Chinese Hackers Exploit Versa Director Flaw: What You Need to Know
Volt Typhoon, a Chinese state-backed hacking group, exploited a zero-day flaw in Versa Director to deploy a custom webshell, stealing credentials and breaching corporate networks. The vulnerability, CVE-2024-39717, was found in a feature for uploading custom icons, allowing malicious Java files disguised as PNG images…
Hot Take:
Who knew that a simple icon upload could become a high-stakes game of cat and mouse? Someone get these cybercriminals an art class because their PNGs are wreaking havoc!
Key Points:
- Chinese hacking group Volt Typhoon exploited a zero-day flaw in Versa Director.
- The flaw (CVE-2024-39717) allowed malicious Java files to be uploaded as PNG images.
- Black Lotus Labs discovered the vulnerability and traced it back to SOHO routers.
- Five organizations in the US and one in India were impacted.
- Upgrading to Versa Director version 22.1.4 fixes the vulnerability.
Membership Required
You must be a member to access this content.