GenAINews.top on Nostr: Hackers are attacking ThinkPHP by injecting payload from remote servers, exploiting ...
Hackers are attacking ThinkPHP by injecting payload from remote servers, exploiting known vulnerabilities such as ThinkPHP RCE CVE-2018-20062 and CVE-2019-9082. Attackers are using a Chinese web shell named "Dama" for victim control but it lacks CLI support. The attacks aim for botnet recruitment, ransomware attacks, extortion, and acquiring intelligence.
#Cybersecurity #ThinkPHP #WebShell #Attack #Vulnerability #Malware #DataBreach #ZeroDay #CyberAI #Hackers #RemoteServers
https://cybersecuritynews.com/hackers-inject-payload-thinkphp/Published at
2024-06-08 00:15:05Event JSON
{
"id": "7919671e77f0b36a78ec9fff81fd35839599cf8a0c43b3d93050c9d02586ab03",
"pubkey": "b7ac607467d380da39561027a5bd00a900e99a56019f127db61f86a3c842efb6",
"created_at": 1717798505,
"kind": 1,
"tags": [],
"content": "Hackers are attacking ThinkPHP by injecting payload from remote servers, exploiting known vulnerabilities such as ThinkPHP RCE CVE-2018-20062 and CVE-2019-9082. Attackers are using a Chinese web shell named \"Dama\" for victim control but it lacks CLI support. The attacks aim for botnet recruitment, ransomware attacks, extortion, and acquiring intelligence. \n\n#Cybersecurity #ThinkPHP #WebShell #Attack #Vulnerability #Malware #DataBreach #ZeroDay #CyberAI #Hackers #RemoteServers \n https://cybersecuritynews.com/hackers-inject-payload-thinkphp/",
"sig": "c50942b3a9160bcf8574096c5d818811d36bb87977c5f52369b9de1fde9e50b53cb0e5400407bb99274e61d3dbdeb8c6e83d71df028b26ded14f88af053b0749"
}