Common Information
| Type | Value |
|---|---|
| Value |
DEV-0322 |
| Category | Actor |
| Type | Microsoft-Activity-Group |
| Misp Type | Cluster |
| Description | None |
| Details | Published | Attributes | CTI | Title | ||
|---|---|---|---|---|---|---|
| Details | Website | 2024-06-21 | 3 | CVE-2024-28995: SolarWinds Serv-U Path/Directory Traversal Vulnerability Exploited in the Wild | ||
| Details | Website | 2022-05-03 | 2 | Monthly Threat Highlights Report | ||
| Details | Website | 2022-02-25 | 2 | New "SockDetour" Fileless, Socketless Backdoor Targets U.S. Defense Contractors | ||
| Details | Website | 2021-11-08 | 42 | Threat actor DEV-0322 exploiting ZOHO ManageEngine ADSelfService Plus - Microsoft Security Blog | ||
| Details | Website | 2021-09-16 | 39 | APT Actors Exploiting Newly Identified Vulnerability in ManageEngine ADSelfService Plus | CISA | ||
| Details | Website | 2021-09-02 | 5 | A deep-dive into the SolarWinds Serv-U SSH vulnerability - Microsoft Security Blog | ||
| Details | Website | 2021-07-13 | 18 | Microsoft discovers threat actor targeting SolarWinds Serv-U software with 0-day exploit - Microsoft Security Blog |