Tag: CVE-2024-30088

2 Attack Reports | 1 Vulnerabilities

Attack reports

Unveiling the Tools and Techniques of APT34

OilRig, also known as APT34 and Helix Kitten, is a sophisticated state-sponsored threat actor believed to be aligned with Iranian interests. Active since 2016, the group primarily targets organizations in the Middle East, focusing on sectors such as government, technology, and energy. OilRig employ…
CVE-2024-30088
apt34
stealhook
2024-12-31
helix kitten
quadagent
Published: December 31, 2024
Linked vulnerabilities : CVE-2024-30088 (CVSS 7.0)
Downloadable IOCs: 5

Advanced Cyberattacks Against UAE and Gulf Regions

Earth Simnavaz, also known as APT34 and OilRig, has been actively targeting governmental entities in the UAE and Gulf region. The group employs sophisticated tactics, including a backdoor that exploits Microsoft Exchange servers for credential theft and the use of CVE-2024-30088 for privilege escal…
cyber espionage
credential theft
oilrig
CVE-2024-30088
privilege escalation
microsoft exchange
2024-10-14
apt34
stealhook
iis malware
gulf region
uae
Published: October 14, 2024
Linked vulnerabilities : CVE-2024-30088 (CVSS 7.0)
Downloadable IOCs: 17
Click here to see more Attack Reports

Vulnerabilities

CVE-2024-30088

7.0
    Windows Kernel
Published: June 11, 2024
Click here to see more Vulnerabilities