Recently Addressed PHP RCE Vulnerability Exploited By Unknown Hackers

Attackers deployed the Msupedge backdoor on a university's Windows systems in Taiwan by exploiting a recently patched PHP vulnerability (CVE-2024-4577), allowing them to execute arbitrary code. The malware, delivered via two DLLs, uses DNS traffic to communicate with its command-and-control server. Msupedge leverages DNS tunneling to receive commands and can perform actions like creating processes and downloading files. Read more...

Read More

Comments

Loading... Logging you in...
  • Logged in as
There are no comments posted yet. Be the first one!

Post a new comment

Comments by