Bill

Talos found this ginormous automated React2Shell exploitation scheme for credential harvesting at scale. I'll bed the SOB was vibe coded, too.

https://www.securityweek.com/react2shell-exploited-in-large-scale-credential-harvesting-campaign/

#react2shell #breach

React2Shell Exploited in Large-Scale Credential Harvesting Campaign

The UAT-10608 hacking group is using automated scanning and scripts to exploit React2Shell in a large-scale credential harvesting campaign.

SecurityWeek
Apr 4 at 3:47amWeb