React2Shell Exploited in Large-Scale Credential Harvesting Campaign
Summary
Hackers are exploiting a vulnerability known as React2Shell to harvest credentials on a large scale. They have already compromised over 750 systems using automated scanning and the Nexus Listener framework.
IFF Assessment
FOE
This is bad news for defenders as it represents a widespread attack vector leading to credential theft.
Defender Context
Defenders should be aware of the React2Shell vulnerability and the ongoing credential harvesting campaigns. Organizations should ensure their systems are patched and implement strong authentication mechanisms to mitigate the risk of compromised credentials.