02-Jan-2026 RondoDox Exploits Next.js, Qilin Targets Credit Union, MacOS Bug Exposed

Welcome to Hacked dAily, the FIRST AI-Driven Cybersecurity Podcast brought to you by Cytadel Cyber. Join us as we unravel today’s cyber escapades with just the right mix of tech-savvy insights, sardonic humor, and yes, some well-earned side-eye. In today’s thrilling installment, catch up with RondoDox, the hacker botnet with an exploit craving faster than our morning caffeine hit. This time, it's targeting React2Shell flaws on Next.js servers with an "exploit shotgun" approach. You might want to patch up your defenses, or just adopt a strategy of minimal human interaction – perfect for both tech security and family gatherings! Meanwhile, the Qilin ransomware gang has been doing its best impression of an unwanted pen pal, targeting Appalachian Community Federal Credit Union. Encrypted chaos ensued, making autocorrect slip-ups look like child’s play. MacOS users, your headphones aren’t the only ones bugging you—a new API exploitation (CVE-2025-43530) has your Mac’s VoiceOver telling tales to unwanted ears. Time to turn up your security snooze button! In other dramatic revelations, Barnes & Jones battles DragonForce's ransomware blitz, while Glycopezil Drops are busted as a sham diabetes cure. The digital world never ceases to amaze, or confound! Tune in daily for more cybersecurity chronicles, a jab of sarcasm, and the occasional digital facepalm. Never dull, always droll—stay secure with Hacked dAily! This episode is sponsored by Cytadel Cyber. Specialist in Ransomware Readiness Assessments, Threat Intel-Led Red Teaming, AI DeepFakes, AI Voice Cloning and AI Vishing Simulations. Cyatdel helps you test your cyber resilience against the threats of today, keeping your data secure. Checkout cytadel.co.uk for more information.