Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials

A large-scale credential harvesting operation has been observed exploiting the React2Shell vulnerability as an initial infection vector to steal database credentials, SSH private keys, Amazon Web Services (AWS) secrets, shell command history, Stripe API keys, and GitHub tokens at scale.
Cisco Talos has attributed the operation to a threat cluster it tracks as

Source

What's Hot

Mirax Android Trojan Turns Devices Into Residential Proxy Nodes

BKA Identifies REvil Leaders Behind 130 German Ransomware Attacks

Mailbox Rule Abuse Emerges as Stealthy Post-Compromise Threat

Mirax Android Trojan Turns Devices Into Residential Proxy Nodes

BKA Identifies REvil Leaders Behind 130 German Ransomware Attacks

Mailbox Rule Abuse Emerges as Stealthy Post-Compromise Threat

North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels

macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Securi

Why SOC Burnout Can Be Avoided: Practical Steps

Cyber M&A Roundup: Cyber Giants Strengthen AI Security Offerings

Why the Identity Security Fabric is Essential for Securing AI and Non-Human Identities

Most Popular

North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels

macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Securi

Why SOC Burnout Can Be Avoided: Practical Steps

Our Picks

What is it, and how do I get it off my device?

How to tell if a voice call is AI or not

Chronology of a Skype attack

Subscribe to Updates

What's Hot

Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials

Related Posts

Subscribe to Updates