Iranian Hackers Exploiting VMware RCE Bug to Deploy 'Code Impact' Backdoor

Thread starter MuzzMelbourne
Start date Apr 26, 2022

MuzzMelbourne

Level 15

Thread author

Verified

Top Poster

Well-known

Apr 26, 2022

Content source: https://thehackernews.com/2022/04/iranian-hackers-exploiting-vmware-rce.html

An Iranian-linked threat actor known as Rocket Kitten has been observed actively exploiting a recently patched VMware vulnerability to gain initial access and deploy the Core Impact penetration testing tool on vulnerable systems.

Tracked as CVE-2022-22954 (CVSS score: 9.8), the critical issue concerns a case of remote code execution (RCE) vulnerability affecting VMware Workspace ONE Access and Identity Manager.

Iranian Hackers Exploiting VMware RCE Bug to Deploy 'Code Impact' Backdoor

Iranian-linked Rocket Kitten hackers have been exploiting the recently disclosed remote code execution vulnerability in VMware.

thehackernews.com

Reactions: Andy Ful, upnorth, Sorrento and 1 other person

You must log in or register to reply here.

Search

Search

Iranian Hackers Exploiting VMware RCE Bug to Deploy 'Code Impact' Backdoor

MuzzMelbourne

Level 15

Iranian Hackers Exploiting VMware RCE Bug to Deploy 'Code Impact' Backdoor

You may also like...