Hackers exploit React2Shell in automated credential theft campaign
From BleepingComputer to All on Sun Apr 5 11:09:07 2026
Hackers are running a large-scale campaign to steal credentials in an automated way after exploiting React2Shell (CVE-2025-55182) in vulnerable Next.js apps. [...]