PHP-CGI RCE Flaw Exploited in Attacks on Japan’s Tech, Telecom, and E-Commerce Sectors
Cyber attackers are actively exploiting a vulnerability in PHP-CGI to compromise organizations across Japan’s technology, telecom, and e-commerce sectors. The campaign, ongoing since January 2025, uses the CVE-2024-4577 flaw to gain remote access to Windows systems, deploying post-exploitation tools to deepen infiltration.
According to Cisco Talos, attackers leverage PowerShell scripts to execute a Cobalt Strike reverse HTTP shell, enabling long-term persistence on compromised devices. The campaign appears highly targeted, focusing on high-value sectors, but the identity and ultimate goals of the perpetrators remain unknown.
Advanced Persistent Threats Rise by 74% in 2024 Report
The frequency of Advanced Persistent Threats (APTs) has surged, with Kaspersky’s latest report revealing a 74% increase in such attacks compared to last year. APTs were detected in 25% of organizations, accounting for 43% of high-severity security incidents, highlighting a sharp rise in sophisticated cyber threats.
Kaspersky’s analysis suggests attackers are refining their tactics to bypass security measures, leveraging human-operated techniques rather than automated exploits. The report underscores the growing persistence of APT actors, emphasizing the need for proactive defense strategies across industries.
LinkedIn InMail Spoofing Malware Campaign Unleashes ConnectWise RAT
A phishing campaign is masquerading as LinkedIn InMail notifications to distribute the ConnectWise Remote Access Trojan (RAT). Cybercriminals are using spoofed emails that appear as business inquiries, tricking victims into downloading malware that grants remote control over infected systems.
Cofense researchers found that attackers are using an outdated LinkedIn template, a repurposed profile image, and a fabricated company name to make their emails seem credible. The scheme demonstrates how threat actors continually refine social engineering tactics to exploit trust in widely used professional platforms.
