APT Group Praying Mantis Hits IIS Web Servers with Deserialization Flaws and Memory Resident Malware
A sophisticated, likely government-sponsored threat actor has been compromising major public and private organizations over the past year by exploiting deserialization flaws in public-facing ASP.NET applications to deploy fileless malware.