Warning: New Malware Emerges in Attacks Exploiting Ivanti VPN Vulnerabilities,
Google-owned Mandiant said it identified new malware employed by a China-nexus espionage threat actor known as UNC5221 and other threat groups during post-exploitation activity targeting Ivanti Connect Secure VPN and Policy Secure devices.
This includes custom web shells such as BUSHWALK, CHAINLINE, FRAMESTING, and a variant of LIGHTWIRE.
« CHAINLINE is a Python web shell backdoor that is
This includes custom web shells such as BUSHWALK, CHAINLINE, FRAMESTING, and a variant of LIGHTWIRE.
« CHAINLINE is a Python web shell backdoor that is
,
Google-owned Mandiant said it identified new malware employed by a China-nexus espionage threat actor known as UNC5221 and other threat groups during post-exploitation activity targeting Ivanti Connect Secure VPN and Policy Secure devices.
This includes custom web shells such as BUSHWALK, CHAINLINE, FRAMESTING, and a variant of LIGHTWIRE.
« CHAINLINE is a Python web shell backdoor that is
This includes custom web shells such as BUSHWALK, CHAINLINE, FRAMESTING, and a variant of LIGHTWIRE.
« CHAINLINE is a Python web shell backdoor that is
, ,
https://thehackernews.com/2024/02/warning-new-malware-emerges-in-attacks.html