Topic: web shells

Sort by: Relevance | Date
  • Hackers Breach Federal Agency via GeoServer Flaw, CISA Warns
    September 24, 2025
    85%

    Hackers Breach Federal Agency via GeoServer Flaw, CISA Warns

    A critical vulnerability (CVE-2024-36401) in GeoServer was exploited to breach a U.S. federal agency's network after attackers compromised an unpatched server. The attackers moved laterally from the initial entry point, deploying malicious tools like China Chopper and using brute force attacks to...

    Read More »
  • Legit Tools Turned Malicious: Velociraptor and Nezha Weaponized
    October 11, 2025
    75%

    Legit Tools Turned Malicious: Velociraptor and Nezha Weaponized

    Legitimate open-source tools Velociraptor and Nezha are being weaponized by threat actors to maintain access, evade detection, and deploy ransomware or malware on enterprise systems. A China-linked ransomware group exploited an outdated Velociraptor version with a privilege escalation flaw to dep...

    Read More »
  • Federal Agency Hacked Through GeoServer Vulnerability
    September 25, 2025
    73%

    Federal Agency Hacked Through GeoServer Vulnerability

    A federal agency suffered a cybersecurity breach in July 2024 when attackers exploited a critical, unpatched vulnerability in a public-facing GeoServer, allowing them to deploy malicious tools and establish persistence. The attackers used the same vulnerability to breach a second server, moved la...

    Read More »

Related Topics

incident response (75) lateral movement (18) cisa advisory (4) brute force attacks (3) remote code execution (44) ransomware attacks (41) privilege escalation (32) vulnerability exploitation (28)