Hackers Exploit CVE-2025-55182 to Breach 766 Next.js Hosts, Steal Credentials

A significant cyber operation has been detected, utilizing CVE-2025-55182 to compromise 766 Next.js hosts. The attackers are harvesting sensitive credentials including database access, SSH keys, and API tokens. Cisco Talos has linked this activity to a known threat cluster.

This briefing snippet has been strictly truncated for global aggregation. Operators must securely establish a dedicated intelligence uplink below to access the full operational report exactly as authored by the origin network.