A massive automated cyberattack campaign is actively targeting web applications built on the popular Next.js framework to steal highly sensitive information. Cybersecurity researchers at Cisco Talos have uncovered a severe credential harvesting operation tracked as “UAT-10608” that compromised at least 766 servers worldwide within just 24 hours. The core of this attack relies on CVE-2025-55182, […]

The post Attackers Abuse React2Shell Flaw to Compromise 700+ Next.js Hosts appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

Divya

Source: gbHackers
Source Link: https://gbhackers.com/attackers-abuse-react2shell-flaw/