Chinese state-linked hackers are exploiting a new critical React2Shell bug in React Server Components just days after disclosure, AWS warns. Targets include finance, retail, IT, universities, and governments worldwide, with attackers aiming for spying access.