Tag: webshell

Attack reports, vulnerabilities, indicators and intrusion sets linked to webshell.

Attack reports (14)

• VShell and SparkRAT Observed in Exploitation of BeyondTrust Critical Vulnerability (CVE-2026-1731) · Published 20/02/2026 00:28 · Modified 20/02/2026 13:14
• ToolShell: An all-you-can-eat buffet for threat actors · Published 12/08/2025 10:45 · Modified 12/08/2025 11:19
• SharePoint Zero-Day Exploit (ToolShell) - Network Infrastructure Mapping · Published 02/08/2025 10:18 · Modified 04/08/2025 09:19
• SharePoint ToolShell | Zero-Day Exploited in-the-Wild Targets Enterprise Servers · Published 22/07/2025 08:34 · Modified 22/07/2025 09:29
• Toolshell: Large-scale exploitation of new SharePoint RCE vulnerability chain identified · Published 21/07/2025 10:15 · Modified 21/07/2025 11:57
• The Sharp Taste of Mimo'lette: Analyzing Mimo's Latest Campaign targeting Craft CMS · Published 27/05/2025 19:02 · Modified 28/05/2025 13:14
• China-Nexus Nation State Actors Exploit SAP NetWeaver (CVE-2025-31324) to Target Critical Infrastructures · Published 14/05/2025 17:09 · Modified 21/05/2025 19:53
• New Critical Vulnerability Uncovered in SAP NetWeaver · Published 28/04/2025 16:27 · Modified 28/04/2025 18:50
• Dragon RaaS | Pro-Russian Hacktivist Group Aims to Build on "The Five … · Published 19/03/2025 20:40 · Modified 20/03/2025 09:43
• Analysis of Lazarus Group's Attack Targeting Windows Web Servers · Published 11/03/2025 14:20 · Modified 11/03/2025 16:53
• Further insights into Ivanti CSA 4.6 vulnerabilities exploitation · Published 11/02/2025 04:47 · Modified 11/02/2025 09:05
• From Credit Card Skimming to Exploiting Zero-Days · Published 03/02/2025 20:13 · Modified 04/02/2025 07:21
• Threat Brief: Operation Lunar Peek, Activity Related to CVE-2024-0012 · Published 18/11/2024 19:19 · Modified 19/11/2024 09:34
• Analysis of CoinMiner Attacks Targeting Web Servers · Published 24/06/2024 08:16 · Modified 24/06/2024 08:56