@greynoise.io on Bluesky

JavaScript RequiredThis is a heavily interactive web application, and JavaScript is required. Simple HTML interfaces are possible, but that is not what this is. Learn more about Bluesky at bsky.social and atproto.com.

Post

GreyNoise

greynoise.io

did:plc:3y5lhkm7gbrixowhpoum2zaq

Two IPs now generate 56% of all CVE-2025-55182 exploitation traffic. One deploys cryptominers. The other opens reverse shells. We dug into the infrastructure. What we found goes back to 2020. https://www.greynoise.io/blog/react2shell-exploitation-consolidates

2026-02-03T21:04:49.194Z