InfoWorld

React2Shell is the Log4j moment for front end development

Attackers are exploiting a Flight protocol validation failure that allows them to execute arbitrary code without ...

Google links more Chinese hacking groups to React2Shell attacks

Over the weekend, ​Google's threat intelligence team linked five more Chinese hacking groups to attacks exploiting the ...

Critical React2Shell flaw exploited in ransomware attacks

A ransomware gang exploited the critical React2Shell vulnerability (CVE-2025-55182) to gain initial access to corporate ...
SecurityWeek

Google Sees 5 Chinese Groups Exploiting React2Shell for Malware Delivery

Google has observed five China-linked threat groups exploiting the recently disclosed React2Shell vulnerability in their ...
CoinDesk

The Protocol: Bug that can drain all your tokens impacting 'thousands' of sites

New React bug that can drain all your tokens is impacting 'thousands' of websites Ripple Expands $1.3B RLUSD Stablecoin to ...

React2Shell exploitation continues to escalate, posing 'significant risk'

In early December, the React team published a security advisory detailing a pre-authentication bug in multiple versions of multiple packs, affecting RCS. The bug, now dubbed “React2Shell”, is tracked ...
hodlfm

Hackers Exploit React Flaw to Quietly Drain Crypto Wallets

The issue, tracked as CVE-2025-55182, was disclosed on December 3 by the React team after being identified by white-hat ...