#Research

Gogs 0-Day Exploited in the Wild

Gili Tikochinski, Yaara Shriki

dezembro 10, 2025

Wiz Threat Research has observed exploitation in-the-wild of CVE-2025-8110

Code to Cloud Attacks: From Github PAT to Cloud Control Plane

Shira Ayal

dezembro 9, 2025

How attackers are leveraging compromised employee GitHub Personal Access Tokens to compromise cloud environments.

Top AWS re:Invent Announcements for Security Teams in 2025

Scott Piper

dezembro 8, 2025

The re:Invent announcements that are most impactful to security teams.

React2Shell: Technical Deep-Dive & In-the-Wild Exploitation of CVE-2025-55182

Shir Tamari, Gili Tikochinski, Hila Ramati, Benjamin Read

dezembro 8, 2025

We break down the exploit mechanics and detail active in-the-wild attacks observed by our team, from credential harvesting to sophisticated cloud backdoors.

React2Shell (CVE-2025-55182): Everything You Need to Know About the Critical React Vulnerability

Gili Tikochinski, Merav Bar, Danielle Aminov

dezembro 3, 2025

Detect and mitigate React2Shell (CVE-2025-55182), critical RCE vulnerability in React and Next.js exploited in the wild. Organizations should patch urgently.

Shai-Hulud 2.0 Aftermath: Trends, Victimology and Impact

Shay Berkovich, Rami McCarthy

dezembro 1, 2025

A deeper look at the Shai-Hulud 2.0 supply chain attack: reviewing the infection spread, victimology, leaked secrets distribution, and community response so far.

3 OAuth TTPs Seen This Month — and How to Detect Them with Entra ID Logs

Sapir Federovsky

novembro 27, 2025

How OAuth tokens, JWT fields and Entra sign-in logs reveal attacker behavior, and how to turn those signals into reliable detections.

Shai-Hulud 2.0 Supply Chain Attack: 25K+ Repos Exposing Secrets

Hila Ramati, Merav Bar, Gal Benmocha, Gili Tikochinski

novembro 24, 2025

Detect and mitigate malicious npm packages linked to the recent Shai-Hulud-style campaign. Over 25,000 affected repositories across ~350 unique users.