Cloud Threat Landscape

Incidents
Actors
Techniques
Defenses
Tools
Targeted Technologies
Posters & Newspapers
About
RSS
STIX
Back to wiz.io

Cloud Threat Landscape

Dama webshell deployment via ThinkPHP exploitation

Type

Campaign

Actors

❓Unknown

Pub. date

June 5, 2024

Initial access

1-day vulnerability

Impact

Resource hijacking

Observed techniques

Vulnerability exploitation

Observed tools

Dama

Targeted technologies

ThinkPHP

References

https://www.akamai.com/blog/security-research/2024-thinkphp-applications-exploit-1-days-dama-webshell

Status

Stub

Last edited

Aug 1, 2024 12:11 PM

Made with 💙 by Wiz

Last Updated: April 3, 2025