Post #8070

Attackers are abusing React2Shell to plant Linux backdoors like KSwapDoor and ZnDoor. This hits orgs that left React and Next.js servers unpatched. Microsoft saw reverse shells, Cobalt Strike, and stolen cloud tokens tied to CVE-2025-55182, and Shadowserver tracks over 111,000 exposed IPs. 🔗 Details → https://thehackernews.com/2025/12/react2shell-vulnerability-actively.html