Summary: Threat actors are exploiting a recent Windows LDAP vulnerability by distributing information stealer malware disguised as proof-of-concept (PoC) exploit code. This tactic poses significant risks as it targets a trending security issue that could affect numerous victims.
Threat Actor: Unknown | unknown
Victim: Security Researchers | security researchers
Key Point :
- Threat actors are using fake PoC exploits to deliver information stealer malware.
- The vulnerability, tracked as CVE-2024-49113, can crash unpatched Windows servers.
- The malware is distributed via a repository that replaces original files with malicious executables.
- Executed malware collects sensitive system information and uploads it to an external FTP server.
Views: 1
简体中文
Nederlands
Français
Bahasa Indonesia
日本語
Português