PITSTOP (c0e56f14-9768-5547-abcb-aa3f220d0e40)
PITSTOP is a backdoor that was deployed on compromised Ivanti Connect Secure VPNs during Cutting Edge to enable command execution and file read/write.[Mandiant Cutting Edge Part 3 February 2024]
Cluster A | Galaxy A | Cluster B | Galaxy B | Level |
---|---|---|---|---|
UNC5325 (be7243cb-6031-4e2a-97d9-3522c002becd) | Tidal Groups | PITSTOP (c0e56f14-9768-5547-abcb-aa3f220d0e40) | Tidal Software | 1 |