Posts tagged "freepbx" | blacktemple.net

Nation-State Activity Roundup: APT28 MacroMaze Campaign, MuddyWater Operations, and Mass Infrastructure Compromises

Multiple nation-state groups remain active with APT28 deploying basic tooling in Operation MacroMaze and MuddyWater conducting Operation Olalampo. Separately, threat actors compromised 900 Sangoma FreePBX instances through CVE-2025-64328 exploitation, maintaining persistent web shell access.

Mar 1, 2026Security Affairs

apt28muddywaterfreepbx

🇷🇺APT28🇮🇷MuddyWater

highVulnerabilities & Exploits

Weekly Security Roundup: Critical OCaml RCE, FreePBX Mass Compromise, and 900+ Systems Still Infected

Security teams face multiple active threats this week including a critical remote code execution vulnerability in OCaml affecting Marshal deserialization, over 900 Sangoma FreePBX instances remaining compromised with web shells since December, and nearly 3,000 exposed Google Cloud API keys providing unauthorized Gemini access.

Feb 28, 2026The Hacker News, SANS ISC, MSRC Security Updates

vulnerability-rounduprceweb-shells

🇺🇸Google

Tag: freepbx

Nation-State Activity Roundup: APT28 MacroMaze Campaign, MuddyWater Operations, and Mass Infrastructure Compromises

Weekly Security Roundup: Critical OCaml RCE, FreePBX Mass Compromise, and 900+ Systems Still Infected

Tag: freepbx

Nation-State Activity Roundup: APT28 MacroMaze Campaign, MuddyWater Operations, and Mass Infrastructure Compromises

Weekly Security Roundup: Critical OCaml RCE, FreePBX Mass Compromise, and 900+ Systems Still Infected