NGINX

Malicious NGINX Configurations Enable Large-Scale Web Traffic Hijacking Campaign

React2Shell exploitation uses malicious NGINX configurations to hijack web traffic, targeting 1,083 unique source IP addresses and affecting Asian TLDs, government domains, and Baota panels.