{"uuid": "c834f3c8-cb8b-49ab-bf68-b5b608865c33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-0012", "type": "exploited", "source": "https://t.me/CyberBulletin/2468", "content": "\u26a1Chinese Hackers Emperor Dragonfly Use Espionage Tools for Ransomware\n\nAgainst this backdrop of cyber espionage, Emperor Dragonfly carried out a ransomware attack in November 2024, targeting an IT firm in South Asia. The breach is believed to have been facilitated by the exploitation of CVE-2024-0012 in Palo Alto PAN-OS. Once inside the network, the attackers exfiltrated Amazon S3 credentials before encrypting the victim\u2019s systems with RA World ransomware.\n\n#CyberBulletin", "creation_timestamp": "2025-03-03T04:20:27.000000Z"}