Hackers exploit React2Shell in automated credential theft campaign

bleepingcomputer.com - 05/Apr 14:17

Hackers are running a large-scale campaign to steal credentials in an automated way after exploiting React2Shell (CVE-2025-55182) in vulnerable...

Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials

itsecuritynews.info - 02/Apr 20:36

A large-scale credential harvesting operation has been observed exploiting the React2Shell vulnerability as an initial infection vector to steal...

Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials

itsecuritynews.info - 02/Apr 20:36

A large-scale credential harvesting operation has been observed exploiting the React2Shell vulnerability as an initial infection vector to steal...

Hackers Exploit Next.js React2Shell Flaw to Steal Credentials From 766 Hosts in 24 Hours

itsecuritynews.info - 19:34

A dangerous cyberattack campaign is actively hitting web applications across the internet at a frightening speed. Hackers are exploiting a critical...

New Phishing Platform Used in Credential Theft Campaigns Against C-Suite Execs

itsecuritynews.info - 03/Apr 13:31

A large-scale credential theft campaign targeting senior executives has been linked to a previously unknown automated phishing platform called Venom...

New Phishing Platform Used in Credential Theft Campaigns Against C-Suite Execs

itsecuritynews.info - 03/Apr 13:31

A large-scale credential theft campaign targeting senior executives has been linked to a previously unknown automated phishing platform called Venom...

Max severity Flowise RCE vulnerability now exploited in attacks

bleepingcomputer.com - 17:02

Hackers are exploiting a maximum-severity vulnerability, tracked as CVE-2025-59528, in the open-source platform Flowise for building custom LLM apps...

Hackers are exploiting a vulnerability in lots of e-commerce sites

mashable.com - 26/Mar 18:16

Magento and Adobe Commerce sites are affected, but a fix is in the works. Hackers have found their way into a large number of internet e-commerce...

Chain Reaction: How One Stolen Token Tore Through Five Ecosystems

itsecuritynews.info - 26/Mar 20:13

Why Your Static Credentials Are a Ticking Time Bomb The TeamPCP campaign, one of the largest credential theft campaigns of 2026, began with a...

Attackers exploit critical Flowise flaw CVE-2025-59528 for remote code execution

securityaffairs.co - 20:16

Attackers are exploiting a critical Flowise flaw, tracked as CVE-2025-59528 (CVSS score of 10), that lets them run malicious code and access systems...

Rubriques :

Hackers exploit React2Shell in automated credential theft campaign

Articles similaires

Hackers exploit React2Shell in automated credential theft campaign

Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials

Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials

Hackers Exploit Next.js React2Shell Flaw to Steal Credentials From 766 Hosts in 24 Hours

New Phishing Platform Used in Credential Theft Campaigns Against C-Suite Execs

New Phishing Platform Used in Credential Theft Campaigns Against C-Suite Execs

Max severity Flowise RCE vulnerability now exploited in attacks

Hackers are exploiting a vulnerability in lots of e-commerce sites

Chain Reaction: How One Stolen Token Tore Through Five Ecosystems

Attackers exploit critical Flowise flaw CVE-2025-59528 for remote code execution

Les derniers communiqués