WebShell Archives

Lace Tempest Exploits SysAid Zero-Day Flaw

Wajahat Raja | November 23, 2023 | clop-ransomware, CVE-2023-47246, Cybersecurity News, DEV-0950, Lace Tempest, Microsoft, MOVEit Transfer, Path traversal vulnerability, powershell, security update, SysAid, Tomcat web service, WebShell, zero-day flaw

In a recent revelation, SysAid, a leading IT management software provider, has unveiled a critical security threat affecting its on-premises software. The threat actor, identified as DEV-0950 or Lace Tempest by Microsoft, ...

TuxCare

Prometei Botnet Exploiting Microsoft Exchange Vulnerabilities

Lior Rochberger | April 21, 2021 | Advanced persistent threat, botnet, cryptomining, cybercrime, Hafnium, Malware, Microsoft Exchange, Prometei Botnet, research, ResearchCat, Vulnerabilities, vulnerability, WebShell

Recently, the Cybereason Nocturnus Team responded to several incident response (IR) cases involving infections of the Prometei Botnet against companies in North America, observing that the attackers exploited recently published Microsoft Exchange ...

Blog