Microsoft says attackers have already compromised "several hundred machines across a diverse set of organizations" via the ...

React2Shell (CVE-2025-55182) is a critical vulnerability affecting the most widely used React-based services across the web ecosystem. With low exploitation complexity and publicly available PoCs, ...

Attackers are using the vulnerability to deploy malware and crypto-mining software, compromising server resources and ...

Half of the internet-facing systems vulnerable to a fast-moving React remote code execution flaw remain unpatched, even as exploitation has exploded into more than a dozen active attack clusters ...

Google has observed five China-linked threat groups exploiting the recently disclosed React2Shell vulnerability in their ...

Critical vulnerability in React library should be treated by IT as they did Log4j - as an emergency, warns one expert. Developers using the React 19 library for building application interfaces are ...

Researchers with Google Threat Intelligence Group have detected five China-nexus threat groups exploiting the maximum-security React2Shell security flaw to drop a number of malicious payloads, from ...

Security firms have seen cryptocurrency miners, Linux backdoors, botnet malware, and post-exploitation implants in React2Shell attacks.

React is one of the most popular JavaScript libraries, which powers much of today’s internet. Researchers recently discovered a maximum-severity vulnerability. This bug could allow even the ...

The Dreglord will swing side to side twice, finishing off the combo with an overhead strike. Straghess will charge towards ...

This article contains 10 of what we believe to be the biggest stories we covered throughout the year on SD Times.