Malicious entities of uncertain origin have been linked to a harmful operation primarily aimed at entities in Japan starting from January 2025.
“The assailant has taken advantage of the vulnerability CVE-2024-4577, a remote code execution (RCE) defect in the PHP-CGI execution of PHP on Windows, to secure initial entry into targeted systems,” explained Cisco Talos investigator Chetan Raghuprasad in a technical