URL has been copied successfully!
Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials


Tags: , , , , , , , , , ,

A large-scale credential harvesting operation has been observed exploiting the React2Shell vulnerability as an initial infection vector to steal database credentials, SSH private keys, Amazon Web Services (AWS) secrets, shell command history, Stripe API keys, and GitHub tokens at scale.Cisco Talos has attributed the operation to a threat cluster it tracks as

First seen on thehackernews.com

Jump to article: thehackernews.com/2026/04/hackers-exploit-cve-2025-55182-to.html

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Gen AI is transforming the cyber threat landscape by democratizing vulnerability hunting
  2. Cybersecurity Snapshot: CISA Analyzes Malware Used in SharePoint Attacks, as U.K. Boosts Cyber Assessment Framework
  3. Cybersecurity Snapshot: CISA Analyzes Malware Used in SharePoint Attacks, as U.K. Boosts Cyber Assessment Framework
  4. Cybersecurity Snapshot: CISA Highlights Vulnerability Management Importance in Breach Analysis, as Orgs Are Urged To Patch Cisco Zero-Days