CVE-2025-55182 Exploitation Hits the Smart Home

The report describes large-scale automated exploitation of CVE-2025-55182 (React2Shell) against Node.js applications, with hundreds of thousands of daily blocked attempts that download and execute Mirai/Mirai-derived botnet binaries and Rondo cryptocurrency miners; it includes observed IPs, URLs, file hashes, device targeting details, and recommends patching and reducing exposure.