GLASSTOKEN

Description

(Volexity) UTA0178 planted webshells on external-facing web servers in order to grant persistence to the customer environment. They could then use the webshells to execute commands on those devices. Only two variations of the same webshell were used in the attack.

Names

Name
GLASSTOKEN

Type

Backdoor

Information

https://www.volexity.com/blog/2024/01/10/active-exploitation-of-two-zero-day-vulnerabilities-in-ivanti-connect-secure-vpn/

Mitre Attack

https://attack.mitre.org/software/S1117

Other Information

Uuid

333f8a64-e05f-4c1c-812a-e75c7a32fa7a

Last Card Change

2024-06-19

Threat Intelligence Garden

Explorer

GLASSTOKEN

GLASSTOKEN

Description

Names

Category

Type

Information

Mitre Attack

Other Information

Uuid

Last Card Change

Graph View

Table of Contents

Backlinks