Critical HTTP File Server Vulnerability (CVE-2024-23692) Actively Exploited to Deploy Cryptomining Malware, RATs, Stealers | allinfosecnews.com

July 4, 2024, 10:05 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

Critical HTTP File Server Vulnerability (CVE-2024-23692) Actively Exploited to Deploy Cryptomining Malware, RATs, Stealers

Researchers have identified active exploitation targeting a critical vulnerability in the HTTP File Server (HFS) to deploy cryptocurrency mining malware, Remote Access Trojans (RATs), backdoors, and infostealers.

Known as CVE-2024-23692, this critical vulnerability affects the Rejetto HTTP File Server (HFS). HFS allows file sharing through a web browser using just an executable file, eliminating the need to build a traditional web server. This …

access actively exploited backdoors critical critical vulnerability cryptocurrency cryptocurrency mining cryptocurrency mining malware cryptomining cryptomining malware cve cve-2024 deploy exploitation exploited file hfs http infostealers malware mining rats remote access remote access trojans researchers server stealers targeting trojans vulnerability

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Update: hash.py Version 0.0.13 3 hours ago | malware.news

article didier didier stevens files +10

Grassley wants more details on breach of CISA system 1 day, 7 hours ago | malware.news

article breach cisa data +10

Ticketmaster hackers release stolen ticket barcodes for Taylor Swift Eras Tour 1 day, 7 hours ago | malware.news

breach cybercriminals data data breach +18

UK government advises best practices for embedded device security 1 day, 8 hours ago | malware.news

arm article best practices companies +24

Malware Mondays Episode 05 - Using CAPA to identify capabilities in executable files 1 day, 9 hours ago | malware.news

malware analysis topic

‘Polyfill’ Supply Chain Threat: 4x Worse Than We Thought 1 day, 10 hours ago | malware.news

article attack chinese free +12

Sintesi riepilogativa delle campagne malevole nella settimana del 29 Giugno – 05 Luglio 2024 1 day, 10 hours ago | malware.news

cert con cui dei +2

Identity security is everything when it comes to using AI 1 day, 11 hours ago | malware.news

access access management article artificial +15

OpenAI breach in 2023 raises national security concerns 1 day, 11 hours ago | malware.news

adversaries article breach code +12

Identity & Access Management, Senior Associate

@ PwC | Toronto - 18 York Street

View on infosec-jobs.com

Senior Manager, AI Security

@ Lloyds Banking Group | London 10 Gresham Street

View on infosec-jobs.com

Senior Red Team Engineer

@ Adobe | Remote California

View on infosec-jobs.com

Product Security Associate

@ Salesforce | Washington - Seattle

View on infosec-jobs.com

Security architect (SOC)

@ Alter Solutions | Paris, France

View on infosec-jobs.com

Principal Member of Technical Staff

@ Oracle | Romania

View on infosec-jobs.com