Automated Credential Harvesting Campaign #Exploits #React2Shell #Flaw. An emerging threat cluster tracked as UAT-10608 is exploiting vulnerable Web-exposed #Nextjs #apps and using an automated tool to exfiltrate credentials, secrets, and other system data.
https://www.darkreading.com/cyberattacks-data-breaches/automated-credential-harvesting-campaign-react2shell