We further Cloudflare's mission to help build a better Internet by melding research with implementation Latest Research Updates → subscribe to our quarterly newsletter React2Shell and related RSC vulnerabilities threat brief: early exploitation activity and threat actor techniques Early activity indicates that threat actors quickly integrated this vulnerability into their scanning and reconnaissance routines and targeted critical infrastructure including nuclear fuel, uranium and rare earth elements. We outline the tactics they appear to be using and how Cloudflare is protecting customers. Fresh insights from old data: corroborating reports of Turkmenistan IP unblocking and firewall testing Cloudflare used historical data to investigate reports of potential new firewall tests in Turkmenistan. Shifts in TCP resets/timeouts across ASNs corroborate large-scale network control system changes. Beyond IP lists: a registry format for bots and agents We propose an open registry format for Web Bot Auth to move beyond IP-based identity. This allows any origin to discover and verify cryptographic keys for bots, fostering a decentralized and more trustworthy ecosystem.
