Security News Hackers exploit React2Shell in automated credential theft campaign BleepingComputer Daniel Bender 05 Apr 2026 Hackers are running a large-scale campaign to steal credentials in an automated way after exploiting React2Shell (CVE-2025-55182) in vulnerable Next.js apps.
