According to security researchers, a large number of Microsoft SQL servers are currently targeted by the new backdoor called Maggie.
Maggie disguises itself as an Extended Stored Procedure DLL (“sqlmaggieAntiVirus_64.dll”), with the digital sign leading to the South Korean company.
Threat actors control Maggie through SQL commands, often using it to brute-force administrator logins to other Microsoft SQL servers.
