Magnet Goblin Exploits 1-Day Bugs, Deploys Nerbian RAT

The threat actor group Magnet Goblin is rapidly exploiting newly disclosed vulnerabilities to target public-facing servers and edge devices, warned Check Point. This particular instance was an Ivanti Connect Secure exploitation campaign that resulted in the deployment of a Linux version of a malware called NerbianRAT and a JavaScript credential stealer named WARPWIRE. Exploiting 1-day vulnerabilities, this group's attacks on public-facing servers underscore the critical importance of timely patching and continuous monitoring to protect against sophisticated cyber threats.


>>More