Hackers' Pub

Syntax	Description	Examples
`"` keyword `"`	Finds the string within quotes, including spaces. Case-insensitive. (Escape quotes inside with `\"`)	`"Hackers' Pub"`
`from:` handle	Finds content written by the specified user.	`from:hongminhee` `from:hongminhee@hollo.social`
`lang:` ISO 639-1	Finds content written in the specified language.	`lang:en`
`#` tag	Finds content with the specified tag. Case-insensitive.	`#HackersPub`
condition condition	Finds content that satisfies both conditions on either side of the space (logical AND).	`"Hackers' Pub" lang:en`
condition `OR` condition	Finds content that satisfies at least one of the conditions on either side of the OR operator (logical OR).	`#HackersPub OR "Hackers' Pub" lang:en`
`(` condition `)`	Combines the operators within the parentheses first.	`(#HackersPub OR "Hackers' Pub" OR "Hackers Pub") lang:en`

Kelly Shortridge @shortridge@hachyderm.io

12/5/2025, 2:19:10 AM

Public

⚠️ update on #React2Shell:

After the POC dropped ~21:04 GMT today, Fastly detected a profound proliferation in the number of requests triggering our NGWAF signal for React2Shell (see the graph).

We strongly recommend you immediately prioritize identifying and updating your React & Next.js apps.

At this time, anyone who has neither patched nor applied proactive protection should assume their vulnerable systems are potentially compromised in ways they cannot predict.
https://hachyderm.io/@shortridge/115663892585649723

Area chart displaying hourly volume of requests triggering Fastly's NGWAF signals for CVEs 2025-55182 & 2025-66478. The chart shows no signals prior to 7pm GMT, a small spike between 7-9pm GMT, followed by a spike at 10pm GMT, and a massive spike at 11pm GMT.

If you have a fediverse account, you can quote this note from your own instance. Search https://hachyderm.io/users/shortridge/statuses/115664561783943907 on your instance and quote it. (Note that quoting is not supported in Mastodon.)