A large-scale credential harvesting operation has
been observed exploiting the React2Shell vulnerability as an
initial infection vector to steal database credentials, SSH private
keys, Amazon Web Services (AWS) secrets, shell command history,
Stripe API keys, and GitHub tokens at scale. Cisco Talos
has attributed the operation to a threat cluster it
tracks as
Read more https://thehackernews.com/2026/04/hackers-exploit-cve-2025-55182-to.html
