Hacking news

North Korea-linked Actors Exploit React2Shell to Deploy New EtherRAT Malware

on December 9, 2025

The Hacker News

Threat actors with ties to North Korea have likely become the latest to exploit the recently disclosed critical security React2Shell flaw in React Server Components (RSC) to deliver a previously undocumented remote access trojan dubbed EtherRAT. "EtherRAT leverages Ethereum smart contracts for command-and-control (C2) resolution, deploys five independent Linux persistence mechanisms, and

More From Author

Hacking news

New SparkCat Variant in iOS, Android Apps Steals Crypto Wallet Recovery Phrase Images

April 3, 2026

The Hacker News

Hacking news

Drift Loses $285 Million in Durable Nonce Social Engineering Attack Linked to DPRK

April 3, 2026

The Hacker News

Hacking news

Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials

April 2, 2026

The Hacker News

North Korea-linked Actors Exploit React2Shell to Deploy New EtherRAT Malware

More From Author

New SparkCat Variant in iOS, Android Apps Steals Crypto Wallet Recovery Phrase Images

Drift Loses $285 Million in Durable Nonce Social Engineering Attack Linked to DPRK

Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials

California man admits role in $263 million cryptocurrency theft that funded lavish lifestyle

Microsoft Patch Tuesday December 2025, (Tue, Dec 9th)

Leave a Reply Cancel reply