning to mitigate these risks.

Your Company Culture Might Be Screwing Your Security – How do cultural and organisational factors influence the effectiveness of cybersecurity awareness programs across different sectors?

So, Your Company Culture Might Be Screwing Your Security
~ larshilse ~ Leave a comment

Discover how organizational culture and leadership critically impact cybersecurity awareness program effectiveness. Learn to tailor training, foster open communication, and build a robust security culture to mitigate human risk and enhance overall protection across sectors. It's less about the tech, more about the people, you see." Or, if you want it a bit less cheeky for the actual search engines: "Explore the critical influence of cultural and organizational factors on the effectiveness of cybersecurity awareness programs. Understand how leadership, communication, and tailored training contribute to a stronger security culture and reduce human-related cyber risks." There, that should keep the algorithms happy. For a bit, anyway.

So, What’s This Usability vs. Security Kerfuffle All About Then? A Summary, If You Must.

So, What’s This Usability vs. Security Kerfuffle All About Then? A Summary, If You Must.
~ larshilse ~ Leave a comment

Organizations struggle to balance usability and security in digital environments, often facing a "pendulum effect" where stringent security frustrates users, leading them to ignore rules. This creates vulnerabilities. The solution lies in user-centered design, continuous feedback, and cultivating a security-conscious culture to enhance both security and usability effectively.

Socio-Technical Cybersecurity – The Human Clusterfuck in Cybersecurity and why Your Firewall Won’t Save You When Karen Clicks a Phishing Link

The Human Clusterfuck in Cybersecurity: Why Your Firewall Won’t Save You When Karen Clicks a Phishing Link
~ larshilse ~ Leave a comment

Cybersecurity hinges more on human behavior than technology, with 82% of breaches resulting from human error. Effective frameworks like NIST and ISO 27001 require organizations to foster a security-focused culture. Training is crucial to reducing risks, as demonstrated by successful interventions in companies like British Airways and Google.