React2Shell exploitation now enables persistent access via EtherRAT’s blockchain-based C2.

https://www.technadu.com/react2shell-exploitation-evolves-into-persistent-access-threat/615626/

• Unauthenticated RCE via CVE-2025-55182
• EtherRAT instructions hidden inside Ethereum smart contracts
• Gov + cloud + critical-infrastructure orgs selectively targeted
• Unique per-host payloads hinder signature detection
• Monitor Node.js anomalies + Ethereum RPC activity

#React2Shell #CVE202555182 #EtherRAT #CyberSecurity #ThreatIntel #NextJS #AppSec

North Korea‑linked hackers now using new “EtherRAT” malware to exploit critical #React2Shell vulnerability in active campaigns.

Read: https://hackread.com/north-korean-hackers-etherrat-malware-react2shell/

#EtherRAT #Cybersecurity #NorthKorea #Malware #Vulnerability