Tag: condi

2 Attack Reports | 0 Vulnerabilities

Attack reports

CoinMiner Attacks Exploiting GeoServer Vulnerability

A critical remote code execution vulnerability (CVE-2024-36401) in GeoServer has been actively exploited by threat actors to install CoinMiner malware. The attacks target both Windows and Linux environments with unpatched GeoServer installations. In South Korea, attackers exploited the vulnerabilit…
powershell
xmrig
coinminer
bash
mirai
netcat
remote code execution
condi
geoserver
monero
CVE-2024-36401
goreverse
2025-08-08
sidewalk
Published: August 8, 2025
Downloadable IOCs: 4

Threat Actors Exploit GeoServer Vulnerability CVE-2024-36401

A critical security flaw in the Open Geospatial Consortium (OGC) GeoServer server has been exploited by cyber-attackers to gain control of vulnerable systems, according to FortiGuard Labs.
linux
mirai
urls
2024-09-10
condi
geoserver
fundamentals
Published: September 10, 2024
Downloadable IOCs: 75
Click here to see more Attack Reports