Breaking 17:30 Chile withdraws support for former President Bachelet as UN secretary-general candidate 17:20 Microsoft faces AI monetization doubts as Copilot overhaul raises concerns 17:15 ASML employees stage walkout as unions challenge job cuts 17:00 Moroccan civilian killed in missile attack in Bahrain 16:56 Dr Rasha Kelej earns spot among Africa's 100 most influential women for seventh year 16:50 Russia launches 16 Rassvet satellites to rival SpaceX Starlink network 16:45 Hong Kong bookstore owner arrested over Jimmy Lai biography 16:30 UNESCO Heritage site in Lviv targeted in Russian attack, Ukrainian PM says 16:23 Morocco and Italy launch second economic summit in Rabat 16:20 Oman foreign minister says Iran not responsible for ongoing war 16:15 UK's FCA defends Palantir contract amid lawmakers' concerns 16:13 AMAL urges blood donation during Ramadan as reserves fall 16:00 Fès-Meknès launches 11 tourism projects to boost regional investment 15:50 Sephora tests shopping app inside ChatGPT as AI retail expands 15:45 Schindler prepared to challenge potential Kone-TK Elevator merger 15:40 Foreign investors pull $50 billion from Asian stocks amid war driven volatility 15:35 Cloudflare geo blocks 2,800 domains as legal pressure intensifies 15:30 Lithuania warned Hungary could pose NATO and EU security risk 15:20 IEA warns Iran war oil crisis exceeds shocks of the 1970s 15:18 TEDxISCAE debuts at Casablanca business school with global ideas 15:15 Violent robbery in Guelmim leads to arrest of four suspects 15:00 Bank of France records $15 billion gain from gold reserve upgrade 14:50 Electric vehicle demand surges as oil prices climb above $100 14:45 Collectif 4.0 launches “Colors of Morocco” cultural program 14:30 Bank of England economist warns against inaction on inflation risks 14:20 Astronomers discover 87 stellar streams reshaping Milky Way research 14:15 US Business activity falls to 11-months low amid Middle East tensions 14:00 Three suspects detained over arson attack at Czech industrial facility 13:50 Lufthansa extends Middle East flight suspensions amid escalating conflict 13:45 NASA shifts strategy from lunar orbital station to moon base 13:30 Kenya Airways reports $138 million pre-tax loss in 2025 13:20 XRISM telescope solves 50 year mystery of gamma Cassiopeiae X rays 13:15 Marco Rubio to attend G7 meeting in France amid Iran conflict 13:00 France prosecutors seek 18-years sentence for Tariq Ramadan 12:50 Jet fuel prices double as Iran conflict disrupts global aviation 12:20 Asian bond yields surge as Iran war triggers capital outflows 11:50 Eurozone growth stalls as Middle East conflict fuels stagflation fears 11:20 China expands seabed mapping operations with military implications 11:00 Chinese battery giants gain $70 billion as oil shock boosts EV demand 10:40 Apple sets WWDC 2026 for June with preview of iOS 27 10:20 Russia gold reserves fall to four year low amid budget strain 10:00 Soviet submarine leak and Pacific nuclear dome raise contamination concerns 09:40 Japan signals currency intervention as yen nears 160 per dollar 09:20 AWS Bahrain cloud region disrupted again by drone activity 09:00 Love Brand 2025 | Nike ranked 2nd among the favorite international brands of consumers in Morocco 08:50 Global energy crisis deepens as Hormuz disruption enters fourth week 08:20 Saudi Arabia and the UAE open trade corridor bypassing Hormuz 07:50 Oil prices swing as US Iran signals clash over talks

Microsoft rushes to contain critical React2Shell vulnerability amid global exploitation

Tuesday 16 December 2025 - 18:50
Microsoft rushes to contain critical React2Shell vulnerability amid global exploitation

Microsoft has issued an urgent security advisory to address a severe remote code execution (RCE) vulnerability known as React2Shell, which affects React Server Components and several Next.js versions. The flaw, tracked as CVE-2025-55182, has been classified with the highest severity score of 10.0 and is already being exploited in large-scale attacks compromising both Windows and Linux systems.

Widespread exploitation across multiple actors

Within days of disclosure, cybersecurity teams detected widespread exploitation of React2Shell by state-linked and criminal groups. Multiple threat intelligence divisions confirmed that the attacks originated largely from China-based entities, including organized campaigns led by advanced threat actors. These groups rapidly exploited the vulnerability to deploy remote access tools, cryptocurrency miners, and credential-stealing malware across cloud and enterprise networks.

Analysts reported that affected systems were often used to harvest credentials from cloud environments such as Azure, Google Cloud Platform, Amazon Web Services, and Tencent Cloud. Cybercriminals have also been injecting malicious scripts into legitimate cryptocurrency websites, compromising users' wallets and tokens. Tools like TruffleHog and Gitleaks were detected scanning repositories for sensitive information, including API keys and Kubernetes credentials.

Strong mitigation urged amid active campaigns

Microsoft is urging all developers and organizations to update immediately to React versions 19.0.1, 19.1.2, or 19.2.1 and compatible Next.js versions now patched against the flaw. The company has enhanced detection capabilities within Microsoft Defender XDR and rolled out automatic protections to block active exploitation attempts. Azure Web Application Firewall users can also implement preconfigured rules to halt malicious traffic temporarily while updates are deployed.

Security teams are advised to prioritize patching internet-exposed systems, rotate compromised credentials, and verify the integrity of any impacted container or virtual machine environments. Microsoft Defender for Cloud has added scanning features to identify vulnerable assets rapidly, offering vital visibility for organizations responding to this urgent threat.

Keywords:



Latest News
  • Fajr
  • Sunrise
  • Dhuhr
  • Asr
  • Maghrib
  • Isha

Newsletter

Subscribe now to the Walaw website newsletter to receive all the latest updates

Email address

Read more

Microsoft faces AI monetization doubts as Copilot overhaul raises concerns Business Microsoft faces AI monetization doubts as Copilot overhaul raises concerns
XBOW secures $120 million and integrates AI pentesting with Microsoft Technology XBOW secures $120 million and integrates AI pentesting with Microsoft
Microsoft unveils Project Helix, next generation Xbox with PC gaming support Technology Microsoft unveils Project Helix, next generation Xbox with PC gaming support
Codelco and Microsoft partner to explore AI in mining operations Technology Codelco and Microsoft partner to explore AI in mining operations

This website, walaw.press, uses cookies to provide you with a good browsing experience and to continuously improve our services. By continuing to browse this site, you agree to the use of these cookies.