URGENT THREAT ALERT: Mass Exploitation of Critical PHP Vulnerability (CVE-2024-4577) by RedTail Cryptominer Campaign
Executive Summary A recent surge in malicious activity has been detected, indicating a mass exploitation attempt of the critical PHP-CGI Argument Injection vulnerability (CVE-2024-4577, CVSS: 9.8). Threat actors are utilizing automated tools, identified by the unique libredtail-http User-Agent, to inject commands that lead to Remote Code Execution (RCE). The ultimate goal of this campaign is…