> TritonInfoSec News
Home / Apr 05, 2026 / Story
0
#8 SecurityWeek general April 03, 2026 at 10:55 UTC

React2Shell Exploited in Large-Scale Credential Harvesting Campaign

By Ionut Arghire

AI Summary

Hackers exploited React2Shell vulnerability in a large-scale credential harvesting campaign, compromising over 750 systems using automated scanning and the Nexus Listener collection framework. The campaign demonstrates how attackers are systematically exploiting web application vulnerabilities to steal credentials at scale. The use of automated tools and collection frameworks indicates a sophisticated, organized operation targeting multiple organizations simultaneously.

Read full article → https://www.securityweek.com/react2shell-exploited…

Relevance score: 78.0/100

# More from April 05

  1. 1
    Fortinet Patches Actively Exploited CVE-2026-35616 in FortiClient EMS The Hacker News
  2. 2
    36 Malicious npm Packages Exploited Redis, PostgreSQL to Deploy Persistent Implants The Hacker News
  3. 3
    Axios npm hack used fake Teams error fix to hijack maintainer account BleepingComputer
  4. 4
    European Commission Confirms Data Breach Linked to Trivy Supply Chain Attack SecurityWeek
  5. 5
    LinkedIn secretly scans for 6,000+ Chrome extensions, collects data BleepingComputer
  6. 6
    Device code phishing attacks surge 37x as new kits spread online BleepingComputer
  7. 7
    TrueConf Zero-Day Exploited in Asian Government Attacks SecurityWeek
  8. 9
    New SparkCat Variant in iOS, Android Apps Steals Crypto Wallet Recovery Phrase Images The Hacker News
  9. 10
    CERT-EU: European Commission hack exposes data of 30 EU entities BleepingComputer