Researchers track dozens of organizations affected by React2Shell compromises tied to China’s MSS
Organizations across multiple sectors are dealing with the fallout of the React2Shell bug that emerged last Wednesday and caused a global patching scramble.
Justin Moore, a member of the threat intel research team at Palo Alto Networks’ Unit 42, told Recorded Future News this weekend that they have confirmed more than 30 affected organizations.
“We have observed scanning for vulnerable RCE, reconnaissance activity, attempted theft of AWS configuration and credential files, as well installation of downloaders to retrieve payloads from attacker command and control infrastructure,” Moore said.
Read more at The Record