Rewards Hub A severe React Remote Code Execution (RCE) vulnerability, identified as CVE-2025-55182, has resulted in over $3 billion being stolen in 119 separate hacks during the first half of 2025. Attackers have exploited this flaw to execute unauthorized code, steal digital signatures, and deploy Monero cryptocurrency miners. Despite the release of patches, two additional RSC vulnerabilities have been discovered, prompting companies like Vercel to implement upgrades and Web Application Firewall (WAF) rules.
Under the EU Markets in Crypto-Assets Regulation framework, only 4.2% of the stolen funds have been recovered, highlighting the challenges posed by rapid laundering activities in liquidity and crypto markets. The ongoing threat underscores the need for enhanced security measures and regulatory compliance to protect digital assets.
React RCE Bug Leads to $3 Billion in Crypto Wallet Thefts
Disclaimer: The content provided on Phemex News is for informational purposes only. We do not guarantee the quality, accuracy, or completeness of the information sourced from third-party articles. The content on this page does not constitute financial or investment advice. We strongly encourage you to conduct you own research and consult with a qualified financial advisor before making any investment decisions.