216.73.217.112

PITSTOP

The MITRE Corporation · Published 16/12/2025 19:37 · Modified 27/03/2026 01:06 Family

Essential information

Confidence
100/100
Is family
Yes
Published
16/12/2025 19:37
Modified
27/03/2026 01:06
Revoked
No
Author / Source
The MITRE Corporation
Related entities
5 attack patterns (mitre), 1 campaign, 1 campaigns

Description

[PITSTOP](https://attack.mitre.org/software/S1123) is a backdoor that was deployed on compromised Ivanti Connect Secure VPNs during [Cutting Edge](https://attack.mitre.org/campaigns/C0029) to enable command execution and file read/write.(Citation: Mandiant Cutting Edge Part 3 February 2024)

Marking (TLP)

Copyright 2015-2025, The MITRE Corporation. MITRE ATT&CK and ATT&CK are registered trademarks of The MITRE Corporation.

External references

Related entities

Attack patterns, malware, vulnerabilities, indicators, intrusion sets and other entities linked to this malware.