Sign up to save your podcasts
Or
Share A New Chinese APT Debuts and React2Shell Attacks Spike
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
A New Chinese APT Debuts and React2Shell Attacks Spike
The new year is here! And so are the attacks. The first full week of 2026 brought us new research from Cisco Talos on a China-nexus APT group called UAT-7290 that is expanding its targeting and serving as an initial access group as well as a cyber espionage team (3:02). There is also some great data from GreyNoise on the attack volume from actors trying to exploit the React2Shell vulnerability from December (8:26). The volume is holding steady at more than 300,000 sessions per day, which is...high.
Talos report: https://blog.talosintelligence.com/uat-7290/
GreyNoise report: https://www.greynoise.io/blog/cve-2025-55182-react2shell-opportunistic-exploitation-in-the-wild-what-the-greynoise-observation-grid-is-seeing-so-far
Support the show
View all episodes
By Decipher
4.4
99 ratings
The new year is here! And so are the attacks. The first full week of 2026 brought us new research from Cisco Talos on a China-nexus APT group called UAT-7290 that is expanding its targeting and serving as an initial access group as well as a cyber espionage team (3:02). There is also some great data from GreyNoise on the attack volume from actors trying to exploit the React2Shell vulnerability from December (8:26). The volume is holding steady at more than 300,000 sessions per day, which is...high.
Talos report: https://blog.talosintelligence.com/uat-7290/
GreyNoise report: https://www.greynoise.io/blog/cve-2025-55182-react2shell-opportunistic-exploitation-in-the-wild-what-the-greynoise-observation-grid-is-seeing-so-far
Support the show
More shows like Decipher Security Podcast
View all
WSJ Tech News Briefing
1,651 Listeners