Security researchers are being duped by fake exploits for serious Microsoft security flaws, including a forked PoC exploit for LDAPNightmare which contains malware.
Researcher Sarah Pearl Camiling emphasized that both vulnerabilities, CVE-2024-49112 and CVE-2024-49113, are significant due to the extensive use of LDAP in Windows environments.
The counterfeit PoC uses misleading tactics by replacing legitimate Python files with an executable that downloads malware, highlighting the ongoing risks in cybersecurity.
Camiling warns that while PoC lures for malware delivery are not new, this attack is particularly troubling due to its exploitation of trending security issues.
Collection
[
|
...
]