In December, Microsoft Threat Intelligence reported the exploitation of publicly available ASP.NET machine keys by a threat actor to inject malicious code and deploy the Godzilla framework, a web shell used for unauthorized access. They discovered over 3,000 publicly disclosed machine keys that could be misused in such attacks. Microsoft warned developers against utilizing these keys from open sources and stressed the importance of regularly rotating security keys to mitigate risks. They highlighted the trend of viewing these keys as high-risk vulnerabilities, prompting ongoing surveillance of such attack methods.
Microsoft Threat Intelligence emphasized that developers must refrain from using publicly disclosed ASP.NET machine keys, as they can lead to serious security breaches.
The identification of over 3,000 publicly disclosed ASP.NET machine keys that can be exploited maliciously underscores the urgent need for developers to regularly rotate their keys.
Collection
[
|
...
]