Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400

April 12, 2024, 5 p.m. | Unit 42

We detail Operation MidnightEclipse, a campaign exploiting command injection vulnerability CVE-2024-3400, and include protections and mitigations.

The post Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400 appeared first on Unit 42.

campaign command command injection cve cve-2024 cve-2024-3400 exploitation exploiting injection midnighteclipse mitigations post-exploitation python threat threat brief unit 42 vulnerability

Visit resource

More from unit42.paloaltonetworks.com / Unit42

Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400 2 weeks, 3 days ago | unit42.paloaltonetworks.com

campaign command command injection cve +13

Muddled Libra’s Evolution to the Cloud 2 weeks, 6 days ago | unit42.paloaltonetworks.com

amp applications att aws +17

It Was Not Me! Malware-Initiated Vulnerability Scanning Is on the Rise 3 weeks ago | unit42.paloaltonetworks.com

advanced threat prevention advanced url filtering advanced wildfire attacks +14

Threat Brief: Vulnerability in XZ Utils Data Compression Library Impacting Multiple Linux Distributions (CVE-2024-3094) 4 weeks, 2 days ago | unit42.paloaltonetworks.com

compression cortex xdr cortex xsiam cve +17

Exposing a New BOLA Vulnerability in Grafana 1 month ago | unit42.paloaltonetworks.com

advanced url filtering api api attacks authorization +19

ASEAN Entities in the Spotlight: Chinese APT Group Targeting 1 month ago | unit42.paloaltonetworks.com

actions advanced persistent threat advanced url filtering apac +20

Large-Scale StrelaStealer Campaign in Early 2024 1 month, 1 week ago | unit42.paloaltonetworks.com

advanced threat protection advanced wildfire campaign campaigns +16

Curious Serpens’ FalseFont Backdoor: Technical Analysis, Detection and Prevention 1 month, 1 week ago | unit42.paloaltonetworks.com

advanced threat prevention advanced url filtering advanced wildfire aerospace +25

Unit 42 Collaborative Research With Ukraine’s Cyber Agency To Uncover the Smoke Loader Backdoor 1 month, 1 week ago | unit42.paloaltonetworks.com

advanced threat prevention advanced url filtering advanced wildfire agency +21

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Senior Security Engineer

@ Core10 | Nashville, Tennessee, United States - Remote

View on infosec-jobs.com

Security Operations Engineer I

@ Jamf | US Remote

View on infosec-jobs.com

IT Security ISSO Specialist (15.10)

@ OCT Consulting, LLC | Washington, District of Columbia, United States

View on infosec-jobs.com

Compliance Officer

@ Aspire Software | Canada - Remote

View on infosec-jobs.com

Security Operations Center (SOC) - AVP

@ Paytm | Noida, Uttar Pradesh

View on infosec-jobs.com

View more jobs

all InfoSec news

Threat Brief: Operation MidnightEclipse, Post-Exploitation Activity Related to CVE-2024-3400

More from unit42.paloaltonetworks.com / Unit42

Jobs in InfoSec / Cybersecurity

SOC 2 Manager, Audit and Certification

Senior Security Engineer

Security Operations Engineer I

IT Security ISSO Specialist (15.10)

Compliance Officer

Security Operations Center (SOC) - AVP