Lucene search
K

4 matches found

GithubExploit
GithubExploit
added 2025/11/22 10:8 a.m.278 views

Exploit for Improper Neutralization in Microsoft

CVE-2025-26633 - Microsoft Management Console .msc EvilTwin...

7CVSS7.4AI score0.31894EPSS
Exploits7
The Hacker News
The Hacker News
added 2025/03/31 4:41 p.m.31 views

Russian Hackers Exploit CVE-2025-26633 via MSC EvilTwin to Deploy SilentPrism and DarkWisp

The threat actors behind the zero-day exploitation of a recently-patched security vulnerability in Microsoft Windows have been found to deliver two new backdoors called SilentPrism and DarkWisp. The activity has been attributed to a suspected Russian hacking group called Water Gamayun, which is...

7CVSS7.5AI score0.31894EPSS
Exploits7
Trend Micro Simply Security
Trend Micro Simply Security
added 2025/03/28 12:0 a.m.18 views

A Deep Dive into Water Gamayun’s Arsenal and Infrastructure

Trend Research discusses the delivery methods, custom payloads, and techniques used by Water Gamayun, the suspected Russian threat actor abusing a zero-day vulnerability in the Microsoft Management Console framework CVE-2025-26633 to execute malicious code on infected machines...

7CVSS7.6AI score0.31894EPSS
Exploits7
Trend Micro Simply Security
Trend Micro Simply Security
added 2025/03/25 12:0 a.m.20 views

CVE-2025-26633: How Water Gamayun Weaponizes MUIPath using MSC EvilTwin

Trend Research identified Russian threat actor Water Gamayun exploiting CVE-2025-26633, a zero-day vulnerability in the Microsoft Management Console that attackers exploit to execute malicious code and exfiltrate data...

7CVSS7.6AI score0.31894EPSS
Exploits7
Rows per page
Query Builder