Hackers Exploit React2Shell to Hijack Web Traffic via Compromised NGINX Servers



February 05, 2026 at 10:26AM

Cybersecurity researchers have disclosed details of an active web traffic hijacking campaign that has targeted NGINX installations and management panels like Baota (BT) in an attempt to route it through the attacker's infrastructure. Datadog Security Labs said it observed threat actors associated with the recent React2Shell (CVE-2025-55182, CVSS score: 10.0) exploitation using malicious NGINX

from The Hacker News https://ift.tt/JdI9eFD

Genrerating Link.... 15 seconds.

Your Link is Ready.

Share this post