Evolution of the PipeMagic backdoor: from the RansomExx incident to CVE-2025-29824
The article discusses the evolution of the PipeMagic backdoor, detailing its operators' tactics, techniques, and procedures (TTPs) from the RansomExx incident in 2022 to subsequent attacks in Brazil and Saudi Arabia, culminating in the exploitation of CVE-2025-29824 in 2025. This highlights the ongoing threat posed by this backdoor and its operators.
CVE
Read Full Original Article →