Magnet Goblin Targets Publicly Facing Servers Using 1-Day Vulnerabilities
released on 2024-03-13 @ 10:26:46 AM
A financially motivated threat actor called Magnet Goblin quickly adopts and leverages 1-day vulnerabilities in public-facing services to gain initial access, including recent campaigns targeting Ivanti, Magento, and Qlik Sense. Analysis of a Linux variant of NerbianRAT malware used in attacks reveals the group's tactics.