Glutton malware by APT41 targets PHP systems globally, exploiting frameworks like Laravel and ThinkPHP, with unencrypted C2 communications.

The Tidyverse Blog offers insights, tutorials, and updates on the Tidyverse, a collection of R packages for data science and statistical computing. Covering topics such as data manipulation, visualization, and analysis, the blog provides resources for R developers looking to leverage the power of the Tidyverse for their data projects. Developers can learn how to use Tidyverse packages effectively to clean, transform, and analyze data in R.

The Hacker News

New Glutton malware has been discovered exploiting popular PHP frameworks like Laravel and ThinkPHP. Linked to the Winnti group, the malware harvests sensitive information, plants backdoors, and employs unconventional methods, including targeting cybercriminals. The attack chain involves modules to assess the environment and infect systems, while modifying system files for persistence. It includes a fully-featured backdoor with 22 commands that further the malware's reach and effectiveness.

New Glutton Malware Exploits Popular PHP Frameworks Like Laravel and ThinkPHP

<p>Interesting stuff. Hope that means patches are coming (if it did indeed target framework vulnerabilities instead of just badly-configured apps).</p>
