 |
สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์ Electronic Transactions Development Agency |
|
สำนักงานพัฒนาธุรกรรมทางอิเล็กทรอนิกส์ Electronic Transactions Development Agency |
Tool: GLASSTOKEN| Names | GLASSTOKEN | |
| Category | Malware | |
| Type | Backdoor | |
| Description | (Volexity) UTA0178 planted webshells on external-facing web servers in order to grant persistence to the customer environment. They could then use the webshells to execute commands on those devices. Only two variations of the same webshell were used in the attack. | |
| Information | <https://www.volexity.com/blog/2024/01/10/active-exploitation-of-two-zero-day-vulnerabilities-in-ivanti-connect-secure-vpn/> | |
Last change to this tool card: 17 January 2024
Download this tool card in JSON format
Previous: GLASSES
Next: GlitchPOS
| Changed | Name | Country | Observed | ||
APT groups | |||||
| UNC5221, UTA0178 | [Unknown] | 2023 | |||
1 group listed (1 APT, 0 other, 0 unknown)
|
Digital Service Security Center Follow us on
|
Report incidents |
|
 |
+66 (0)2-123-1227 | |
 |
[email protected] | |