Automated Credential Harvesting Campaign Exploits React2Shell Flaw
from DarkReading 06 April indexed on 06 April 2026 20:01An emerging threat cluster tracked as UAT-10608 is exploiting vulnerable Web-exposed Next.js apps and using an automated tool to exfiltrate credentials, secrets, and other system data.
Read more.
